mGuard Cybersecurity now with OPC Inspector and Conditional Firewall
With the new Conditional Firewall functionality, pre-defined situational firewall rule sets can literally be activated at the push of a button. By various simple triggering events, asset operators can thus switch between firewall rule sets for different operating conditions, e.g., when different connections shall be allowed or denied during production, maintenance, or remote servicing situations.
Given the threat to industrial systems by ever more targeted attacks with malware, there is also increased user interest in the mGuard Integrity Monitoring functionality. This option provides for the surveillance of industrial PCs against potential infections and manipulations and has been further improved in its usability. Besides physical mGuard appliances, all of the functions mentioned are also available in another showcased new software product, mGuard eVA, the embedded Virtual Appliance for Windows PCs.
The classic OPC protocol has been criticized long time for the IT security deficits and notorious firewall unfriendliness it inherited from Microsoft's DCOM model. Also, while OPC communication via routers is allowed, the masquerading or rewriting of addresses by network address translation (NAT) often desired for the integration of machinery and equipment into upper level networks has not been feasible without the help of additional OPC tunnels so far.
With OPC Unified Architecture (OPC-UA), a newer generation of OPC based on updated foundations is available which avoids the above deficits. However, the penetration of the market and installed base with this new technology is progressing slowly. Particularly in existing brown field plants, OPC classic will continue to be deployed for many years to come. Without add-on products, conventional firewalls will remain ineffective for OPC, resulting in poor network security of these applications.
PHOENIX CONTACT Cyber Security AG
Innominate, a Phoenix Contact Company, is a leading supplier of components and solutions for controlled and secured communication in industrial networks. The German company specializes in the protection of networked industrial systems and the secure remote diagnosis and maintenance of machinery and equipment over the Internet. Its mGuard product line of network security appliances provides router, firewall, virtual private network (VPN), as well as quality of service (QoS) functionalities and helps with intrusion detection and antivirus protection. The mGuard portfolio is complemented by highly scalable device management software and a Cloud-based Remote Services Portal. Innominate products are marketed worldwide under the mGuard brand through system integrators and OEM partners. Further information can be found at www.innominate.com.
Press releases you might also be interested in
Weitere Informationen zum Thema "Sicherheit":
Nur Safety plus Security macht Prozessanlagen sicher
Nach einer IBM-Studie ist die Wahrscheinlichkeit eines Cyberangriffs bei Produktionsanlagen höher als in der "Finanzindustrie". Der Beitrag soll zeigen, dass nur eine Lösung, die Funktions- und IT-Sicherheit kombiniert, Unternehmen in der Öl- und Gasindustrie ein Höchstmaß an Gesamtsicherheit ermöglicht.Weiterlesen