Publications
The field of information security consists of knowledge and knowhow regarding the involced methodologies, technologies and products. A consultation, review and analysis of a system is only possible of the full understanding is given. To increase professionalism we follow the credo of information sharing. Our employees are well known of a large amount of published papers and books within the field of computer security.
Research
We support the exchange of knowledge and experience with peers within our field. This way we are able to help improve modern information security:
- Labs: The scip Labs are are inhouse research laboratories, which keep our employees informed about the latest development in our field. This includes methodologies, technologies and products which are important for auditing, exploiting and forensics. Therefore the scip Labs provide the basic foundation for the sustainability and improvements of our services. The blog provides the latest news directly from our research. (RSS | Twitter)
- VulDB: Since 2003 our auditing departement is responsible for maintaining the vulnerability database. Visitors are able to do research within this free service. All entries consist of technical details and additional comments by our specialists. Customers and partners use this source of knowledge to verify findings and to determine risks. (RSS | Twitter)
- Advisories: During our work of security analysis we discover new vulnerabilities regurarly. Those so called 0days are reported to the vendors and disclosed in a co-ordinated advisory – usually also containing a proof-of-concept exploit. This way we help our customers and partners to increase the quality of their solutions. (RSS | Twitter)
Publications
The many articles published by our employees help us to gain the full understanding of the complex field of information security:
- smSS: The smSS (scip monthly Security Summary) is a free and monthly released journal which discusses current events and actions within the field of information security. (RSS | Twitter)
- Articles: As like the traditional information technology the field of information security uses articles to spread information and research. Our employees publish their research results on a regurarly basis in international journals or on web sites. (RSS | Twitter)
- Books: Our employees published different books covering the topics of computer security. This guarantees the possibility to share our knowhow and knowledge in a very efficient and sustainable way. (RSS | Twitter)
- Interviews: We are often asked by the media to answer to current events within interviews and comments. This includes appearances in television, radio and print media. (RSS | Twitter)
