TI Safe

Class | Support & Admin | DL | Hub |

Home Technologies Industrial Network Protection

Technologies

Industrial Network Protection

Industrial Firewalls

Automation network managers still believe that by setting up firewalls to isolate the automation network from other external networks, they will be fully protected. They are mistaken, often threats enter the automation network directly through notebooks, removable media and VPNs, completely ignoring perimeter defense solutions. A secure automation network must protect not only its perimeter but also its internal network. Industrial firewalls segment control networks into security zones. They must be installed in all network segments demarcated in an industrial cybersecurity project. They are configured to inspect network packets, in order to allow only the authorized flow to / from the automation network.

Photo: Palo Alto PA-220R industrial firewall protecting a power grid

Key Features:

  • Protection of industrial networks: In its Rugged model, it is indicated for edge security of electricity substation networks, water treatment stations (ETAs), sewage treatment stations (ETEs), and any other type of critical network in hostile environments.
  •  Protection of devices without their own security features: Automation devices may not have native security. With the use of automation firewalls, layers of protection can be added without the need for updates to existing systems.
  • Real-time security: Industrial firewalls allow real-time data traffic to equipment confined to the same security segment.
  • Robust design: Suitable for uncontrolled environments with different levels of temperature and humidity, it has the following features: High active / passive and active / active (HA), Passive cooling (without fans) to reduce noise and energy consumption, RJ-45 ports with integrated surge protection and 12-24VDC power inputs for power redundancy.

 

Industrial IDS

Industrial IDS is a solution capable of providing security by quickly detecting cyber threats and anomalies in processes, providing unprecedented operational visibility. This solution automatically discovers the assets of the industrial network, including its components, connections and topology. It also develops security and process profiles, in addition to monitoring the system in real time for any changes. An industrial IDS adds a layer of security to the company's TO network passively, providing:

  • Visibility of the industrial automation network, including anomalous behaviors based on artificial intelligence
  • Detection of threats, vulnerabilities and incidents based on behavioral deviations and signature bases
  • Advanced remediation of environments by structuring detailed diagnoses of security incidents
  • Centralized management in distributed networks, in which IDS sensors are integrated in a single view

 

Figure: Industrial IDS solution management console