It covers systems including ICS/SCADA servers, HMI panels, engineering workstations, PLCs to secure them from cyber-threats without affecting operational continuity and consistency of the technological process, claims the company. The solution offers a combination of conventional security technologies, adapted for an ICS environment, such as anti‘malware protection, whitelisting and vulnerability assessment functionality. According to Kaspersky, it also has a unique technologies" designed specifically for industrial environments, including an integrity check for PLC programs, semantic monitoring of process control commands and telemetry data to detect cyber-attacks targeting the physical part of an infrastructure.
Kaspersky Industrial CyberSecurity also provides an Observability Mode focused only on the detection of cyber-attacks, operation personnel faults and anomalies inside an industrial network. All prevention and detection technologies are managed through a single centralised management console. Kaspersky Industrial CyberSecurity also enables infrastructure operators build a security strategy by adding specialised security services to develop incident response and prediction capabilities.
Customisable settings of Kaspersky Industrial CyberSecurity mean it can be configured in strict accordance with the requirements of different industries, facilities and production lines. This allows the solution to be integrated into an organisation's existing ICS network and technological processes without any modifications to the network and to the process. Kaspersky's technologies are tested by and certified with ICS vendors.
"An increasing number of [industrial systems and critical infrastructures] are using devices and channels that interact with the outside world, said Eugene Kaspersky, CEO of Kaspersky Lab. Sometimes they use equipment that was never intended for external access, not to mention software that was created decades ago and has not been upgraded since. This is a very serious issue because not only is the continuity of the production process at stake, the environment and even human lives can be at risk.
Our solution is capable of ensuring the cybersecurity of the technology cycle at all levels of automated process control. We are also actively cooperating with manufacturers of automation systems in order to develop equipment that takes new cybersecurity standards and requirements into consideration," added Kaspersky.
Kaspersky Industrial CyberSecurity has been piloted and integrated in a number of projects. This includes the VARS petrochemical terminal and TANECO, an oil refinery company.
VARS continuously monitors the evolution of the cyberthreat landscape and we realised that we were an increasingly vulnerable target for attack, commented Roman Yanukovich, SIA VARS technical director. Left unprotected, an IT security breach could severely disrupt and disable our automated operations with severe implications for the port's commercial viability, the safety of our employees, the population of the nearby town of Ventspils, not to mention the risk of potential contamination of the Baltic sea. Kaspersky Industrial CyberSecurity enables us to protect the terminal and its customers from such an attack."
We needed to put comprehensive security measures in place to protect our operations against cyberthreats at any ICS level, said Marat Gilmutdinov, head of Industrial Control Systems Department at TANECO. Just months after deployment, Kaspersky Industrial CyberSecurity detected an unauthorised connection attempt by an outside laptop to one of the controllers. The attackers were attempting to modify the operation settings of a sensor.
