2016_HSA_Yrbk_YUMPU_r2___

More documents

Recommendations

Info

GSN 2016 DIGITAL YEARBOOK OF HOMELAND SECURITY AWARDS RECIPIENTS 2016 Vendors of IT and Cybersecurity Products and Solutions Indegy 2016 Winner Awards Category: –––––––––––––––––––––––––––––––––––––––– Best Industrial Cybersecurity Solution Reason this entry deserves to win: –––––––––––––––––––––––––––––––––––––––– Indegy has developed a cyber security platform that protects Industrial Control Systems (ICS)/ SCADA used in critical infrastructures (energy, water utilities, petrochemical plants, manufacturing facilities, etc.) by providing comprehensive visibility into the control-plane engineering activities of Operational Technology (OT) networks. By detecting unauthorized access and logic changes made to process controllers like PLCs, RTUs and DCS that are used to manage the lifecycle of industrial processes, Indegy identifies threats that place the safety, reliability and security of ICS systems at risk. Indegy provides advanced protection against cyber attacks, insider threats and human error. Contrary to popular belief, it is not difficult to attack ICS networks. Any second year engineering student with a basic understanding of industrial control systems has the requisite knowledge. However, while easy to attack, ICS networks are difficult to defend. First, ICS networks are inherently different than IT environments. They were designed and implemented decades ago, before the cyber threat existed, and therefore lack basic security mechanisms found in IT networks, such as authentication, encryption or logging capabilities. Many are poorly protected by “Air Gaps”, which are meaningless in today’s Internetconnected environments. Second, ICS devices and applications are rarely patched due to concerns over stability, disruptions and production downtime. Third, the communications in ICS networks are very different that those in IT networks. While application data and physical measurements are communicated over known and standardized industrial protocols like 12
Link to Web Page of Nominated Organization: –––––––––––––––––––––––––––––––––––––––– http://www.indegy.com/ Link to additional information: –––––––––––––––––––––––––––––––––––––––– A short video depicting the technology: https://www.youtube.com/watch?v=xsK-1XnUVr4 MODBUS, PROFINET, DNP3 and others, engineering activities used for programing PLCs, RTUs and DCSs are carried over proprietary, vendor-specific, and largely undocumented protocols. This includes all controller logic updates, configuration changes and firmware uploads/downloads, use vendor-specific protocols. If we would compare it to IT networks, these activities would be called privileged activities. Only that in ICS networks there are no controls to restrict these activities to privileged users or monitor them. Current IT cyber security solutions do not have the appropriate technology to monitor these proprietary vendor specific protocols and the engineering activities that can indicate cyber attacks, identify malicious insiders or detect human error. The Indegy Industrial Cyber Security Platform is natively designed for ICS networks and is the only cyber security platform capable of providing comprehensive visibility into the control-plane engineering activities of OT networks, covering both network activity and direct physical access to critical assets. As a result of extensive research by Indegy’s R&D labs, the depth of the platform’s deep packet inspection (DPI) engine and its ability to parse in real-time all engineering-level activi- Continued on next page “Attacks on industrial control and supervisory control and data acquisition (SCADA) systems is a continuing problem hanging over critical infrastructure like power grids and water supplies. Its appliances protect deployed SCADA devices that may be too numerous to replace with more secure ones. By monitoring to find alterations in the control planes of SCADA devices Indegy can discover potential changes to their programmable logic controllers that may indicate attacks. This can help discover threats before they are carried out to older systems lacking defenses.” – Tim Greene, Senior Editor, Network World http://www.networkworld.com/article/3080097/security/hot-security-startups-to-watch.html In Dark Reading, Indegy CEO Barak Perelman explains the threats to critical infrastructure, “And Now, A Cyber Arms Race Towards Critical Infrastructure Attacks” http://www.darkreading.com/attacks-breaches/andnow-a-cyber-arms-race-towards-critical-infrastructure-attacks/a/d-id/1323225? Nominating contact for this entry: –––––––––––––––––––––––––––––––––––––––– Marc Gendron, President Marc Gendron Public Relations office: 781-237-0341 cell: 617-877-7480 Nominating contact email address: –––––––––––––––––––––––––––––––––––––––– marc@mgpr.net Nominating organization address: –––––––––––––––––––––––––––––––––––––––– Marc Gendron Public Relations 190 Lower County Road W. Harwich, MA 02671 13
Page 1 and 2: The GSN 2016 Digital Yearbook OF Ho
Page 4 and 5: The GSN 2016 Homeland Security Awar
Page 14 and 15: ties carried over proprietary contr
Page 16 and 17: GSN 2016 DIGITAL YEARBOOK OF HOMELA
Page 34 and 35: onto the expansion cable of Hirsch
Page 36 and 37: onto the expansion cable of Hirsch
Page 38 and 39: a library of more than 150 question
Page 40 and 41: and our proxy technology protects t
Page 42 and 43: any code changes, or hardware and d
Page 44 and 45: 43
Page 46 and 47: ates context-rich alerts, summarizi
Page 48 and 49: erArk can isolate, monitor, record
Page 50 and 51: with today’s sophisticated and ta
Page 52 and 53: 51
Page 54 and 55: Category #1: Vendors of IT Security
Page 56 and 57: Category #1: Vendors of IT Security
Page 58 and 59: DETECTION PRODUCTS Best Chemical De
Page 60 and 61: Link to Web Page of Nominated Organ
Page 62 and 63:
saves lives. By immediately notifyi
Page 64 and 65:
Link to Web Page of Nominated Organ
Page 66 and 67:
onto the expansion cable of Hirsch
Page 68 and 69:
of experience with acoustic gunshot
Page 70 and 71:
environments with zero false alerts
Page 72 and 73:
organizations. The prefabricated un
Page 74 and 75:
Page 76 and 77:
Page 78 and 79:
Category #2: Vendors of Physical Se
Page 80 and 81:
2016 Government Excellence Entry se
Page 82 and 83:
quickly and easily create rules tha
Page 84 and 85:
Page 86 and 87:
85
Page 88 and 89:
National Cybersecurity and Communic
Page 90 and 91:
attacks and knowledge assessments a
Page 92 and 93:
Page 94 and 95:
to over 540 graduates from 57 diffe
show all

2016_HSA_Yrbk_YUMPU_r2___

Create successful ePaper yourself

Delete template?

Save as template?