Israel Innovation 2.0

Using their own independent studies, VeriSign and Israel-based Discertix both recently released the smartphone security trends they expect to see in 2010.

According to VeriSign CTO, Kenneth Silva, who recently spoke in Seoul about the likely mobile device threats in 2010,

“An attack on the mobile device operating system will affect the phone contacts, mobile banking log-ins and passwords and any other valuable information stored on the device”

Smartphone sales are expected to beat PC sales for the first time in 2011.

The opportunities for cyber criminals to penetrate mobile devices are the results of:

• More phone applications needing updates which can pose an opening for phishing scams
• An increase in jail broken phones, which compromises the operating system as an example.

Silva explains that these vulnerabilities can lead to “deliberate Denial of Service attacks, extortion, and corporate espionage as threats for 2010″ and has as such become a national priority for several countries including Israel, the U.S. and the U.K

Research by Discretix, an embedded security solutions company, indicates that smartphones already make up 25% of the market and might reach 40% market share in the next 5 years.

In addition to finding the same threats posed by applications and an open OS that VeriSign did, Discretix has also listed:

Some of the new OSs (e.g. Android) are open source, missing the traditional safeguards and closed environment of other real time operating systems

Also the devices are multi-use with massive storage capacity, moving data and applications freely between the enterprise and the home

Despite the seriousness of these threats, a survey conducted by security software firm Trend Micro that was released in August 2009 indicated that 44% of mobile phone users considered Web surfing on a smartphone to be “as safe, if not safer, than doing so on their PC” and “only 23 percent of smartphone owners use security software already installed on their smartphones.”

Discretix was one of the fastest growing Israeli companies in 2008 and 2009 according to Deloitte Brightman Almagor Zohar and will deliver Open Mobile Alliance DRM capabilities to HTC Windows Mobile and Google Android handsets.

In early November, Deloitte Brightman Almagor Zohar, a professional services firm under the interational Deloitte brand in Israel, released its annual list of Israel’s top 50 fastest growing technology companies for 2008 based on percentage revenue growth over a five-year period. Sixteen software companies ranging from security to finance to storage made the list. Below is the top 10 software companies on the list (all in the top 30) and a little more about them. Will you be using any of these companies’s technologies in 2009? 

GigaSpaces Technologies

GigaSpaces Technologies was founded in 2000 and offers an alternative to traditional application-servers for Java and .Net environments. Its eXtreme Application Platform (XAP) allows businesses and developers to easily scale and improve performance at low cost while leveraging virtual environments such as clouds and grids. Its customers include DowJones, Virgin Mobile, Bank Leumi and Webster.

Commtouch Software

Founded in 1991, Commtouch develops software to protect e-mail by offering spam and Zero-Hour™ virus outbreak protection. Its anti-spam solutions feature its Recurrent Pattern Detection (RPD) technology and have been licensed by over 80 security and messaging vendors and providers including Aladdin, Check Point, Fujitsu and LG N-Sys

Red Bend software

Red Bend Software is considered to be a market leader in Mobile Software Management and Firmware Over-the-Air (FOTA) update solutions. Founded in 1999,  Red Bend Software offers solutions that give phone users more control over what software components they want on their phones while also increasing the data service revenues of phone carriers. The main solutions include firmware updates, software component updates and data management.

El Far Electronics Systems 2000

Founded in 1986, El Far is the longest-established software company on the list and the lone defense company. El Far provides defense security systems offering integrated software for site management and decision making support. Its Integer software can be used for  managing anything from access control systems to fire alarms to infra red sensors.

InfoGin

InfoGin was founded in 2000 by Eran Wyler after he foresaw the “need for surfing the real Internet on any mobile device.” Over the years, InfoGin has become a leader in “Web-to-mobile content adaptation, enabling mobile users to access any Web site they desire, optimized to their mobile device.” The company’s Internet Mobile Platform (IMP) technology is currently being implemented by several major companies, including Virgin Mobile (UK) and MapQuest.

Actimize

Around since 1999 and a NICE Systems Ltd. company since 2007, Actimize  is a transactional risk management software company offering solutions in anti-money laundering, fraud prevention, and brokerage compliance. Its technology includes the Risk Case Manager, Visual Modeler and Analytics Server.

Modelity Technologies Inc.

Established in 2000, Modelity Technologies offers a financial modeling and portfolio analytics platform for financial institutions, such as banks and insurance companies, to stay competitive and improve their performance.  Its products include Modelity/Advisor, Modelity/Funds and Modelity/Structures. 

FibroLAN

Since 1996, FibroLAN has developed integrated fiber-optic broadband access systems that allow organizations in the corporate and carrier markets that are dispersed over metropolitan areas access to the Internet and their Intranets at fast speeds. Its MA and MetroStar technologies both provide the benefit of low-cost remote management. MetroStar has been used by Telstra and the Los Angeles MTA.

Discretix Technologies

Discretix was founded in 2000 and is the largest single company in the world dedicated to embedded security. Focusing on consumer electronics products that are portable, such as mobile phones and mp3 players, Discretix offers additional security solutions for them that manufacturers can’t provide due to limited resources. Its main products, CryptoCell and CryptoFlash are deployed by major manufacturers such as SonyEricsson, Motorola, Samsung and SanDisk.

Exanet 

Founded in 2000, Exanet is a data storage solutions company offering enterprise companies the latest processing technology that is scalable in capacity and performance, with low cost of ownership. Its product, ExaStore 2008 holds the world record for storage performance and its customers include BBC, Stanford University, and the National Library of France.  

It’s no secret that mobile devices are experiencing a period of exponential growth. We already know that there are over 3 billion mobile accounts in use around the world and such growth will continue for the foreseeable future. Driving this trend is the improvement in features and applications offered on mobile devices, and their diminishing physical size. The iPhone has become an instant hit and is expected to sell 10 million by the end of this year. It is currently open to 3rd party application installations and by year’s end or early next year, Google’s Android, a mobile OS also open to developers, will also be released for mobile devices.

Third party applications may seem to offer the perfect opening for security breaches and to be a nightmare for any IT professional whose company has employees using smartphones or other mobile devices, but manufacturers and outside companies are working hard to assure that they are safe. While mobile device manufacturers primarily take care of the security protection themselves they are getting help from third party manufacturers, such as the not-so-small Israeli embedded security solutions company, Discretix.

I recently had the chance to interview Discretix’s Director of Corporate Strategy, Jacob Greenblatt, to discuss what exactly the company does to help secure mobile devices, what the trends in mobile security are and where the company sees itself and the industry in 5 years time.

LD: Can you give a brief background about what your company does?

JG: Sure. Discretix was founded in 2000 and is the largest single company in the world dedicated to embedded
security. It focuses on consumer electronics products that are portable, such as mobile phones and mp3 players. Most mobile devices have limited resources due to the cost and as a result, a lot of memory can’t necessarily be deployed. We provide security that meets the price point of the device. We are an INC 500 company and are one of the fastest growing private companies in North America. We own 33% of the market and have 100 employees. Manufacturers that include our security solutions on their devices include, SonyEricsson, Motorola, Samsung, Panasonic, SanDisk and a variety of other chip makers.

What are your main products?
Our two main products are CryptoCell and CryptoFlash. CryptoCell targets the mobile device market, such as smartphones, by securing all components of the device and its applications. CryptoFlash is for flash memory products, such as USB flash drives, mp3 players and ipods, and secures those components.

How are you funded?
To date we have raised 30 million in VC funding from Sequoia Capital, Pitango and Genesis.

Who is your main competition?
Our main competition is internally developed solutions from in-house teams dedicated to security and commercial companies. We also face competition from SafeNet which is US-based and the Department of Defense.

The increasing popularity of third party add-ons for mobile devices such as the iPhone, has been accompanied by a new host of threats and concerns among information security professionals. What specific threats do third party add-on applications pose?
In a mobile phone, the operating environment can be exposed to threats from third-party downloads that the user accepted. If it infects the device, it can prevent the user from making calls and the phone operator loses money. On the other side, if a user can’t make calls, then it can’t serve as a phone, and is frustrating for the user who needs to communicate. Rogue applications that are downloaded can alter certain areas of the phone, however, Discretix’s embedded security provides a secure execution environment, in which applications are executed in a restricted area and can’t stray. In a sense, it is in a bulletproof operating environment.

What are some of the current trends in mobile security?
Security is being included on more and more devices. We started out
securing mobile phones, but have expanded to new markets, such as
gaming, GPS and flash memory, to help them meet their security
requirements. We are also seeing more sub terrains. People are
downloading applications in a more open environment and new solutions
need to address that. 

There is also a heightened awareness against
device cloning, where a competing manufacturer will clone software onto
their device. In gaming, there is a desire on behalf of the the manufacturer and developers to prevent reproduction. They are also
driving their customers online to build a relationship with them and to offer them
promos. While they want to validate the gamer’s identity, security is
needed to do that successfully.

How will the current economic climate help or hurt Discretix sales?
Given the current state of the world’s economy, mobile phone manufacturers feel the pressure to cut back. Making a phone usually costs $100 and companies are responding in different ways. Motorola, which has experienced massive losses, is finding outsourcing security solutions to be effective, while Nokia is outsourcing its chip development. Overall, the current economy is offering compelling reasons for mobile device manufacturers to come to us as an outsourced solution.

What can we expect Discretix to look like in 5 years from now?
In 5 years from now we expect to be a security vendor for the new age of mobile devices and have company offerings for multiple markets. We would like to have hardware, middleware and software offerings and more application reach, looking to the development of security applications themselves, which would utilize the underlying infrastructure.

About the author: Lisa Damast is the Membership
Manager of ebizQ.net and currently resides in Israel. Any questions or
inquiries regarding this blog or ebizQ membership services can be
directed to her via email at ldamast (at) ebizq (dot) net. She can also be followed on Twitter, where she covers additional Israeli technology companies and Israel-related headlines and topics.