Operational Security OT

OneSense believes it is important to understand the difference between information technology (IT) and operational technology (OT) where essentially OT controls equipment, and IT controls data.

Specifically, IT focuses on securing confidentiality, integrity, and availability of systems and data through user controls with OT systems to interact with IT systems delivering real-time data from source devices. With OT/IT integration, the data collected by physical equipment and IIOT devices can be used to identify problems or increase efficiencies.

OT is the use of hardware and software to monitor and control physical processes, devices and monitoring critical infrastructure (CI). Traditionally OT cyber security was not necessary because OT systems were not connected to the internet. As such they were not exposed to outside threats.  As digital innovation (DI) initiatives expanded, IT and OT networks converged as organisations bolt-on specific point solutions to address specific issues. These approaches to OT security resulted in a complex network where solutions could not or readily share information and provide full visibility.

Industrial control systems (ICS) are a main component of OT where ICS includes different types of devices, systems, controls, and networks that manage a variety of industrial processes. The most common are supervisory control and data acquisition (SCADA) systems and distributed control systems (DCS). SCADA systems collect data from sensors, often at distributed sites and send it to a central computer that manages and controls the data. DCS are used to manage local controllers or devices of production systems in one location.

IoT devices have largely applied common IP security protocols often fully reliant on communications providers security and which was an extension of the IT network used in SCADA applications. In the IP scenario there is no difference for OT and IT security where every part of the network is vulnerable from access intrusion that can then reach all the way to the devices with potential consequences for the data and for the critical infrastructure operations.

The smallest components of operational technology are a diverse array of sensors, monitors, actuators, and other technologies that are deployed on or near OT equipment. This equipment is pervasive and includes generators, pipelines, fans, programmable logic controllers (PLC), remote processing units (RPU), industrial robots, etc. that are examples of IIOT. Connecting a previously air-gapped (not connected to the outside world) OT network to the internet via an IT network immediately exposes the OT network and all connected OT devices to the entire threat landscape.

The rise of remote access to OT networks by third-party vendors reliant on IP addressable device security methods further expands the attack surface and creates new vulnerabilities. Emergency services, water treatment plants, traffic management, and other critical infrastructure rely on operational technology solutions to operate correctly that rely on hyper CyberSecurity experts to defend each and every device and process at huge cost of resources and capital for no guaranteed security from equally capable attacks. While historically, cyber criminals have been primarily interested in stealing data, they are increasingly targeting OT networks as they recognise the potential for disruption due to inadequate OT security. They are developing more sophisticated and destructive attacks targeted specifically at operational technology companies. OT security risk is indeed a top concern and nearly 74% of OT organizations reported experiencing a malware intrusion in the past 12 months, causing damages to productivity, revenue, brand trust, intellectual property, and physical safety.

OneSense had changed the landscape from having to continuously defend against attacks to eliminating the opportunity to attack from device and nodes to the platform with a more reliable, less complex and lower cost security approach. IP type security and reliance on communications provider system security remains as an unavoidable attack opportunity for rogue access to operating systems and applications to embed malware from infiltrating through standard user access.

On the OneSense platform, the OT devices and data channel between the end points and the data storage is independently protected. Devices are largely machine configured and with real-time data and data sets used in applications that are not routinely exposed to user permissions. The sharing of data or simply reporting on the analytics through restricted roles for approved users and tablets is for the tenancy owner to manage with risks substantially reduced.  Any on-line attack potential is limited where an attempted intrusion can be instantly reported by intelligent actions from rules and alerts to programmed issues.

The significant benefit of this approach is peace of mind, not having to invest unproductive money to layer upon layer of complex cyber security or the need for large human engineering or consultants resources protecting individual devices, checking for anomalies inside the network as a needle in a hay-stack and being reactive and anticipatory of what an IP based attack will do at enormous unproductive cost.

OneSense has unmitigated security for OT, with simpler configurations and integration for device driven data and applications. OneSense with substantially low cost represents your best choice value for business for the future. Contact OneSense . . . here to get started for competitive and efficient business of the future.