“You can’t attack, if you can’t communicate” is how Andrew Ginter sees it.

This is the concept of unidirectional gateways. There’s a security perimeter around your asset whatever it may be, a factory, a process, a data farm, whatever. Then there’s the outside world of threat, crime, and destruction.

Unidirectional gateways allow one-way communication only over the void where firewalls exist and where firewalls can fail. “Firewalls are only software,” said Ginter, director of industrial security at Waterfall Security Solutions. “Stuxnet could not have spread over the data diodes operating in a unidirectional gateway.”

The only communication to the outside world (the business network, for example) is data moving in one direction and that direction is out of the protected area. Moreover, that is data only, no code, no logic, no compromising intelligence.

Ginter talked about that topic and more during a Tuesday webinar entitled, “NERC Issues CAN-0024: Guidance for Unidirectional, Routable Communications” with Mark Simon, senior consultant with Encari a critical infrastructure protection-consulting firm, and Joel Langill, chief technology officer at SCADAhacker.

NERC has issued CAN-0024, which provides guidance to NERC-CIP auditors as to when unidirectional communications equipment or “data diodes” must come into consideration to facilitate “routable communications.”

NERC is the North American Electric Reliability Corporation. Its mission is to ensure the reliability of the North American bulk power system. CIP stands for critical infrastructure protection.

CAN is Compliance Application Notice and CAN-0024 is “Routable Protocols and Data Diode Devices.”

An increasing number of NERC entities are deploying unidirectional communications equipment, because such equipment provides stronger security to protected cyber assets than firewalls can provide.

“Unidirectional communications enable sandboxing,” Ginter said.

Sandboxing is creating confined execution environments. A sandbox limits, or reduces, the level of access its applications have. In effect, it is a container. Therefore, the scope of potential damage caused by a malicious entity within is minimal.

The CAN-0024 guidance makes it clear that some deployments use routable protocols, and other deployments do not. In some cases, this distinction influences which cyber assets are technically Critical Cyber Assets.

The best discussion of the security advantages of this technology and for helpful visuals and graphics, click here for Ginter’s white paper.

View the article

By Nicholas Sheble

ISS Source, January 25, 2012

With Internet security a rapidly growing business globally, Israeli firms are amongst most sought after • Waterfall Security Solutions employs hardware-based unidirectional fiber optic links to protect against attacks from external networks.

As the “cyberwar” widens, and nations’ critical infrastructures come under increasing attack, Internet security firms are increasingly filling the void of vital online security – a void created not only because the firms are far ahead of many government agencies, but also because of the rapid nature of the new form of warfare itself.

Hackers are known to spread their attacks across a wide field of targets, although it is important to distinguish between attacks against private companies’ Internet sites from those against the vital strategic infrastructures of nations. The latter include electricity grids, banks and financial institutions, water and transportation systems, as well as other systems in which disruption could seriously affect the daily lives of millions of people.

Internet security is a rapidly growing business across the globe, with firms in Israel among the most sought after for their innovation and success.

Israeli company Waterfall Security Solutions, for instance, provides a range of cyber security services for industrial networks and critical infrastructures and has patented a unique closed-system technology. The company took part in the 2012 Annual Cyber Security Convention on Monday in Petach Tikva, alongside a wide range of cyber security firms. The convention focused on highlighting tools, market trends, threats, continuous improvements in Israeli cyber security organizations, and foreseeable cyber security improvement trends. According to its website, Waterfall Security Solutions is a provider of “unidirectional security gateways and data diodes for process control systems, SCADA systems, remote monitoring and segregated networks, enabling secure and real-time data transfer, from critical networks to external/business networks.”

The company specializes in non-routable communication systems, a patent technology consisting of hardware-based unidirectional fiber optic links. The technology physically enforces unidirectional replication from the industrial network to the corporate network and segregates the industrial network, making any inbound data flow physically impossible. A country or company’s utilities’ critical assets are protected, the company says, against any cyber attacks, incoming viruses or human errors originating from external networks.

Waterfall says its products have been deployed in many critical national infrastructures, homeland security agencies and mission critical environments in the U.S., Canada, Europe, Asia and Israel.

Cyber security firms are divided into four groups: software developers, consultants who formulate the best practices and cyber security policies, programmers who integrate security systems into existing platforms, and firms which specialize in simulating cyber attacks (so-called “white-hat hackers”) to find breaches in the system and improve security.

On Monday, a consortium of cyber security firms met with managers of Israeli sites who had suffered attacks, as well as others who are potentially at risk, to assess their vulnerability and decide which cyber security tools to employ. Access to several Israeli sites from Arab countries has been blocked.

View the article

By Ilan Gattegno

Israel Hayom, January 17, 2012

 The North American Electric Reliability Corporation (NERC) has recognized hardware-enforced unidirectional communication connections as providing strong “non-routable” security. NERC is responsible for the Critical Infrastructure Protection (CIP) standards which secure the North American Bulk Electric System (BES) from cyber attacks. The NERC action provides guidance to NERC auditors who increasingly encounter unidirectional communications technologies at sites in the North American electric system.

NERC’s updated guidelines come in the form of the December 15 Compliance Application Notice CAN-0024, entitled “CIP-002 R3 Routable Protocols and Data Diode Devices.” The CAN describes “data diodes” as network equipment which provides a hardware-enforced “one-way” or unidirectional path for data to flow out of critical networks, while allowing nothing back in to those networks. Unidirectional hardware lets information leave critical networks without any risk of hackers, viruses, worms, or any other attacker reaching back into the critical network over that same communications path and disrupting or sabotaging components essential to the power grid. The CAN provides guidance as to when unidirectional communications should be interpreted as strong “non-routable” communications, that is: communications which do not use the Internet Protocol or any comparable Wide Area Networking protocol.

Lior Frenkel , CEO and Co-Founder of Waterfall Security Solutions – the leading supplier of Unidirectional Security Gateways – comments: “The NERC action is very welcome. The practices that NERC outlines recognize that strong security, in the form of Unidirectional Gateways, has an evolving role in the protection of the Bulk Electric System. The new guidelines also help NERC entities understand where and how strong unidirectional security is most effectively deployed.”

Unidirectional Security Gateways represent a newer and stronger approach to network security than do conventional firewalls. Waterfall’s Unidirectional Gateways are currently deployed in many NERC-regulated conventional power plants, the majority of North America’s nuclear generation utilities, and a number of oil & gas facilities and water utilities. Interest in Waterfall’s Unidirectional Gateways is increasing quickly in several other industries within North America as well.

With a number of civilian and government agencies citing the vulnerability of the North American power grid to cyber attack, the NERC recognition of hardware-enforced unidirectional communications technologies is very timely. Where Unidirectional Gateways are used to successfully isolate control system networks, those networks become immune to Remote Administration Tools and other Internet-based cyber attacks. These are the attacks preferred by the vast majority of nation-state-sponsored “Advanced Persistent Threat” actors. Strong cyber security protections for power plants and for other critical elements of the Bulk Electric System should help us all sleep a little easier.

Waterfall Security Solutions’ patented cyber security solutions enable sites in many industries to securely connect their critical industrial networks to external networks. Unidirectional Security Gateways move data securely, meeting business needs without exposing industrial networks to risks and threats of cyber-attacks, cyber terror, and hacking from external, less secure networks. Waterfall’s cyber security solutions assist offshore platforms, refineries, utilities and other critical infrastructures to achieve compliance with NERC-CIP, NRC, CFATS and other regulations and standards, as well as cyber-security policies and best practices. Additional business needs secured by way of the Waterfall Gateways include production monitoring, real-time royalty and taxation tracking, and equipment monitoring and maintenance function automation.

View the article 

Yahoo Finance, December 22, 2011

The recent Pike Research report “Industrial Control System Security” for Smart Grids identifies Waterfall’s Unidirectional Gateways as among the “most promising technologies for investment in SCADA security.” Waterfall Unidirectional Security Gateways allow information to leave protected industrial networks, but have no hardware communications path which might permit a network attack to reach back into those protected networks. When deployed as recommended, the technology provides absolute protection from attacks originating on external networks.

Andrew Ginter, Waterfall’s Director of Industrial Security digs deeper:

“Waterfall’s software is a key component of the unidirectional solution. The software lets the unidirectional communications hardware integrate seamlessly with already-deployed control systems. Nobody wants to redesign their networks to make them more secure.”

The Pike Research report documents the SCADA security marketplace as a whole, and identifies 2010 as a turning point.

“Nearly overnight, ICS security went from a non-issue to being critical. As a result, most security vendors had very little time to think about or develop a methodical approach to securing ICS. Those security vendors who focused on ICS all along may have an advantage.”

Waterfall Security Solutions is the market leader for unidirectional security solutions for industrial applications, having focused exclusively on the industrial security market for many years. Lior Frenkel, Waterfall’s CEO and Co-Founder adds:

“It is encouraging to see Waterfall recognized as a key player in the field of industrial security. Attacks on control systems are only becoming more sophisticated. Industrial targets need the kind of strong security that Unidirectional Gateways provide.”

Historically, many control systems were completely disconnected from external networks. Today, the vast majority of control systems are connected to other networks, often through inadequately-secured firewalls. The Pike report notes that “control networks should be strictly segregated from enterprise IT networks.” Unidirectional Gateways let business-critical data flow to IT networks, without putting the safety or availability of control networks at risk.

The Pike Research report can be purchased at: http://www.pikeresearch.com/research/industrial-control-systems-security.

Waterfall’s patented cyber-security solutions enable Utilities and Critical Infrastructures to connect their critical industrial networks to external networks, securely meeting business needs without exposing these networks to risks and threats of cyber attacks, cyber terror, and hacking from external, less secure networks. Waterfall’s cyber-security solutions assists Utilities and Critical Infrastructures to achieve compliance with NERC-CIP, NRC, CFATS and other regulations and standards, as well as cyber-security policies and best practises.

View the article 

Yahoo Finance, September 13, 2011

McAfee’s announcement last week that it had taken over the command and control center for an advanced persistent threat (APT) dubbed “Shady RAT” got a lot of press. Now — before the nay-sayers jump on me, let’s set the record straight: no — there was no indication in the McAfee report that control systems were targeted by this adversary. And you can say that to yourself over and over if it makes you feel less vulnerable.

The Shady RAT report provides valuable insight into advanced threats. The “APT” term has been over-used recently – it originally referred to what appeared to be nation-state intelligence agencies using cyber assaults for both conventional espionage and industrial espionage. The McAfee report uses the APT term in this original meaning.

Advanced threats have targeted control systems in the past. Earlier this year McAfee reported “Night Dragon” attacks on a half dozen large oil companies and reported that the attacks had stolen information from SCADA system as well as carrying out more conventional industrial espionage on corporate networks. The Stuxnet attack has widely been reported as an attack by an advanced threat as well, though the Stuxnet technology was much more sophisticated than is normally attributed to threats such as those behind Shady RAT and Night Dragon. People responsible for industrial control system security should be aware of advanced persistent threats, their capabilities, their targets, and their tactics.

The Shady RAT report is thin on technical detail and at 14 pages with lots of diagrams rates as fairly light reading – I recommend the entire report to everyone even somewhat interested in the topic. The report can be summarized:

• 72 organizations were compromised over 6 years.
• The attacks spanned many sectors, including governments, non-profits, heavy industry, technology companies and the defense industry.
• The targets spanned many geographies: 53 in North American, and 19 were spread out through Europe, India and Asia.

Perhaps the most important finding is that this looks like “the tip of the iceberg.” McAfee reports having investigated many enterprises compromised by advanced threats, and only a few of those investigations correlate with this list of targets. This and other indications suggest that many other command and control centers exist, each with a comparable list of compromised targets. The problem really is widespread.

The report also confirms what has been reported as a favourite tactic of these advanced threats: remote access tools – hence the “RAT” moniker. Remote access tools have a look and feel comparable to the Windows “remote desktop” tool. You can see the screen of a compromised machine, move the mouse, and type on the keyboard. “SCADA” assets compromised this way provide an adversary, on the other side of the planet, remote control of equipment on your operations network.

There are technologies available which can help. There are no silver bullets, but one lesson we should take from advanced adversaries is that conventional “best practices” — firewalls, patching, anti-virus, and host hardening — are not enough and are not working. Operations security professionals need to start investigating technologies which are being added to the list of best practices in guidelines and standards:

• unidirectional gateways, which can block remote access attacks completely,
• whitelisting, which is harder to evade than are AV technologies,
• intrusion detection / SIEM, which let you assume you have been compromised and start looking for your adversaries,
• device firewalls, which limit damage when a control system is compromised, and
• strong authentication for I/O device communications, which, again, limit damage when a control system is compromised.

Yes — compared with corporate intrusions, we have only a small number of advanced attacks which are well-documented in the control system world. But — telling ourselves this means there is no risk is sticking our heads in the sand.

View the article 

By Andrew Ginter

Digital Bond, August 12, 2011

Alberta is no more or less susceptible to high-tech attacks than anywhere else, but it is home to some particularly prized targets, says a Calgary-based cybersecurity specialist.

“I would say there are a number of high-value targets in the province,” said Andrew Ginter, director of industrial security for Waterfall Security Solutions.

“Those targets are clearly in the oil and gas sector.”

Ginter was commenting following the release of a McAfee report detailing the activities of a sophisticated international hacking scheme that targeted 72 companies, governments, non-profit organizations and the United Nations over the past five years.

The security company’s report also said the attack affected two unnamed Canadian government agencies, an unnamed Canadian information technology company and the Montreal-based World Anti-Doping Agency.

The McAfee report noted another long-term cyberattack, nicknamed Night Dragon, which targeted oil and gas companies and came to light in the U.S. earlier this year.

Ginter, whose company provides security for industry and critical infrastructure systems around the world, said most big oil and gas companies have solid security systems. But it’s a constant and evolving concern.

“There are no silver bullets,” he said.

At the Canadian Association of Petroleum Producers, Greg Stringham said industry members are paying attention. Information technology officials regularly get together to discuss emerging trends and issues, he said.

As for the Alberta government, it has heard repeated calls from the province’s auditor general that its security measures need beefing up.

Service Alberta, the responsible department, created a Corporate Information Security Office following the auditor general’s first recommendations in 2008.

It also implemented security standards that would “reasonably protect government information assets if properly implemented and consistently followed,” according to the province’s auditor general.

But on Wednesday, auditor general Merwan Saher said he still hasn’t been provided with final confirmation that Service Alberta ensures the security directives are consistently followed.

“It’s a huge issue,” Saher said. “The government is the custodian of huge amounts of personal information, and corporate information.”

Service Alberta spokesman Mike Berezowsky said the Alberta government hasn’t detected suspicious activities that would suggest it had been targeted by attacks similar to those outlined by the McAfee report.

He said Service Alberta does yearly reviews of departmental security plans, and they must reflect government policy.

“We are continually assessing risk,” Berezowsky said.

View the article 

By Kelly Cryderman

Calgary Herald, August 4, 2011

Waterfall Security Solutions, the leading provider of Unidirectional Security Gateways, announced the successful installation of several of its Unidirectional Security Gateways at Iberdrola’s Cofrentes Nuclear Power Plant in the Spanish province of Valencia. 

“We have a continuous commitment to secure critical infrastructures in Europe, North America and around the world,” said Lior Frenkel, Co-Founder and CEO of Waterfall Security Solutions. “Nuclear generators must comply with the highest standards for safety and security, including cybersecurity. We are honored to have been selected to help with Iberdrola’s mission to enhance the protection of their facility.” 

The Spanish Cofrentes NPP deployment uses Waterfall’s patented technology to securely make real-time and historical data from critical plant equipment available to business users and applications on Iberdrola’s corporate network. The Waterfall approach permits a seamless transition to secure communications for existing networks of integrated systems. 

“Cybersecurity is a key aspect of the plan to modernize the instrumentation and control systems at the Cofrentes plant,” said Vicente Zuriaga, Iberdrola’s engineer responsible for the modernization project. “One reason the Waterfall solution was selected was because it supports the creation of an exact real-time copy of the OSIsoft PI Historian server which could be accessed by users on the Cofrentes management network, while at the same time preventing the transmission of any information whatsoever from that network to the control and data acquisition networks.” 

Waterfall’s patented cyber security solutions enable Utilities and Critical Infrastructures to securely connect their critical industrial networks to external networks, securely meeting business needs without exposing these networks to risks and threats of cyber-attacks, cyber terror, and hacking from external, less secure networks. Waterfall’s cyber security solutions assists Utilities and Critical Infrastructures to achieve compliance with NERC-CIP, NRC, CFATS and other regulations and standards, as well as cyber-security policies and best practices. 

The Cofrentes plant is the largest nuclear power plant in Spain, producing up to 1092 megawatts of electric power, or 4.7% of Spain’s national power production, and 15% of all energy in Spain produced from nuclear sources. The plant is a key part of Iberdrola’s efforts to combat climate change, preventing the annual emission of some 6.5 million tons of carbon dioxide. Iberdrola is the largest energy producer in Spain, the world’s top wind power producer and one of the largest power utilities in the world. 

View the article 

Yahoo Finance, August 4, 2011

Dr. Stephen Bryen, CEO and President at SDB-Partners LLC. and renowned security commentator has posted an interview with Lior Frenkel, the CEO and co-founder of Waterfall Security Solutions on his Technology and Security blog. The interview explores the topic of Waterfall’s Unidirectional Security Gateway technology, and can be found at: http://technologysecurity.wordpress.com/2011/07/19/waterfall-security-protection-for-critical-infrastructure-and-scada/

The gateways are a pair of network appliances and associated software. The TX gateway sits in the protected control system network, and contains a laser. The RX gateway sits in the external network, and contains a photocell. As a result, the system can send information out of the protected network, but nothing can get back in. No hackers, no viruses, no denial of service attacks — nothing at all can get back into the protected network. The communications channel back into the network does not exist in the hardware.
The concept seems simple, but Dr. Bryen explores the technology with Mr. Frenkel and digs into the details. For example – how can this possibly work? Are not the vast majority of industrial protocols bi-directional? How can you emulate a bi-directional protocol over a unidirectional medium? It turns out the trick is to replicate servers rather than emulate protocols, a topic the two explore in ways a non-technical audience can appreciate.

Cybersecurity for SCADA/control systems and critical infrastructure have been widely criticized as inadequate in recent years. Control system networks were once protected to some extent by isolation and by the use of non-standard hardware and software computing platforms. However, the last 15 years have seen widespread use of commodity computing and operating system platforms in industrial control systems. Furthermore, connections between control systems and conventional corporate networks are now commonplace, introducing the risk of attacks on control system networks either directly from corporate networks, or indirectly from the Internet through corporate networks. The Waterfall Gateways are a refreshing change to the SCADA security landscape, as they provide absolute protection to control system networks from all attacks from external networks, including denial of service attacks, corporate insider attacks, botnets, and attacks from new advanced persistent threats.

About Waterfall Security Solutions:

Waterfall Security Solutions Ltd. is the leading provider of Unidirectional Security Gateways(TM) and data diodes for control networks, SCADA systems, remote monitoring and segregated networks. Waterfall’s security solutions assist utilities and critical infrastructures to easily and comfortably achieve compliance with NERC-CIP, NRC, CFATS and other regulations, as well as cyber-security best practises.

Waterfall’s products have been deployed in many utilities, critical national infrastructures, mission critical environments and homeland security agencies throughout North America, Europe and Israel. Waterfall’s offerings include support to leading industrial applications, such as: OSIsoft PI(TM) Historian, GE Proficy(TM) iHistorian, Siemens SIMATIC(TM) and GE OSM(TM) remote monitoring platforms, as well as leading industrial protocols, such as: OPC, Modbus, DNP3 and ICCP.

About Stephen Bryen:

Dr. Stephen Bryan has 40 years of experience in government and industry. He has served as senior staff director of the U.S. Senate Foreign Relations Committee, as the executive director of a grass-roots political organization, as the head of the Jewish Institute for National Security Affairs, as the Deputy Undersecretary of Defense for Security Policy, as the founder and first director of the Defense technology security administration, as the President of Delta Tech Inc., as the President of Finmeccanica North America and as a Commissioner of the U.S. China Security Commission. Dr. Bryen’s extensive experience and high effectiveness have earned him the highest civilian awards of the U.S. Defense Department on two occasions and established him as a proven government, civic and business leader in Washington D.C. and internationally. Dr. Bryen is currently the CEO and President at SDB-Partners LLC.: http://www.sdb-partners.com

View the article

Yahoo Finance, July 22, 2011

Change is coming in the world of industrial control systems or “SCADA” systems. There was a time when the computers and networks controlling most power plants, chemical plants and other critical infrastructures were not connected to external networks at all.

That changed in the mid-1990’s. Businesses learned that there were big profits locked away in real-time inventory, equipment usage and other data. Firms started connecting their control system networks to their corporate networks.
Fast forward to today. In the last 24 months, high-profile “advanced persistent threat” intrusions have successfully compromised an appalling number of military, government and corporate networks. In recent months, a handful of well-documented attacks took over control system computers as well. Imagine learning that parts of your safety-critical control system are under the thumb of adversaries on the other side of the planet.

Cyber-security for industrial control systems has become a priority in recent years. A new development in network perimeter protection is gaining momentum; some even call it a paradigm shift — Unidirectional Gateways.

A Unidirectional Gateway is simple in concept — a pair of network appliances connected by a fiber-optic cable. The transmitting (TX) appliance in the control system network contains a laser. The receiving (RX) appliance in the corporate network contains a photocell. The TX can send to the RX, but not vice-versa.

Real-time data can get out to where the enterprise needs it, but no attacks, no viruses, nothing in fact, can get back through the gateway hardware to threaten the control system. Think of it as physical-layer protection for your network.

This comes as a paradigm shift for corporate IT security teams. To such teams, firewalls are very much the first line of perimeter defense. The problem is that firewalls are software systems — software in the firewall looks at every message and decides whether to let it through. Software has vulnerabilities and advanced threats can exploit those vulnerabilities.

Unidirectional Gateways got started in arenas where security was paramount — nuclear reactors and other very sensitive industrial sites. The latest Nuclear Energy Institute guidelines for the cyber security of reactor control networks offers two choices: either no connections at all across the perimeter of the most sensitive networks, or unidirectional connections only.

Other industries are taking note. It is bad enough these “advanced threats” are wreaking havoc on government and corporate networks. Nobody wants them taking over a power grid, or an oil pipeline or a chemical plant.
Think about the consequences of the last couple of industrial disasters the nation and the world have seen — the Gulf oil spill and the tsunami at the Fukishima reactors. Now consider that advanced threats regularly compromise the best-protected corporate and control system networks. Put this together and firms are concluding the risk is unacceptable. Industrial sites are looking seriously at once more isolating their most sensitive control networks. Unidirectional Gateways provide the same protections as complete network isolation, but without cutting off access to the most valuable real-time data.

This is a big change for IT security. IT assumes they can control every machine and every component of their networks. They assume they can diagnose problems, fix them and make other changes, all from the comfort of their desks. The problem is that if they can do it, advanced attackers can too. The new thinking for control systems is network isolation via Unidirectional Gateways. IT will have to get used to it.

View the article

GSN Magazine, June 20, 2011

Waterfall Security Solutions is pleased to announce that Andrew Ginter, a prominent industrial control system security researcher, is joining the North American Waterfall team as the Director of Industrial Security. Ginter’s appointment is part of Waterfall’s expansion into the North American market. He will investigate applications of Waterfall’s market-leading Unidirectional Security Gateway solutions in a variety of industrial settings.

Professional, well-funded groups are the new “advanced persistent threats”, attacking both enterprise and industrial systems. The “Aurora” attack stole valuable intellectual property, “Night Dragon” targeted both enterprise systems and control systems to steal industrial secrets, and the Stuxnet worm evaded detection by security researchers for over a year, silently sabotaging a specific industrial process. Conventional thinking for control systems security leads to security postures which are not adequate to defend against advanced threats.

Protecting industrial sites against advanced threats demands new approaches to security. Ginter reports:

“I am excited to have this opportunity to become much more familiar with Waterfall’s advanced security solutions. Unidirectional gateways are part of a suite of advanced protections which must be applied more routinely throughout industrial security programs at important industrial sites. I look forward to investigating these advanced threats and investigating Waterfall Security Solutions’ role in protecting against them.”

Ginter brings 25 years of industrial applications experience to this engagement, including experience leading teams developing control system products and control system security products. Ginter speaks and writes frequently on control system security topics. He is a frequent contributor to the “Control System Security” blog.

“We are happy to have Andrew working with us,” says Lior Frenkel, Co-Founder and CEO of Waterfall Security. “Andrew’s deep experience in infrastructure protection, together with Waterfall’s market leading technology and solutions are a unique match, and we look forward to what will develop.”

About Waterfall Security Solutions:

Waterfall Security Solutions Ltd. is the leading provider of Unidirectional Security Gateways(TM) and data diodes for control networks, SCADA systems, remote monitoring and segregated networks. Waterfall’s security solutions assist utilities and critical infrastructures to easily and comfortably achieve compliance with NERC-CIP, NRC, CFATS and other regulations, as well as cyber-security best practises.

Waterfall’s products have been deployed in many utilities, critical national infrastructures, mission critical environments and homeland security agencies throughout North America, Europe and Israel. Waterfall’s offerings include support to leading industrial applications, such as: OSIsoft PI(TM) Historian, GE Proficy(TM) iHistorian, Siemens SIMATIC(TM) and GE OSM(TM) remote monitoring platforms, as well as leading industrial protocols, such as: OPC, Modbus, DNP3 and ICCP.

View the article

Yahoo Finance, April 7, 2011