The global market for IoT devices is expected to reach a market value of 413.7 billion US dollars by 2031. According to the Palo Alto Networks IoT Threat Report, IoT devices are an easy target for attackers due to their vulnerability: 57% of IoT devices are at risk of medium or high threat level attacks. Device manufacturers therefore need assessment tools to identify and fix security vulnerabilities in devices. One component of such a security assessment is fuzzing, an automated software testing method in which invalid, erroneous or unexpected inputs are fed into a device to uncover errors and vulnerabilities.

Under the agreement, Synopsys' 'Defensics Fuzzing Tool' will be integrated as an option into Keysight 's 'IoT Security Assessment' solution. This provides users with a solution that combines known vulnerability assessments with a versatile fuzzer. This can analyze over 300 different technology protocols used in different industries to test for unknown vulnerabilities. In addition to reporting security flaws uncovered through fuzzing, the solution detects potential vulnerabilities resulting from weak authentication and encryption, expired certificates, Android vulnerabilities and Android Debug Bridge (ADB) exposures, known Common Vulnerabilities and Exposures (CVEs) and embedded vulnerabilities in protocol stacks such as Bluetooth Low Energy attacks like Sweyntooth and Braktooth.

The turnkey cybersecurity certification platform enables automated validation through a point-and-click interface, allowing new IoT products to get to market quickly.

Scott Johnson, Vice President of Product Management, Synopsys Software Integrity Group, said: "With billions of IoT devices already in use and more to come, security testing is more important than ever to address new threats and evolving regulations."

Ram Periakaruppan, Vice President and General Manager, Network Test & Security Solutions, Keysight, added: "By partnering with Synopsys and incorporating their industry-leading fuzzing tool, Keysight can provide device manufacturers with a comprehensive security testing solution to identify previously unknown protocol stack vulnerabilities in their devices while testing them for known threats - all from a single, easy-to-use interface."