Whitepapers and Information
Recorded Webinar: Stronger Than Firewalls – And Cheaper Too
The cost of deploying hardware-enforced unidirectional security gateways are dominated by up-front capital expenses and easily-identified recurring operational expenses. Plant/enterprise firewall costs are dominated by less-visible management and labour costs.
Join Joel Langill and Andrew Ginter to examine the cost of managing firewalls more
S4 2012 – NO SILVER BULLETS: APPLICATION WHITELISTING IN ICS
Andrew Ginter of Waterfall Security explains what Application Whitelisting will and will not protect against. He still recommends the technology for ICS, but it is not a silver bullet as some vendors outright claim or imply.
He focuses much of the discussion on how application whitelisting deals with interpreted code.
At the end of the presentation more
Smart Grid Webinar – Securing Critical Cyber Assets with Data Diodes
NERC has published a number of drafts of CAN-0024 "CIP-002-CIP-009 R3 Routable Protocols and Data Diode Devices". NERC entities are increasingly deploying unidirectional communications hardware to protect critical cyber assets. Entities are attracted to diodes because if they are deployed as the only connection across an Electronic Security more
Applying NERC-CIP CAN-0024
Under the direction of the Federal Energy Regulatory Commission (FERC), the North American Electric Reliability Corporation (NERC) is charged with enforcing reliability standards for the Bulk Electric System (BES) in North America. Reliability standards for the BES are created under NERC’s supervision by an industry-driven process. more
Recorded Webinar: Strong Cyber Perimeter Protections with Unidirectional Communications
Unidirectional Gateways transmit business-critical information out of operations networks without introducing any risk to the availability, integrity or safety of control system assets inside those networks. The technology often raises questions, though, when first encountered by security practitioners accustomed to firewalls -- questions of data integrity, remote more
Recorded Webinar: Strong Cybersecurity: Power Plant Case Study
Unidirectional Security Gateways allow data to flow out of protected control networks, but prevent any information or network attacks from flowing back into those networks. While this protects control networks absolutely from external network attacks, it begs questions - What had to change at the plant to make this work? How did plant personnel react, more
A Realistic Approach for Connecting SCADA/DCS Networks
SCADA/DCS networks monitor and control the most valuable assets nationwide and usually refer to operational networks. On the other hand, most of the users are connected through an administrative network which is less sensitive and thus less secure than the operational network. The demand for connecting the networks is required for more
Waterfall™ for NERC-CIP Compliance
Using Waterfall's Unidirectional Security Solution to Achieve True Security & NERC-CIP Compliance
Critical National Infrastructure is under a constant, yet invisible, threat from cyber hacking and cyber terror attempts that are being launched from external networks. These attacks (mainly - from the Internet) are targeting industrial Process Control more