Crunchfish having world-leading expertise to deliver device agnostic trusted client applications has been engaged to conduct a security and vulnerability assessment for a prominent payment service. The assessment will be conducted during Q2 for a contract value of 325,000 SEK.

Crunchfish has been engaged to perform a security and vulnerability assessment for a leading payment scheme. The objectives of the assessment are to identify and evaluate potential impact of vulnerabilities and to provide recommendations for risk mitigation. The project will start in May and be presented in a report and a workshop within a month. The vulnerability assessment is charged at approximately 325,000 SEK, whereof 25% will be invoiced at project start and the remaining 75% after project completion.

“Crunchfish understands how to deliver device-agnostic trusted client applications. The results of the assessment will be presented to the payment scheme and will form the basis for a discussion on how Crunchfish Digital Cash may support them to overcome identified security vulnerabilities.", says Joachim Samuelsson, Crunchfish’s CEO.

For more information, please contact:

Joachim Samuelsson, CEO of Crunchfish AB

+46 708 46 47 88

joachim.samuelsson@crunchfish.com 

This information is Crunchfish AB obliged to publish in accordance with the EU Market Abuse Regulation. The information was provided by the contact person above for publication on 29th May 2024 at 16:10 CET.

Västra Hamnen Corporate Finance AB is the Certified Adviser. Email: ca@vhcorp.se. Telephone +46 40 200 250.

About Crunchfish – crunchfish.com

Crunchfish is a deep tech company developing a device-agnostic generic trusted client application platform for offline payments, tokenized card payments as well as other mobile client / server systems. Crunchfish has been listed on Nasdaq First North Growth Market since 2016, with headquarters in Malmö, Sweden and with a subsidiary in India.

Download as PDF

Privacy is an area that has not been explored deeply for CBDC systems, yet it is key for public adoption of digital currencies. In this whitepaper, Crunchfish outlines practical considerations for how privacy may be implemented in CBDC systems and presents an innovation that balances the public’s need for privacy with regulatory requirements for transactional traceability.

This whitepaper introduces a way of implementing privacy in CBDC systems. Crunchfish has recently implemented and patented a novel approach with balance reconciliation. Private transactions are encrypted and sent to the backend, but where the keys used for the transaction are wallet keys, in contrast to prior art using public keys controlled by either the issuer or an escrow agent. In this way the payer is in full control of the privacy of their transactions even if all private transactions are sent to the online ledger encrypted. In this innovative way, regulatory requirements for transactional traceability are balanced with requirements for privacy where the payer is in full control of the encrypted transactional data for amounts below defined thresholds, defined by the issuer and the regulator. If the issuer suspects an attack by the payer, the issuer can contact the payer for permission to decrypt the data. In case the payer is not willing to grant access, the issuer may decide to lock the wallet or disallow any more private transactions.

The whitepaper is attached to this communication and available with other Crunchfish whitepapers. This whitepaper is published also as a supplement to Central Bank Payments News, May 2024. At the Central Bank Payment Conference in Kuala Lumpur on June 10-12, Crunchfish will present technical ways to guarantee true privacy in CBDC systems and discuss security and scalability issues for hardware- and software-based CBDC mobile wallets.

For more information, please contact:

Joachim Samuelsson, CEO of Crunchfish AB

+46 708 46 47 88

joachim.samuelsson@crunchfish.com 

This information was provided by the above for publication on 28th May 2024 at 08:30 CET.

Västra Hamnen Corporate Finance AB is the Certified Adviser. Email: ca@vhcorp.se. Telephone +46 40 200 250.

About Crunchfish – crunchfish.com

Crunchfish is a deep tech company developing a Digital Cash platform for Banks, Payment Services and CBDC implementations and Gesture Interaction technology for AR/VR and automotive industry. Crunchfish is listed on Nasdaq First North Growth Market since 2016, with headquarters in Malmö, Sweden and with a subsidiary in India.

Access to the full white paper following this link

Download as PDF

Crunchfish AB (“Crunchfish”) Q1 2024 webinar is now available, where Crunchfish CEO Joachim Samuelsson is interviewed by analyst Axel Dahlman from Västra Hamnen Corporate Finance. It comes together with an equity analysis made by Västra Hamnen equity analysts.

The webinar about Crunchfish interim report for Q1 2024 is now available via the following link:

Webinar Q1

The equity analysis document is available on the following link:
Crunchfish Q1 equity analysis

Crunchfish interim report for Q1 2024 is available via the following link:

Crunchfish Q1 2024

For more information, please contact:

Joachim Samuelsson, CEO of Crunchfish AB

+46 708 46 47 88

joachim.samuelsson@crunchfish.com 

This information was provided by the above for publication on 22nd May 2024 at 08:30 CET.

Västra Hamnen Corporate Finance AB is the Certified Adviser. Email: ca@vhcorp.se. Telephone +46 40 200 250.

About Crunchfish – crunchfish.com

Crunchfish is a deep tech company developing a device-agnostic generic trusted client application platform for offline payments, tokenized card payments as well as other mobile client / server systems. Crunchfish has been listed on Nasdaq First North Growth Market since 2016, with headquarters in Malmö, Sweden and with a subsidiary in India.

Download as PDF

The report is available as an attached document to this press release as well as through the company’s website.

“Crunchfish is a pioneer in offline payments. The technology that Crunchfish has been developing since 2020 can make all kinds of mobile applications more secure. It is finally possible to place trust in clients, regardless of which mobile device the user has. Crunchfish emphasizes this broadening of our offering by making “Trust in Clients” Crunchfish’s new tagline.”, says Joachim Samuelsson, Crunchfish’s CEO.

For more information, please contact:

Joachim Samuelsson, CEO of Crunchfish AB

+46 708 46 47 88

joachim.samuelsson@crunchfish.com 

This information is Crunchfish AB obliged to publish in accordance with the EU Market Abuse Regulation. The information was provided by the contact person above for publication on 21st May 2024 at 08:30 CET.

Västra Hamnen Corporate Finance AB is the Certified Adviser. Email: ca@vhcorp.se. Telephone +46 40 200 250.

About Crunchfish – crunchfish.com

Crunchfish is a deep tech company developing a device-agnostic generic trusted client application platform for offline payments, tokenized card payments as well as other mobile client / server systems. Crunchfish has been listed on Nasdaq First North Growth Market since 2016, with headquarters in Malmö, Sweden and with a subsidiary in India.

Find attached the full Q1 report

Download as PDF

On Tuesday, May 21st at 08.30 CET / 13.00 IST, Crunchfish publishes its Q1 report for 2024. At 08.45 CET / 13.30 IST, a webinar about the report will be hosted on Zoom where Crunchfish CEO Joachim Samuelsson will be interviewed by analyst Axel Dahlman from Västra Hamnen Corporate Finance.

During the webinar, the chat function will be active, and the participants will be able to ask question regarding the report. In order to participate, registration is done via the following link.  

A recording of this webinar will also be available afterward on Crunchfish’s website as well as Västra Hamnen Corporate Finance’s website. 

For more information, please contact:

Joachim Samuelsson, CEO of Crunchfish AB

+46 708 46 47 88

joachim.samuelsson@crunchfish.com 

This information was provided by the above for publication on 15th May 2024 at 12:00 CET.

Västra Hamnen Corporate Finance AB is the Certified Adviser. Email: ca@vhcorp.se. Telephone +46 40 200 250.

About Crunchfish – crunchfish.com

Crunchfish is a deep tech company developing a device-agnostic generic trusted client application platform for offline payments, tokenized card payments as well as other mobile client / server systems. Crunchfish has been listed on Nasdaq First North Growth Market since 2016, with headquarters in Malmö, Sweden and with a subsidiary in India.

Download as PDF

Crunchfish AB (“Crunchfish”) has applied for a strategically important and broad patent, protecting the use of device-agnostic trusted client applications for offline use cases in any mobile client / server system. There are multiple market segments where device-agnostic trusted client applications for offline use cases are of importance. The patent if granted will be valid for 20 years until May 2044.

Crunchfish patents device agnostic trusted client applications in mobile client / server systems. Any client / server system stands to gain, especially when assets are handled offline in the client. There are multiple market segments where device-agnostic trusted client applications for offline use cases are of importance. Payments is certainly one, but also for general wallets that handles various user credentials. Offline capabilities provide application resilience, faster response times and enables novel use cases and commercial benefits in diverse markets segments such as generative AI, mobile gaming, media consumption, and identification. Crunchfish is developing a platform for device-agnostic trusted client applications where Digital Cash for offline payments and the novel App-integrated Card Emulations (ACE) for tokenized card payments are the first two identified implementations. Additional mobile client / server applications will follow where the use case is either developed by Crunchfish or licensed to a 3rd party.     

In addition to enabling offline use cases, a trusted client application improves the overall security in the system. The server can rely on the client to perform certain security checks and validations locally before sending data to the server. This reduces the attack surface and vulnerabilities that malicious actors could exploit. It is also possible to offload security checks and processing from the server, leading to improved performance and scalability of the system. Authentication and encryption can seamlessly be integrated within the client application, enhancing the user experience without compromising security. Trust in clients facilitates also secure end-to-end encryption between the client and server, ensuring confidentiality and data integrity.

Application security is normally implemented in the server for client / server systems. With Crunchfish’s technology, it is possible to complement this server security with having trust in the clients’ applications as well. Trust in applications is based on the ability to handle data securely 1) during execution, 2) when stored, and 3) in transit. The execution is vulnerable because data must be decrypted to be processed. This requires a secure element on the mobile device. To avoid limiting the user base to certain mobile devices, the secure element must not be hardware dependent, but instead software-based in an app-integrated virtual secure element. Data is stored on the mobile phone in encrypted files. For data integrity, it is necessary to be able to detect if files have been tampered with. The security protocol of the application makes the encrypted communication secure whilst data is in transit.

“Crunchfish complements server security with trust in clients. Device-agnostic, pre-packaged superior client security that enables offline use cases in any client / server system. This is a ground-breaking innovation applicable to any mobile application”, says Joachim Samuelsson, Crunchfish CEO. 

For more information, please contact:

Joachim Samuelsson, CEO of Crunchfish AB

+46 708 46 47 88

joachim.samuelsson@crunchfish.com

This information is such information as Crunchfish AB is obliged to make public pursuant to the EU Market Abuse Regulation. The information was submitted for publication, through the agency of the contact person set out above, at 08:00 CET on May 3rd, 2024.

Västra Hamnen Corporate Finance AB is the Certified Adviser. Email: ca@vhcorp.se. Telephone +46 40 200 250.

About Crunchfish – crunchfish.com

Crunchfish is a deep tech company developing a device-agnostic generic trusted client application platform for offline payments, tokenized card payments as well as other mobile client / server systems. Crunchfish has been listed on Nasdaq First North Growth Market since 2016, with headquarters in Malmö, Sweden and with a subsidiary in India.

Download as PDF