CYBER TAIWAN PAVILION

The development of PQC encryption in the field of military communications provides an effective solution that not only improves communication security, but also strengthens the technology of end-to-end secure message transmission. In addition, the zero-trust architecture is introduced into the military environment, allowing messages from various platforms to be shared and exchanged securely through PQC's highly encrypted secure tunnel. This helps to quickly establish overall battlefield information and images, allowing commanders to more effectively manage the battlefield and build a communication network security protection network.

Quantum computing poses a threat to existing encryption technologies, and the world is accelerating the standardization of Post-Quantum Cryptography (PQC). The PQC High-Speed Encryptor supports Level 5 PQC, offering a high-speed data transmission interface of up to 10Gbps to build secure and efficient PQC VPNs, ensuring data security.

The UTS1000 data diode uses a physical unidirectional transmission mechanism to prevent hackers from tampering with commands and stealing confidential information, ensuring the integrity and secure exchange of sensitive unit data.

RCS-BAS is an AI-driven security platform automating MITRE ATT&CK-based red team testing, replacing costly penetration teams. It comprehensively assesses enterprise networks, servers, applications, and AI systems through sophisticated attack simulations including intrusion, privilege escalation, lateral movement, and data exfiltration. Organizations receive detailed security assessments with actionable remediation guidance, reducing security costs while strengthening defenses across financial, manufacturing, healthcare and critical infrastructure sectors.

kvFDO Solution effectively solves the high risks of manual settings and default credentials and establishes comprehensive product lifecycle management through secure automated processes when deploying IoT devices securely.

kvFDO Solution provides various Restricted Operating Environment ( ROE ) solutions suitable for IoT security environments and FDO standard communication protocols. We provide seamless and quick FDO automated device deployment on existing IoT devices, with the ability to connect to SaaS cloud systems to improve operational efficiency and achieve transparent device lifecycle management.

As the quantum era approaches, traditional encryption is facing significant challenges. ITRI PQC team has proposed PQC Chip & System Common Platform, which facilitates industrial development of PQC chips and applications. This project showcases the Post-Quantum Cryptography ( PQC ) chip algorithm and silicon intellectual property, which implements algorithms derived from ML-KEM, ML-DSA and SLH-DSA. It provides key encryption and digital signature solutions to address future challenges posed by quantum computing. The silicon intellectual property core includes FPGA versions for ARM and RISC-V processors, with applications in finance, communications, medicine, automobile, and national defense to help domestic industries respond to quantum threats and seize post-quantum chip application opportunities.

InfoKeyVault ( IKV ) offers a robust solution: a high-security, flexible, and high-performance Post-Quantum Cryptography ( PQC ) chip designed to protect sensitive data from future quantum attacks. We're committed to providing comprehensive PQC solutions, including support for PQC Operations FIPS 203 ML-KEM, FIPS 204 ML-DSA, and classic cryptographic operations. It offers seamless integration, powerful cryptographic capabilities, built-in application functionalities, and a versatile hardware interface for Cryptographic Application Processors ( AP Processors ).

The first product on the market to comply with NIST FIPS-203, FIPS-204 standards for post-quantum cryptographic algorithms, combined with internally generated invisible keys, elevating cybersecurity protection to a higher level of security.

It provides post-quantum security performance and encryption-level chip security, generating a unique, unreplicable identifier which is like an electronic fingerprint. With advantages in easy integration, high reliability, and customization, it offers a fully integrated comprehensive solution.

With the rapid development of chips and AI technologies, new cybersecurity threats continue to emerge, so companies must continue to comply with international cybersecurity standards to effectively reduce risks and ensure the security of sensitive data. Cybersecurity compliance is not only a key foundation for companies to protect themselves and their customers from cyber threats, but also an key factor in maintaining market competitiveness, ensuring that chips and AI products meet cybersecurity standards and reduce potential risks.

As the IoT era progresses and digitalization and intelligence accelerate, traditional industrial infrastructure faces growing challenges from the increasing demands for big data and connectivity. Weak cybersecurity awareness has turned industrial control systems (ICS) into high-risk targets, threatening both business operations and public safety. To address these challenges, PIXIS Technology delivers comprehensive IT+OT cybersecurity solutions. By integrating our own products with the ICTD technology developed by III, we empower businesses to strengthen their network defenses, protect critical infrastructure, and secure their digital transformation.

●Winner of 2024 Cybersecurity Excellence Award – "Pioneer Award."

●Professionalism: Since its establishment, the team has discovered over 100 CVE vulnerabilities. In 2023 alone, they tested more than 1,500 systems and reported over 6,000 risks and vulnerabilities. The team holds multiple international certifications, including OSCE3 (first in the country), OSCP, CRT, CPSA, CISSP, GPEN, and GWAPT.

●Integrity: Strict confidentiality is maintained for client information. All team members possess good conduct certificates and ethical hacker certifications. With a low turnover rate, the team ensures the transfer of experience and builds a trustworthy reputation.

●Systematic Approach: CHT Security’s Red Teaming Services is the only team in the country certified under ISO 20000.

●International Experience: The team has extensive experience providing testing services for overseas clients.

●Evaluation: The team achieves 5A top ratings in government’s review for consecutive years.

●Winner of the 2022 Computex Best Choice Award for Cybersecurity Services.

●The integration of SOC, MDR and SOAR to enhance visibility and response capabilities.

●AI-enabling incident response and reverse engineering for traceability.

●Dedicated web portal and dashboard for effective cybersecurity risk tracking and management.

●Integration of Chunghwa Telecom’s threat intelligence to strengthen security detection and response.

●Big data retrospective analysis for proactive investigation of the latest cybersecurity events.

●5A top ratings in government’s review for consecutive years.

●Asia-Pacific threat intelligence research: Use localized intelligence to counter targeted attacks, ransomware, advanced persistent attacks (APT), etc.

●Full-time endpoint monitoring: By deploying award-winning ThreatSonar Anti-Ransomware, you can proactively defend against potential threats. Its industry-leading behavior analysis can strengthen the detection of the latest suspicious threats, provide real-time notifications and incident response suggestions, and reduce the risk of business interruption.

●Professional expert team: Frontline monitoring personnel, second-line analysts, and incident response team provide joint defense to comprehensively investigate incidents and enhance cybersecurity resilience.

Automatically discover potential external attack surfaces and provide a comprehensive view of digital assets from the hacker's perspective. Proactively identify potential vulnerabilities through in-depth identification and analysis of the entire structure and respective components, correlating the attack surface of accounts, endpoints, and services.

Key technical capabilities include:

●Asset Discovery Agent: Seamlessly identifies external domains, certificates, cloud assets, and IT architecture components.

●Dark Web Agent: Monitors dark web forums and threat actor tools, such as Redline Stealer, to detect stolen credentials and sensitive information.

●Security Posture Assessment Agent: Analyzes IP ranges, service configurations, and potential misconfigurations to detect vulnerabilities.

●IT Risk-to-Compliance Agent Continuously maps an organization’s IT architecture for comprehensive visibility.

● AI-powered cloud cybersecurity : Partners with global Security-as-a-Service (SaaS) providers to deliver integrated threat management, including sandboxing, malware and ransomware protection, DNS/IP/URL filtering, IPS, and application patrol for advanced security.

● Ultra high performance : Equipped with a multi-core processor and DPDK Fastpath technology, along with built-in 2.5G networking and PoE+ ports, significantly enhances processing speed and connectivity performance.

● Hassle-free network management with Nebula : Supports Zyxel’s Nebula, a centralized cloud management platform, for seamless cloud and on-premises network device management.

● Designed for SMBs : Delivers high performance and multi-layered security to meet the growing cybersecurity demands of small and medium-sized businesses.

●APT attacks target email systems, enabling direct access to users and precise intelligence gathering on sensitive information. The ArmorX APT MTA Gateway deeply analyzes APT communication and program behavior, featuring three globally exclusive technologies:

■ Real-time backtracking to trace hackers’ true identities and analyze communication patterns.

■AI-driven proactive defense against unknown phishing lures and business fraud.

■Dual verification whitelisting for source routing and senders.

Additionally, with ArmorX Proxy account and country-based login control, along with penetration defense, it provides enterprises with an ultra-secure, highly resilient protection framework.

Trend Vision One

●Cyber Risk Exposure Management : Powered by AI, predictive attack surface risk management helps organizations analyze threats thoroughly, so as to predict their potential attack paths accurately.

●AI-driven consultant-based XDR: With AI technologies at its core, this 24/7/365 consultant-based Extended Detection and Response (XDR) service provides automated threat detection and response.

●AI abuse prevention and in-house AI protection : We provide complete protection for in-house AI applications built by organizations, such as data security, model protection, and operations monitoring.

PUFcc is a Crypto Coprocessor built on chip fingerprint technology, integrating a hardware root of trust to enable unique identity, key generation, and true random number generation (TRNG). It features cryptographic algorithms with attack-resistant hardware acceleration, creating a secure boundary within the chip to protect data storage, computation, and transmission.

In 2024, PUFcc7 was introduced as an upgraded version, adding support for TLS 1.3 to further strengthen security. PUFcc is certified by NIST-CAVP and PSA Certified Level 3 RoT Component. Following its recognition with the BC Award, it has also received the EE Award, highlighting its exceptional security capabilities. PUFsecurity continues to collaborate with global partners to reinforce the foundation of the connected world.

Openfind is the largest mail security company in Taiwan. It has won several international awards including EaaS Champion. Its excellent cloud service capabilities are highly recognized by public sector and private companies domestically and internationally. The experts of Openfind have myriad experiences of protection mail systems. Through helping users to protect from real-time attacks, process in-depth forensics of information security events, and provide high-quality analysis of threat information with AI, OSecure helps customers to strengthen their defenses, solve field problems and provide a total solutions for cyber security. The years of hard work invested by Openfind into this service makes it befitting of this prestigious award.