ioXt Alliance Certification Program

Introducing Cosmos

Named Leader of the GigaOm Radar for the third year in a row!

Meet Cosmos: The continuous offensive security solution designed to provide proactive defense.

Get Cosmos Attack Surface Management (CASM) for unmatched visibility into your changing external attack surface with continuous discovery and mapping.

Cosmos Application Penetration Testing

Cosmos Application Penetration Testing (CAPT) strengthens the security of business-critical applications with in-depth assessments.

Cosmos External Penetration Testing

Cosmos External Penetration Testing (CEPT) builds on Cosmos Attack Surface Management to provide the highest level of attack surface protection with post-exploitation activities.

The Best Defense is a Great Offense

See Why We're the Leaders in Offensive Security

Explore Services

Application Security

Ensure your applications are secure and improve your DevSecOps practices.

Red Team & Readiness

Get a holistic view of your ability to defend against a real-world attack.

IoT & Product Security

Validate interconnected devices and products are secure against attackers.

Cloud Security

Assess cloud security posture with expert testing and analysis of your environment.

Network Security

Get insight into how skilled adversaries could establish network access and put sensitive systems and data at risk.

AI/ML Security Assessment

Fortify the security of rapidly evolving AI/ML applications, models, and supporting infrastructures.

Compliance, Regulations, & Frameworks

Satisfy governance, risk, and compliance programs with our testing services.

Assessments for Our Partners

We're proud to work with Google, Facebook, and Amazon to increase security in their partner ecosystems.

A Ponemon Institute Report

The State of Offensive Security

Get the blueprint. Insights into how mature security organizations invest in offensive strategies.

Get the Report

Resource Center

Discover new offensive security resources, ranging from reports and eBooks to slide decks from speaking gigs.

Bulletins & Advisories

Explore the latest security bulletins and advisories released by our team.

Exploit for Fortinet CVE-2022-42475
Latest
View All

Blog

Dive into our blog for insights and perspectives from our offensive security experts.

Bishop Fox Labs

Learn more about our research and some of the most popular open-source security tools. Check them out here!

Why Partner with Us?

Join Forces with the Leaders in Offensive Security

Independent Assessment by TAG Cyber

Get the Report

Partner Program Overview

Learn about our partner programs and see how we can work together to provide best-in-class security offerings.

Find a Partner

Check out our awesome ecosystem of trusted partners to find the right solution for your needs.

Become a Partner

Explore partnership opportunities and apply to join forces with Bishop Fox.

Assessments for Our Partners

We're proud to work with Google, Facebook, and Amazon to increase the security of their partner ecosystems.

We're Hiring!

Want to Work with the Best Minds in Offensive Security?

Be part of an elite team and work on projects that have a real impact.

Explore Openings

Company Overview

Get to know us. Learn about our roots and see why we're on a mission to improve security for all.

Events

Join us at an upcoming event or peruse our speaking engagements, past and present.

Newsroom

Read the latest articles, announcements, and press releases from Bishop Fox.

Want to get in touch? We're ready to connect.

Career Opportunities

We're hiring! Explore our open positions and discover why the Fox Den is a great place to build your career.

Intern & Educational Programs

Starting your offensive security journey? Check out our internships and educational programs.

Bishop Fox Mexico

¡Celebramos! Bishop Fox is now in Mexico. Learn more about our expansion.

WE'RE AN AUTHORIZED LAB PARTNER

ioXt Alliance Testing & Certification

Bishop Fox is proud to be an authorized lab for the ioXt Alliance, providing testing and certification against the Standards for Global IoT Security.

The ioXt Alliance is a forward-thinking organization that is setting the global standard for the security of interconnected devices and applications. Comprised of hundreds of industry leaders, ioXt’s membership alliance has established eight clear principles that serve as the baseline for demonstrating product security to end-users, retailers, and ecosystem partners.

As an Authorized ioXt Lab, Bishop Fox is both a contributing member to the continued development of ioXt’s standards and a certified assessor of products. With deep knowledge of ioXt’s core principles and almost two decades of offensive security experience, Bishop Fox is uniquely positioned to streamline your path to certification.

Start Your ioXt Assessment:

By submitting this form, you indicate that you have read and agree to the terms of our Privacy Policy

Achieve certification. Demonstrate your commitment to IoT and product security.

Our evaluation process is purpose-built to help organizations achieve accreditation and alleviate the burden of self-assessment procedures, resulting in:

A higher probability of certification
An accelerated timeframe to accreditation
Quicker remediation in the event standards are not met
Avoidance of time and fees associated with retesting

To learn more about how Bishop Fox can certify your product, simply complete the form on this page.

Why Bishop Fox

Gain peace of mind with testing conducted by an industry leader who adheres to the rigor and gold standard of IoT testing.

Proven Delivery

With nearly two decades of experience and over 6,000 engagements delivered, Bishop Fox is recognized as the authority in offensive security. We’ve worked with hundreds of organizations to improve the security of their IoT devices and applications.

Ingenuity in IoT

We’re proud to be the innovators behind many popular offensive security tools and well-known IoT research that have helped strengthen the defenses of organizations around the globe. We put this innovation to work for our clients.

Deep Domain Expertise

Our assessment covers the full spectrum of ioXt’s core principles, and we bring years of experience in device security across many industries, including utilities, vehicles, telecom, smart home, medical, security systems, electronic locks, and much more.

FAQs

You have questions. We have answers.

What is the ioXt Alliance?

The ioXt Alliance is the Global Standard for IoT Security. Founded by leading technology and product manufacturing firms, including Google, Amazon, T-Mobile, Comcast and more, the ioXt Alliance is the only industry-led, global IoT product security and certification program in the world. Products with the ioXt SmartCert give consumers and retailers greater confidence in a highly connected world.

Why did Bishop Fox become a certified lab?

As the leader in offensive security, Bishop Fox has vast experience in IoT application and device testing. As an ioXt Certified Lab, clients have even greater peace of mind knowing that they are working with an industry leader who adheres to the rigor and gold standard of IoT testing.

Why would an organization choose a Certified Lab over self-certification

Certified Labs are well versed in conducting thorough examinations based on years of experience and domain expertise. This expertise leads to a higher probability of achieving certification.

Does Bishop Fox produce the same reporting for ioXt testing as their own product security review?

No. The reporting is based on the results of the ioXt profile test cases. Customers will be notified via the ioXt member portal of pass or fail for each test case.

Why should a company get ioXt Certified?

ioXt certification instills confidence in buyers, end users, and partners and shows your commitment to security. Certification also mitigates liability by showing adherence to industry standards, and “shares the load” by keeping the manufacturers of certified apps and devices informed of regulatory requirements and emerging threats.

What does it mean to be an ioXt Certified Lab?

The mission of the ioXt Alliance is to build manufacturer, developer, and consumer confidence in the security of IoT products. Authorized Labs are invaluable for building this confidence. They are the exclusive test providers for the ioXt Alliance and contribute input on ioXt standards.

Does Bishop Fox follow the same methodology for ioXt testing as its own product security review?

No, it follows the approved ioXt profiles. These profiles outline a series of test cases that follow the eight ioXt principles to provide guidelines for quantifying the appropriate level of security needed for a specific product. See more details here.

What specific types of vulnerabilities and weaknesses are being assessed?

The ioXt certification process covers a foundational level of security checks. Requirement details can be found here.

Women holding new Sonos speaker that Bishop Fox secured with hardware-based penetration tests. Sonos Makes Secure Moves with Bishop Fox.

Making Secure Moves With Bishop Fox

When Sonos was bringing a new voice-enabled speaker to the market, they turned to Bishop Fox to ensure that new product features didn't put customers at risk.

Learn more

RELATED RESOURCES

Extend your knowledge with these IoT security related resources.

View from below looking up at high rise buildings. You're Doing IoT RNG.

Tech

Aug 05, 2021

You're Doing IoT RNG

By Dan Petro, Allan Cecil

Industry

Aug 11, 2020

Is This IoT App Safe to Drink?

By Brianne Hughes

IoT devices icons stacked on semiconductor chips to represent connectivity and security.

Industry

Apr 23, 2020

An Introduction to the OWASP IoT Top 10

By Britt Kemp

Still have questions?

Chat with one of our security experts to learn how we can support your security needs.

This site uses cookies to provide you with a great user experience. By continuing to use our website, you consent to the use of cookies. To find out more about the cookies we use, please see our Privacy Policy.