RTAPSCADA.com    |    Teltone.com

Industrial Defender  

Solutions

Defense-in-Depth

 

Integrated Security Technologies

A basic principal of a comprehensive cyber security plan is Defense-in-Depth™. Defense-in-Depth presumes that no single mode of security mitigation is impenetrable or sufficient, and that a security solution must be compromised of several layers of mitigation technology that address prevention, detection, and response to various attack types. These technologies must be unified under an integrated monitor and response discipline, providing overall security situation awareness including the ability to correlate and associate events and responses in different areas of the systems environment.

Industrial Defender's Defense-in-Depth approach includes three major solution categories:

Intrusion Prevention

Intrusion Prevention is essentially "keeping the bad stuff out" and is implemented at both the network perimeter via a Unified Threat Management platform (UTM/Firewall), and within servers and end-point devices via a Host Intrusion Prevention System (HIPS). HIPS uses Application Whitelisting to prevent malware or other untrusted, unauthorized changes and processes on the target system.

Access Management

Access Management means allowing the "good players" in through the perimeter and into end point systems, with screening granularity down to the application and roles level – and only after rigorous authentication and authorization. Industrial Defender's Access Manager product provides perimeter and system access control for remote dial-up and IP-based locations, while UTM/Firewall and Network Intrusion Detection System (NIDS) supplement other control systems access solutions in local control room implementations.

Monitoring & Response

Monitoring and response provides unified situational awareness across the systems environment, integrating intrusion detection, performance monitoring and event management from all protected systems, end point devices, perimeter/firewall platforms and network infrastructure. Key elements of Industrial Defender's solution are the Security Event Manager (SEM), Network Intrusion Detection System (NIDS), and various Sensors (Device Interface software).

Industrial Defender's Defense-in-Depth products are purpose-built for control system environments, with low impact on the performance and availability of critical control systems, awareness of applications and protocols unique to the control environment, custom instrumentation to many leading control vendor products, and a focus on the high availability requirements of automation control systems.