As industries increasingly adopt Industrial IoT (IIoT) technologies in their Industrial Control Systems (ICS), it’s easy to overlook the operational health and cyber risks presented by legacy, serial-connected field devices.
Our customers include:
U.S. Department of Defense (DoD), U.S. Department of Energy (DOE) and U.S. Department of Homeland Security (DHS).
Passively monitor and analyze legacy serial device activity in real-time with SerialGuard AnalytICS Platform’s high-performance graphical user interface (GUI).
Quickly identify operational irregularities and ensure optimum performance from your legacy assets with easy-to-use baselining and alerts functionalities.
Maintain network efficiency through remote troubleshooting & diagnostics of your legacy devices.
Monitor multiple serial ports from a centralized location at enterprise-scale.
Validate serial communication data to maximize interoperability within your OT network.
Seamlessly integrate data with your organization’s enterprise management system and other data analysis tools.
Passively tap level 0/1 ICS Communications and monitor your legacy assets at enterprise-scale without introducing an additional attack vector to your critical devices.
Quickly detect interceptions and alterations of serial communications between field devices and controllers through baselining and rule-based alerts.
Securely log ICS protocols such as MODBUS, DNP3, IEC-101, BACnet MS/TP and more to enhance your industrial cybersecurity posture.
Get true visibility into your ICS physical processes and establish a cost-effective last line of defense against cyber-physical attacks.
Stomp out noise with custom rulesets to flag operational anomalies on individual devices or across the network.
Seamlessly integrate alerts and metrics with third-party SIEMs.
Detecting Malicious Data and Advanced Attacks
(False Feedback Attacks & Other Malicious Data)
Serial Communications Asset and Configuration Change Management
Troubleshooting and Diagnostics
ICS Serial Network Attack Scenarios
- Serial packet sniffer for RS-232, RS-485 and RS-422 interfaces
- Securely captures ICS protocols such as MODBUS, DNP3, IEC-101, BACnet and more
- Provides full duplex serial communication monitoring
- Securely transfers serial data to AnalytICS Engine in encrypted TCP data packages
- Collects encrypted data on a separate subnetwork for secure examination of serial payloads
- Formulates metrics and visualizations of the assembled data into easy-to-read graphics
- Enables rule-based alerts for instant anomaly detection
- Integrates alerts and metrics with third-party SIEMs to streamline cybersecurity processes
Enjoy a fast track route to securing your legacy ICS
We understand the challenges of aligning OT security and digital transformation projects – and we are here to help you.
Our Starter Kit offers you a fast track option to kick-start securing your legacy Industrial Control Systems while providing you with the technical support that delivers results today!
What you get with the Enterprise Starter Kit
- 3 SerialGuard Sensors
- 1-year AnalytICS Engine License for up to 5 SerialGuard Sensors
- Implementation Support & Applications Updates
SerialGuard AnalytICS Platform can be deployed across all industry verticals that utilize legacy field devices, including many critical infrastructure sectors listed by the US Department of Homeland Security. Typical industry integrations include:
- Electrical power generation, distribution, and transmission facilities
- Refineries and other oil-and-gas production facilities
- Water infrastructure and gas transmission infrastructure
- Nuclear reactors, materials, and waste sectors
- Railway and mass rapid transit systems
- Chemical production plants
- Industrial and manufacturing plants
|Passive||Cannot write to the serial line; therefore, it will not introduce a new attack vector to the OT Network.|
|Fail-Safe||Will not disrupt operations or flow of serial communications in the unlikely event of power failure.|
|Supports RS-232/485/422||Can be integrated with a significant number of industrial control systems.|
|Full/Half Duplex Serial Monitoring||Can support monitoring of both RX/TX channels.|
|Protocol Agnostic Support for Various Legacy Serial Networks||Accurately frames all the bytes into messages even if the serial protocol of captured data is unknown.|
|Deep Packet Inspection||MODBUS, DNP3, IEC-101 and more.|
|Real-Time Operating System||Guarantees the accurate capture of every byte with nanosecond resolution.|
|Encapsulates serial data in encrypted TCP data packets*||Secures data packages before forwarding them to Cynalytica’s AnalytICS Engine or third party network security tools in order to ensure data integrity.|
|Power over Ethernet or 24V||Powered by ICS standard power supply options. Has minimal electrical wiring and low power consumption.|
|LED indicators||Illustrates the rate of the serial data flowing through the device. Also facilitates quick troubleshooting.|
|DIN-Rail Mounting bracket||Easily mounted on a DIN-Rail – an apparatus typically found on industrial controllers.|
|Quick Installation||Can be installed within minutes.|
|Graphical User Interface||Enables simple setup and monitoring.|
|Manufactured in the USA||Built in our ISO9001:2015 and AS9100D certified factory in the United States using J-STD-001 and IPC-A-610 standards.|
*SerialGuard can be configured to send unencrypted TCP data packets if required