Cyberattacks, falsification of paperwork, identity theft, cell cost, plagiarism of QR codes … SICPA makes a speciality of safety, each bodily and digital.
SICPA is a Swiss firm specialised in safety inks for tickets and delicate paperwork, equivalent to identity, transport or lottery tickets, for instance. It additionally gives safety options within the subject of merchandise and types, and providers to the business in phrases of authentication, anti-theft, identification, and so forth. This multinational has simply inaugurated a Heart of Excellence in Madrid. Fabián Torres, Director of Business Development at SICPA, tells us extra particulars about this firm and its operations.
Why, being a Swiss multinational, do you assist Spain a lot by making a Heart of Excellence in Madrid?
The corporate’s first main transformation happens when the Spanish Ambassador to Switzerland convinces Maurice Amón, founder of SICPA, to manufacture high-security ink for banknotes. In reality, the primary banknote on the earth to be printed with excessive safety inks is the 100 pesetas from Spain. Since then, technology after technology, the Amón household has at all times had a particular affection for Spain. Therefore, the present president didn’t hesitate to launch, greater than 10 years in the past, the group’s first heart of competence for the event of digital options exterior of Switzerland, in Madrid. The large skilled qualification of the Spanish specialists, having the identical European tradition and being extremely aggressive has allowed this Competence Heart to develop and consolidate itself because the second largest after that of Switzerland. The options growth space of the brand new strategic heart of excellence in Madrid at present has 9 growth groups and one assist workforce, made up of greater than 130 folks, with 21% ladies (greater than ten factors above the world common ), out of a complete of 14 nationalities. This space actively collaborates with different Group facilities in Brazil, the US, Switzerland, Malaysia and Russia, amongst others, and helps the event of options for governments and varied industries. Amongst them, programs of conformity, authentication, aggregation and traceability in a mess of merchandise (wine, luxurious objects, museum tickets, meals merchandise, Oil & Gasoline, tobacco and alcohol, amongst others).
As well as, utilizing cutting-edge applied sciences primarily based on blockchain and Knowledge Science options, it handles vital volumes of knowledge that permit learning traits to develop and refine cell activation, inspection and verification options. At the moment, the Spanish workforce is working on traceability tasks for the governments of Turkey, Georgia, Albania, Morocco, Kenya, Tanzania, Uganda, Ecuador, Chile, the Dominican Republic and Malaysia.
As well as, within the new Madrid hub, a workforce of 24 folks is in cost of offering company IT technical assist to the whole Group worldwide: Service Desk, Collaborative Options, Linux, Home windows, and so forth., with totally different profiles in DevOps, App Safety, Digital Workspace and Fullstack Builders, amongst others.
On the Alcalá de Henares plant, what processes do you perform?
It has been greater than 50 years since we opened our first ink manufacturing unit right here, in Madrid, and later, in 2007, we continued with the opening of a producing heart that is the one one exterior of Switzerland that has all of the capabilities to manufacture the inks and banknote safety merchandise as we do in our excessive safety ink manufacturing unit in Chavornay, close to Lausanne, particularly for euro printing. Moreover, the Madrid excessive safety ink manufacturing unit is a backup facility for the Swiss manufacturing unit.
An organization worker clicks on a fraudulent hyperlink in an electronic mail that he has obtained and has unintentionally downloaded a virus that may steal delicate info. How can these cyberattacks be managed?
Right this moment, coaching staff in good practices is important to avoid being cyber-attacked. The principle safety gaps are discovered within the oversights of the staff themselves, for instance, when connecting a USB to a pc, when accessing a malicious web site, when clicking a hyperlink in an electronic mail, and so forth. At SICPA we pay particular consideration to this challenge and all new staff endure a strict coaching plan on this regard, because the security of our purchasers relies upon on our personal security. As well as, yearly all staff go a refresher course the place we’re proven the brand new methods that ‘unhealthy guys’ use to perform their assaults. This 12 months we now have modified the format, making it rather more fulfilling as in the event that they had been episodes of collection equivalent to Amazon or Netflix, which has had monumental acceptance amongst our staff.
Is there a means to successfully forestall somebody from stealing your identity on Instagram or WhatsApp?
Certainly, at this time it is already possible to avoid these identity theft. The whole lot is primarily based on the brand new digital identities wherein SICPA has been working intensively for greater than three years. Now we have developed a program within the US, below the umbrella of the Silicon Valley Innovation Program (SVIP), for the event of verifiable credentials for the well-known US Inexperienced Card. We are actually creating an identical program primarily based on verifiable credentials for the longer term European digital identity below the European Self Sovereign Identity Framework Laboratory (eSSIF-Lab) program. With the use of this future digital identity shielded with next-generation Blockchain, even proof of quantum computing, it will likely be virtually unimaginable to usurp our identity. What’s extra, we will use that future decentralized digital identity to have the ability to neglect all our entry passwords to all web sites. We may have a Single-Signal-On at the extent of the longer term Web of Worth the place, as an alternative of interacting solely with info, we will likely be ready to safely alternate property.
When the cyberattack has been achieved, what procedures have to be adopted in order that the hacker doesn’t erase confidential info of the corporate and the employees?
The actually difficult factor about cyberattacks is detecting when we now have the virus or worm in our set up in a dormant state, ready to be activated. Therefore, the very important significance of prevention and coaching of all personnel in cybersecurity points at the extent of customers of the programs. As soon as the slightest signs of the possible assault are detected, it is greatest to rapidly inform cybersecurity specialists to provoke cyber protection procedures and escalate it to the related authorities, since these cyberattacks could also be occurring in different elements of the geography or of the planet, and nationwide and worldwide early warning programs may help us to resolve them.
Is it straightforward to plagiarize a QR code? How do you get an “inviolable” code?
Now we have developed a novel expertise that enables us to safe QR codes, defending them with encryption algorithms and superior picture safety applied sciences that protect them, having the ability to detect any try at falsification or manipulation. Moreover, we’re working on a brand new technology wherein the storage capability of these QRs will likely be greater than the present ones on the market, permitting even biometric sequencing with hash algorithms to be housed.
Do you advocate paying by way of cell phone, with apps or with a digital bank card, or can we expose ourselves to possible knowledge theft?
With the longer term decentralized digital identity, which we now have mentioned, we will likely be really secure. At current, particularly with the irruption available in the market of quantum computer systems, of which some industrial prototypes are already showing and which have just a few dozen qubits, the present digital signatures and certificates and the present securitization of the present web sites will likely be susceptible, even https websites, as is already identified, breaking all Web safety. Because of this, the profession in telecommunications and quantum computing that has began worldwide, and the seek for new safe decentralized digital identities to defend info. Within the latter case, comparable to those who SICPA has developed below the SVIP (US) and eSSIF-Lab (EU) packages.
For on-line cost for online game downloads, is the QR code the final word resolution to forestall monetary knowledge theft?
The QR code is not sufficient if it is not shielded with applied sciences like those we now have developed at SICPA. As well as, a second proof of identity will at all times be essential utilizing biometrics and algorithms that permit the detection of life, equivalent to that of a dwelling being in entrance of the digicam and never a photograph, and the detection of a possible identity theft, which is identified in English as “liveness and spoof detection”, as well as to sending, for instance, SMS codes as proof of verification. Clearly, the extent of safety of the knowledge or the asset that we’re defending will decide the quantity and tolerance for failure that we permit the safety measures that we would like to implement in every case.