Verano launches protection appliance for industrial operations

Mansfield, MA—To increase control system security and reliability in industrial applications, Verano Inc. has launched its Industrial Defender Guard appliance that protects control systems and networks against cyber-attacks by integrating security features, including virus protection and intrusion prevention.


Mansfield, MA— To increase control system security and reliability in power generation, electrical, energy distribution, water treatment, waste handling and transportation applications, Verano Inc. has launched its Industrial Defender Guard. The company says Guard is the first perimeter-protection appliance that protects control systems and networks against cyber-attacks by integrating an array of security features, including virus protection and intrusion prevention.

Guard is the second part of Industrial Defender’s solution, which was launched in June 2003. Verano says its new Guard option makes Industrial Defender the only security management system designed to monitor and protect control infrastructure from external and internal hazards.

To alleviate cyber-security threats, users operating mission-critical infrastructures needs to secure their control systems and networks to mitigate risks and avoid critical data losses; revenue-generation interruptions; blackouts; and possibly endangering public safety. Verano reports that traditional enterprise solutions aren’t equipped to secure a specific plant’s control system because they can’t interact with equipment running on industrial control networks.

Consequently, Verano built Industrial Defender on Red Hat, hardened with SELinux extensions developed by the National Security Agency (NSA). The Guard intrusion prevention appliance is fully integrated with Industrial Defender, and is viewable from one operator interface. This means that, for the first time, control system and network security is put in the hands of the control engineer, rather than the IT department.

Guard also includes a patent-pending Dynamic Lock-Down feature, which is tied to security threat levels, such as those determined by the U.S. Department of Homeland Security (DHS). During heightened threat levels, Guard enables rapid lockdown of the plant environment based on pre-configured security rules, which dynamically modify control environment access to protect

In addition, Guard can be added to existing systems at the connection point to the external network, which allows blocking of unauthorized users and malicious content. The appliance’s ASIC-based architecture allows in-line intrusion prevention, network virus scanning, content filtering and VPN gateway functionality to be delivered at wire speed.

'Industrial Defender provides reliable visibility into potential security and availability concerns in the plant environment,' says Al Cooley, Verano’s security director. 'The addition of perimeter defense functionality with the integrated Guard appliance is very valuable to our customers, enabling fortification of critical assets from a wide variety of incoming threats, without the need to deploy and manage multiple solutions.'

Industrial Defender Guard other features include:

  • ASIC-based firewall, which blocks unauthorized users from plant networks, and provides real-time inspection of web, e-mail and FTP traffic;

  • Network anti-virus filtering, which protects vulnerable control systems that can’t run desktop anti-virus products;

  • Built-in intrusion prevention system (IPS) that recognizes and eliminates malicious traffic be-fore it hits critical systems;

  • VPN support to establish secure, encrypted links to remote users;

  • Verano Rules Manager with immediate lockdown, which provides rapid, reliable pre-planned responses during heightened-threats periods; and

  • Full integrations with Industrial Defender, providing monitoring and control from one operator-friendly interface.

Control Engineering Daily News Desk
Jim Montague, news editor

No comments
The Engineers' Choice Awards highlight some of the best new control, instrumentation and automation products as chosen by...
The System Integrator Giants program lists the top 100 system integrators among companies listed in CFE Media's Global System Integrator Database.
The Engineering Leaders Under 40 program identifies and gives recognition to young engineers who...
This eGuide illustrates solutions, applications and benefits of machine vision systems.
Learn how to increase device reliability in harsh environments and decrease unplanned system downtime.
This eGuide contains a series of articles and videos that considers theoretical and practical; immediate needs and a look into the future.
Big Data and IIoT value; Monitoring Big Data; Robotics safety standards and programming; Learning about PID
Motor specification guidelines; Understanding multivariable control; Improving a safety instrumented system; 2017 Engineers' Choice Award Winners
Selecting the best controller from several viewpoints; System integrator advice for the IIoT; TSN and real-time Ethernet; Questions to ask when selecting a VFD; Action items for an aging PLC/DCS
This digital report will explore several aspects of how IIoT will transform manufacturing in the coming years.
Motion control advances and solutions can help with machine control, automated control on assembly lines, integration of robotics and automation, and machine safety.
This article collection contains several articles on the Industrial Internet of Things (IIoT) and how it is transforming manufacturing.

Find and connect with the most suitable service provider for your unique application. Start searching the Global System Integrator Database Now!

Future of oil and gas projects; Reservoir models; The importance of SCADA to oil and gas
Big Data and bigger solutions; Tablet technologies; SCADA developments
SCADA at the junction, Managing risk through maintenance, Moving at the speed of data
Automation Engineer; Wood Group
System Integrator; Cross Integrated Systems Group
Jose S. Vasquez, Jr.
Fire & Life Safety Engineer; Technip USA Inc.
click me