Cookie consent(s)
We use cookies on our website to personalize content and ads, to provide social media features and to analyze traffic to our website. Please click "ACCEPT ALL" to enable us to offer you the best possible experience on our website. By doing so, you consent to the processing and sharing of your information with our social media, advertising and analytics partners. You can revoke your consent at any time on the cookie settings page​.
Privacy statement
man behind computer with coding on laptop
DEKRA Product Testing

Better knowledge of your cloud services, hardware, firmware, mobile apps and its vulnerabilities

Contact Request quote

Penetration testing

Targeted and structured product penetration testing

Penetration testing is a simulation of cyberattacks on your systems to evaluate the effectiveness of your security measures and identify any vulnerabilities. DEKRA’s experienced penetration testing experts help customers strengthen their cyber security, identifying and revealing device or network vulnerabilities or weaknesses. Penetration testing is mandatory as part of IEC 62443, the standard specifically aimed at the security of Industrial Automation and Control Systems (IACS).

What is a penetration test?

A penetration test for products is a simulated cyberattack on a specific product, such as an IoT device, software application, or embedded system. The goal is to evaluate the product’s security, identify vulnerabilities, and assess its resilience against potential cyber threats.
Based on our experience in the field of connected and smart IoT devices, our experts have developed a proprietary methodology for product penetration tests based on a tailored assessment where we cover more than 200 evaluation cases to ensure that connected devices meet the minimum security requirements demanded by the market.

About penetration testing

After a security breach, many companies often lose valuable resources, assets, customer information, intellectual property or worse. Enterprises of all sizes use connected IoT networks and devices that offer multiple advantages, including increased connectivity and automated processes. But at the same time they increase a company’s exposure to possible external attacks. Therefore, it is necessary to evaluate security by understanding the ecosystem surrounding IoT devices.
IoT penetration testing is complex. The IoT network is, in fact, a cyber-version of the organization itself. And penetration testing requires a good understanding of the complete ecosystem and very specialized cyber security measures in order to protect the organization against cyber risks.
DEKRA’s penetration testing experts help our customers to strengthen their cyber security with targeted and step-by-step network penetration testing. Penetration testing is an effective way to reveal the weaknesses that malware, hackers and other destructive elements look to exploit.
DEKRA’s penetration testing experts apply the latest penetration testing methodologies and tools to discover where a customer’s product is weakest, providing customized product penetration testing services according to the customer’s goals and the system’s requirements.

Our approach: 6 basic steps

Our product penetration tests follow six basic steps:
1. Collecting information
2. Modelling Threats
3. Analyzing vulnerabilities
4. Exploitation
5. Post Exploitation
6. Reporting