As the number of connection points between industrial systems and IT increases due to digital transformation (DX), and related security threats continue, AhnLab and its subsidiary Naonworks introduced a solution to safely protect the OT environment.
AhnLab, together with its OT security subsidiary Naonworks, launched ‘CEREBRO-IDS’, a dedicated solution for OT (Operational Technology) visibility and threat detection monitoring for industrial and social infrastructure security.
‘CEREBRO-IDS’ is the first product jointly developed and released by the two companies after AhnLab acquired Naonworks as a subsidiary in 2021. By combining AhnLab’s security threat detection technology and Naonworks’ OT protocol analysis technology, it provides visibility into the status of various OT assets such as production lines and control facilities, and detects various abnormal activities and security threats occurring in the network in real time.
‘CEREBRO-IDS’ ▲Enhances visibility of integrated information such as the status and topology map of IT/OT major assets and network sessions ▲Detects various security threats such as malicious code intrusion, harmful traffic, and vulnerabilities ▲In-depth analysis of OT protocols and machine learning It provides key functions such as base abnormality control detection and integration with third party control platforms.
This new product is a vaccine engine equipped with AhnLab’s advanced threat detection technology in an environment where the contact points between industrial and IT networks are increasing due to digital transformation (DX), etc., increasing the response to various new and variant malware targeting the OT environment. It is characteristic. In addition, Naonworks’ OT protocol analysis function, which applies machine learning technology, detects abnormal behavior such as ‘unauthorized control setting tampering’ and ‘user setting error’ and provides notifications for real-time security monitoring.
‘CEREBRO-IDS’ also provides configuration that guarantees availability and efficient operation. Through a mirroring method that does not change the network of existing facilities, various threats and abnormal control of the OT network can be detected without concerns about facility availability. In addition, by providing policy settings and management functions for each sensor, the efficiency of security work can be increased by flexibly managing different environments for each process.
Joon-kyung Lee, CEO of Naonworks, said, “The basics of OT security are identifying key assets subject to security and adopting a passive monitoring method that does not affect OT network availability.” He added, “‘CEREBRO-IDS’ is designed to help new customers “It is an OT-specific security solution specialized in ensuring safe operation of the site without concerns about availability when introducing the solution.”
Lee Sang-guk, executive director of AhnLab’s marketing division, said, “The main cause of major OT security incidents that have occurred recently, such as the paralysis of U.S. oil pipeline facilities and Japanese automobile factories, was the infiltration of malicious codes that exploited external connections.” He added, “As OT security threats are gradually becoming more sophisticated, AhnLab and “CEREBRO-IDS, which combines Naonworks’ technology, will help customers in various industrial environments easily identify and respond to their assets and security status.”
Source: Pangyo Techno Valley Official Newsroom
→ Go to ‘Asian Innovation Hub Pangyo Techno Valley 2022’ news