INDUSTRIAL SECURITY STORMSHIELD PROTECTION FOR OPERATIONAL NETWORKS. Unified Threat Management and Next-Generation Firewalls Solutions

Similar documents
NETWORK SECURITY STORMSHIELD. Unified Threat Management Solutions and Next- Generation Firewalls

UNIFIED THREAT MANAGEMENT SOLUTIONS AND NEXT-GENERATION FIREWALLS NETWORK SECURITY NETWORK SECURITY I ENDPOINT SECURITY I DATA SECURITY

COLLABORATIVE SECURITY. Network Security Endpoint Security Data Security

PROTECTION FOR WORKSTATIONS, SERVERS, AND TERMINAL DEVICES ENDPOINT SECURITY NETWORK SECURITY I ENDPOINT SECURITY I DATA SECURITY

ENDPOINT SECURITY STORMSHIELD PROTECTION FOR WORKSTATIONS. Protection for workstations, servers, and terminal devices

A GLOBAL SOLUTION ADAPTED TO THE CONSTRAINTS OF OPERATIONAL TECHNOLOGY INDUSTRIAL SECURITY NETWORK SECURITY I ENDPOINT SECURITY I DATA SECURITY

Cyber Security. CyberSecurity. For more information: Airbus CyberSecurity

NSG100 Nebula Cloud Managed Security Gateway

NSG50/100/200 Nebula Cloud Managed Security Gateway

MEMORY AND BEHAVIORAL PROTECTION ENDPOINT SECURITY NETWORK SECURITY I ENDPOINT SECURITY I DATA SECURITY

Your Trusted Partner in Europe European Business Reliance Centre

Cyber Security Technologies

Security

Balancing energy and environmental demands

Maturity assessment on Cybersecurity for critical infrastructures

SECURITY CERTIFICATION

Cisco ASA 5500 Series IPS Solution

Balancing energy and environmental demands

CERT.LV activities, role in Latvia and globally. Baiba Kaskina, CERT.LV , Sofia, Bulgaria

CORPORATE PRESENTATION

End-to-end Safety, Security and Reliability Keys for a successful I4.0 Migration

Cisco SR 520-T1 Secure Router

Siemens view and approach on critical infrastructure resilience against cyberthreats Joint OECD-JRC Workshop, Paris September 2018

BHConsulting. Your trusted cybersecurity partner

The Key Principles of Cyber Security for Connected and Automated Vehicles. Government

SECURITY FOR SMALL BUSINESSES

Service. Sentry Cyber Security Gain protection against sophisticated and persistent security threats through our layered cyber defense solution

The synergy of SCADA with energy control

Position Description. Computer Network Defence (CND) Analyst. GCSB mission and values. Our mission. Our values UNCLASSIFIED

VdTÜV Statement on the Communication from the EU Commission A Digital Single Market Strategy for Europe

No Industry 4.0 without Security

DEVELOP YOUR TAILORED CYBERSECURITY ROADMAP

Google Cloud & the General Data Protection Regulation (GDPR)

KantanMT.com. Security & Infra-Structure Overview

SECURITY ON AWS 8/3/17. AWS Security Standards MORE. By Max Ellsberry

SANS SCADA and Process Control Europe Rome 2011

T22 - Industrial Control System Security

Networks

VERSATILE ENTRY-LEVEL

Managed Services Rely on us to manage your business services

The Top 6 WAF Essentials to Achieve Application Security Efficacy

Sourcefire Solutions Overview Security for the Real World. SEE everything in your environment. LEARN by applying security intelligence to data

Innovation policy for Industry 4.0

MyCloud Computing Business computing in the cloud, ready to go in minutes

Securing Your Digital Transformation

INTERNATIONAL LAW ENFORCEMENT CCTV NETWORK SERVICES

Transforming the utilities industry. How our insight and infrastructure can help you thrive in a changing world

How icims Supports. Your Readiness for the European Union General Data Protection Regulation

Secure Connectivity for Multi-Site Organisations

to Enhance Your Cyber Security Needs

Siemens Research Cyber Security

M a d. Take control of your digital security. Advisory & Audit Security Testing Certification Services Training & Awareness

The German IT Security Certification Scheme. Joachim Weber

European Data Centre Infrastructure Standards EN series. Rob Cardigan, Senior Product Manager Nexans Cabling Solutions

Defence, Safety and Security

Security Platform. Security. Availability. Manageability. Scalability.

Create a smarter environment where information becomes insight

EU General Data Protection Regulation (GDPR) Achieving compliance

Symantec Network Security 7100 Series

Industrial control systems

CyberFence Protection for DNP3

ENISA EU Threat Landscape

POSITION DESCRIPTION

Cisco Network Admission Control (NAC) Solution

PROTECT WORKLOADS IN THE HYBRID CLOUD

POSITION DESCRIPTION

Datasheet Fujitsu ETERNUS DX90 S2 Disk Storage System

Twilio cloud communications SECURITY

Turning partnership into success

PROTECTING MANUFACTURING and UTILITIES Industrial Control Systems

MIXING ROOM SOLUTIONS FOR YOUR APPLICATIONS

DATA CENTER GROUP WE PROTECT IT. Without compromises. Because it is all about your IT security. We protect IT

Kenna Platform Security. A technical overview of the comprehensive security measures Kenna uses to protect your data

Sage Data Security Services Directory

BHConsulting. Your trusted cybersecurity partner

UA-5200 IIoT Communication Server

Archiving. Services. Optimize the management of information by defining a lifecycle strategy for data. Archiving. ediscovery. Data Loss Prevention

Precision Controls of Indianapolis

Awareness Technologies Systems Security. PHONE: (888)

A Checklist for Compliance in the Cloud 1. A Checklist for Compliance in the Cloud

Industrial Defender ASM. for Automation Systems Management

Getting Started with AWS Security

Expertise in Industrial Networks. Ian Poulett Head of Sales Siemens

Cisco Nexus 7000 Switches Second-Generation Supervisor Modules Data Sheet

Industrial Remote Access Solution

Seqrite Endpoint Security

Datasheet Fujitsu ETERNUS DX60 S2 Disk Storage System

Powered by nature. Certification and testing services for the photovoltaic sector. TÜV SÜD Product Service GmbH

Protecting productivity with Industrial Security Services

Verizon Software Defined Perimeter (SDP).

BT CNSP - new solutions for health and social care

ADVANCED DEFENCE-GRADE

NSG50/100/200 Nebula Cloud Managed Security Gateway

Fact sheet FRANKFURT DATA CENTRE CAMPUS. Connect, transact and grow

The NIS Directive and Cybersecurity in

Security by Default: Enabling Transformation Through Cyber Resilience

IT SECURITY OFFICER. Department: Information Technology. Pay Range: Professional 18

The challenges of the NIS directive from the viewpoint of the Vienna Hospital Association

Data Sheet The PCI DSS

Implementation Strategy for Cybersecurity Workshop ITU 2016

Transcription:

INDUSTRIAL SECURITY STORMSHIELD PROTECTION FOR OPERATIONAL NETWORKS Unified Threat Management and Next-Generation Firewalls Solutions

Our mission To make the digital world a sustainable and trustworthy environment, by ensuring business continuity and data protection for organisations, their employees and their customers. smile YOU ARE PROTECTED TRANSPARENTE SAFETY In this Bring-Your-Own-Everything era, it is increasingly difficult to impose rules on users to develop an agile company that is in tune with the times. For security to be efficient, it needs to be transparent for users and administrators. COLLABORATIVE SECURITY A new approach to security has become indispensable. Stormshield therefore offers the Multi-layer Collaborative Security concept. This holistic model, based on an active collaboration between the security engines of our different solutions, is the future strong defence of information systems. SCALABLE SECURITY As a security solution requires years of investment, the Stormshield product ranges offer the modularity and features required for supporting future developments of the information system.

The European solution that meets your needs Protocol content monitoring Latest generation firewall that inspects the business flows of industrial installations. Optimised protection engine The activation of security has a controlled impact on the latency and use of your equipment. Trust The standard qualification and highest-level European certifications Industrial application inventory Being aware of all the industrial system factors is very helpful for managing operational risks. Moreover, you receive a notification when a vulnerability is detected in your network. Respect your compliance commitments Ensure that you comply with standards, regulations and norms that require an access control (PCI-DSS, ISO 27001, the French Data Protection law, etc.). A comprehensive offer Network protection SNS/SNi40 Protection for workstations and servers Endpoint Security SIEM/SOC interoperability Connector Network monitoring and management Management Centre

PROTECT THE INDUSTRIAL INSTALLATIONS FROM THREATS TARGETING WORKSTATIONS OR COMING FROM THE NETWORK Detect and protect your industrial business with no impact By integrating Stormshield security solutions in the OT (Operational Technology) and IT (Information Technology) domains, you benefit from a combination of protection measures for your production systems without impacting your business. All your systems have unique technical solutions designed for both domains. Integrity By strengthening the security level on control workstations and conducting a thorough inspection of the traffic on the operational network, you will reduce the risk of flows and business applications from being corrupt. The global approach of Stormshield s industrial offer ensures the complete integrity of the industrial system. Availability The products implemented in Stormshield s industrial offer are designed to meet requirements in terms of the operational network s performance and availability. You therefore protect your infrastructure while guaranteeing its proper operation. Trust Stormshield s industrial offer includes a global solution for protecting the industrial system. Based on certified products, this approach guarantees mutual trust in the messages exchanged between the different components of the system. Certified trust As a trusted partner, Stormshield provides technologies that are certified at the highest European level (EU RESTRICTED, NATO RESTRICTED, EAL3+/4+, QUALIFICATION ANSSI and FIPS 140-2). The certifications and qualifications obtained guarantee a level of protection that is suited to the strategic information of the most sensitive companies and organisations. - As evidence of Stormshield s commitment to responding to the challenges of industrial security, SNi40 is the first protection solution to be awarded the CSPN Industrial Firewall certification, offered by the French National Cybersecurity Agency (ANSSI). FIPS 140-2 COMMON CRITERIA COMMON CRITERIA EU RESTRICTED NATO RESTRICTED CSPN INDUSTRIAL FIREWALL

A unique combination for advanced security A comprehensive range... Stormshield Network Security is a comprehensive range of network security solutions with a reinforced casing, the SNi40, for environments with major constraints.... and a single software The Stormshield Network Security range has a single interface which enables you to manage your security policy easily and implement a complete protection inside or around your industrial system. Controlling business applications The Stormshield Network Security range offers a highly efficient inspection engine. Its thorough analysis of the industrial protocols guarantees the detection and protection of the business line application flows of the main manufacturers (Schneider Electric, Siemens, Rockwell, etc.). Joint centralised management Stormshield Network Security s centralised administration solution offers joint management and supervision between the IT and OT networks. It helps you control your security policy in a global way to enable you to reduce operating costs. Signature-free autonomous solution... Stormshield Endpoint Security protects all industrial workstations including those that are disconnected through a security solution without a signature database and therefore without requiring any updates. This solution therefore also ensures protection against obsolete systems, such as Windows Vista, XP or Windows 2003 Server.... against unknown threats The signature-free approach, based on behavioural analysis, guarantees optimal protection against sophisticated unknown threats. Connectivity monitoring It is essential to monitor peripheral devices (USB, Wi-Fi, 3G, 4G, etc.). Stormshield Endpoint Security makes managing accesses to certain kinds of peripheral devices easier (approval under conditions, bans). Technology that is adaptable to the context Stormshield Endpoint Security s behavioural analysis protects workstations and consoles in real time. Stormshield Endpoint Security can react automatically depending on the environment. This unique capacity to adapt makes it possible to take immediate action when the context changes. Implementation of solutions IT HISTORIAN PC PRINTER STORAGE IT ENGINEERING CONSOLE MES SERVER SCADA SENSOR PLC PLC SENSOR IT IT Network Control Layer 4 - Layer 3 Process Layer 2 - Layer 1

Customised solutions An offer adapted to your business needs A team by your side Distribution (water - gas - electricity) Reduce your operating costs Simplify the network administration An all-in-one functional coverage Offer on-demand services to your customers Support your sales force Energy (petrol - gas) Choose trustworthy products Protection at the highest level Manage the protection of your communications Centralise to make management easier Easy to integrate into your structure A specialised multidisciplinary team that understands the challenges of your sector Agri-food Guarantee the availability of services Protect medical files Merge mobility and security Manage patient data more easily Electric production Reconcile security, reliability & flexibility End-to-end risk management Reduce operating costs Transport and mobility Performance Secure your communications Centralise your security management Traceability Production chain Protect the entire industrial chain Secure accesses and workstations remotely Ensure network availability Inventory of the industrial infrastructure Technical management of buildings Management of vulnerabilities Quick return on investment Choose trustworthy solutions Permanent support and proximity of sales and technical teams </> R&D teams fully dedicated to Industry Services for efficient security Support Level 1 by the publisher 24x7 optional Incident tracking on mystormshield.eu Professional Services Consulting day with a Stormshield expert Technical account management Training 3 levels of expertise Training that leads to certification Training adapted to IT & OT staff

Network solutions PERFORMANCE* SN160 SN210 SN310 SNi40 SN510 SN710 SN910 SN2100 SN3100 SN6100 Firewall throughput (1,518 byte UDP) 1 Gbps 2 Gbps 3.5 Gbps 4.8 Gbps 5 Gbps 10 Gbps 20 Gbps 50 Gbps 70 Gbps 140 Gbps IPS throughput (1,518 byte UDP) 800 Mbps 1.6 Gbps 2.4 Gbps 2.9 Gbps 3 Gbps 7 Gbps 12.5 Gbps 30 Gbps 40 Gbps 53 Gbps IPS throughput (1 MB HTTP) 400 Mbps 800 Mbps 1.1 Gbps 1.8 Gbps 1.7 Gbps 2.6 Gbps 7 Gbps 17 Gbps 20 Gbps 24 Gbps VPN* SN160 SN210 SN310 SNi40 SN510 SN710 SN910 SN2100 SN3100 SN6100 IPSec throughput (AES128 SHA1) 200 Mbps 350 Mbps 600 Mbps 1.1 Gbps 1 Gbps 2.4 Gbps 4 Gbps 8 Gbps 10 Gbps 15 Gbps Max. number of IPSec VPN tunnels 50 50 100 500 500 1,000 1,000 5,000 5,000 10,000 AVAILABILITY SN160 SN210 SN310 SNi40 SN510 SN710 SN910 SN2100 SN3100 SN6100 High availability (Active/Passive) - - Fail-safe mode - - - - - - - - - CONNECTIVITY SN160 SN210 SN310 SNi40 SN510 SN710 SN910 SN2100 SN3100 SN6100 10/100/1,000 interfaces 1+4 ports (switch) 2+6 ports (switch) 8 5 12 8-16 8-16 2-26 2-26 8-48 1 GB fibre interfaces - - - 0-2 - 0-4 0-6 0-24 0-24 0-48 10 GB fibre interfaces - - - - - 0-2 0-2 0-12 0-12 0-26 INDUSTRIAL PROTOCOLS SN160 SN210 SN310 SNi40 SN510 SN710 SN910 SN2100 SN3100 SN6100 List of protocols Owners: UMAS, S7 200-300-400, CIP / Control: Modbus, OPC UA, IEC 104, BACnet/IP, DNP3 / Supervision: OPC, EtherNet/IP UNIFIED SECURITY OT BUSINESS CONTINUITY FLEXIBILITY & PERFORMANCE Strengthened solution Protection of Workstations & Consoles Installation INDUSTRIAL PROTOCOLS - DEEP PACKET INSPECTION (DPI) Rail Din (length: 35 mm, norm: EN 50022) Modbus, UMAS, S7 200-300-400, EtherNet/IP, CIP, OPC UA, CEI 60870-5-104, OPC (DA/HDA/ AE), BACnet/IP and IT HARDWARE Storage Archiving division SNi40 32 GB SSD > 20 GB SSD MTBF (years) @ +25 C 26.6 Redundant power supply (DC) 12-36 VDC /5-1.67 A Consumption (W) (Idle) DC @+25 C 15.5 Consumption (W) (full load, max.) DC @+25 C 19.5 Heat dissipation (max. BTU/h) 66.54 Working temperature -40 to +75 C (-40 to +167 F) Humidity relating to functioning (without condensation) 0% to 90% Software components Agent Server Administration console Advised system prerequisite For the agent Pentium IV 3 Ghz Memory 512 MB (minimum)/1 GB (recommended) Disk space 250 MB (90 MB with the agent s logs) Operating systems Windows XP SP3 (32 bits) Windows Vista (32 & 64 bits) Windows 7 SP1 (32 & 64 bits) Windows 8.1 Update 1 (32 & 64 bits) Windows 10 (32 & 64 bits) Windows Server 2003 Windows Server 2008 SP2 (32 bits) Windows Server 2008 R2 (64 bits) Windows Server 2012 R2 (64 bits) Level of protection provided by the box (IP Code) COMPLIANCE IP30 SNi40 For the administration server Processor paced at minimum 1 Ghz Memory Minimum 1 GB CE/FCC, EN 61000-6-2:2005, EN 61000-6-4:2007/A1:2011, IEC 61000-4-18:2006/A1:2010, IEC 60068-2 Operating systems Windows Server 2008 SP2 (32 bits & 64 bits) Windows Server 2012 R2 (64 bits) *The performances are measured in a laboratory and under ideal conditions for the 3.x version. The results vary depending on the test conditions and software version.

Stormshield Industrial Offer the key points AUTONOMOUS SOLUTION As a major French cybersecurity player, we have been offering solutions that respond to European legal requirements for the last 15 years. ACCREDITATIONS Our technologies are certified at the highest European level, guaranteeing you customised protection for your organisation s strategic information and sensitive data. ECOSYSTEM We work with other players to develop joint solutions, share information about threats and collectively improve our customers defences. ALL-IN-ONE SECURITY You benefit from all the integrated security features. At no extra cost. INDUSTRIAL SECURITY The high availability function and fail-safe mode of the SNi40 network guarantee optimal service continuity even in the event of default. SIGNATURE-FREE PROTECTION The ideal solution to counter known or unknown threats for non-connected and/ or obsolete environments. UNIQUE END-TO-END SOLUTION Protect your entire IT and OT network infrastructure efficiently via your control workstations. SERVICE PACKS Choose an offer that is pure and simple with four security service packs that integrate the hardware maintenance of your product. TECHNICAL SUPPORT Our technical support works closely with our R&D teams so you benefit from manufacturer s expertise. Stormshield, a wholly-owned subsidiary of Airbus CyberSecurity, is offering innovative, end-to-end security solutions for the protection of IT networks (Stormshield Network Security), workstations (Stormshield Endpoint Security) and data (Stormshield Data Security). www.stormshield.com Version 2.0 - Copyright Stormshield 2019

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback