Boston, June 12, 2019: To tackle IoT security, CSPi, a provider of cybersecurity, professional services and technology solutions, has partnered with Seceon to develop a solution using a simple API integration.
The solution aims to solve “one of the biggest security challenges related to IoT”: where endpoint detection and response (EDR) applications and other bolt-on security services cannot be deployed on IoT devices.
A press release said commercial IoT devices had proven to be one of the most challenging to secure as security considerations had been “deprioritized” in order to maximise business returns. Most IoT devices had limited, if any, capacity to run third-party security applications like EDRs. However, the explosion of IoT devices meant that more sensitive data was being now shared across many devices, giving hackers even more avenues to exploit.
“The potential consequences associated with unsecured IoT devices are much worse than people may realise,” said Gary Southwell, General Manager, CSPi. “For example, a compromised medical IoT device can threaten a patient’s life, or if an industrial infrastructure, such as a power grid, is taken offline, it can cripple a city. When assessing how best to solve for the security vulnerabilities found in commercial IoT devices, it just made sense to partner with Seceon and leverage their aiSIEM solution. With an easy-to-deploy API the tools work seamlessly to control CSPi’s nVoy Security Appliances, which act as ARIA SDS in-line probes, which can automatically detect, contain and then disrupt any intrusion prior to data exfiltration or other damage.”
The ARIA Packet Intelligence application deploys transparently inside the network and detects, as well as monitors the traffic originating from all IoT devices. It classifies all the traffic related to those devices, at line rate, and creates enriched NetFlow metadata, which are ingested by Seceon’s aiSIEM. The aiSIEM’s ability to take in network flow data sourced from the ARIA SDS solution makes it very effective at finding difficult-to-detect network-born threats, including those originating from IoT devices.
Going one step further, the aiSIEM can instruct the ARIA SDS probes to stop only the specific threat conversations – while allowing critical applications and devices to continue to operate.
The solution also provides simple, implementable network-based microsegmentation, preventing rogue IoT devices from trying to communicate with devices or applications they should not. The solution also works Seceon’s aiMSSP solution and allows MSSPs to offer lucrative managed detection and response (MDR) solutions into the IoT market space.
Image Credit: CSPI