Tamper-resistant updates with supply chain protection
Network access controls for an embedded perimeter
Monitoring for audit logs and event historian
Device authentication (PSK, certificates)
Centralized key distribution center (with high availability)
Automated key rotation
Secure device configuration updates
Multi-site, multi-tenant services
No complex PKI infrastructure buildout
Industrial control systems (ICS) and energy grids require process protection for automation and uninterrupted service cycles. These systems are high value targets for advanced ransomware and nation-state attacks. The IT/OT dichotomy and budgetary restrictions that constrain modernization are significant challenges. The risks that must be addressed are effective device monitoring for compliance audits and efficient recovery mechanisms to mitigate service outages.
Operational Technology (OT) and Information Technology (IT) are fundamentally dissimilar. Bridging the IT-OT divide (in some cases, a thin line) is the implementation challenge. Even a multi-layer defense strategy is not effective in OT realm. The field operators dealing with Industrial IoT (IIoT) must traverse the business, plant, and control DMZ to access internal production systems (e.g. HMI workstations, controllers, robots, and sensors). Many autonomous systems in the IoT realm fall outside the line of sight (and scope) of traditional managed IT. Managing authentication directories, PKI infrastructure build-out, key and certificate management services pose implementation challenges for OT operators not well-versed in the myriad of associated security protocols.
Process Automation Workflow
Protect inter-device messaging and supervisory controls over multicast, broadcast and unicast network communications with a plug-and-play solution based on industry standards for group domain of encryption and session key management with Mocana’s CyberSec solution. The zero-coding solution requires no application re-engineering to bolt-on data protection for confidentiality, device authentication for identification, and key exchange for automated key rotation with an FIPS-grade cryptographic engine.
Our end-to-end cybersecurity system enables secure, cryptographically-signed over-the-air (OTA) and over-the-web (OTW) firmware updates. It allows you to integrate hardware or software-based roots of trust such as TPM, SGX, TrustZone, HSMs, SIMs, and MIMs and enable you to replace open source crypto software such as OpenSSL.
Learn More About Mocana Solutions
Mocana TrustCenter™
Services platform for automated security lifecycle management
Mocana's new IoT software brings trusted, military-grade security, and cloud-based communications to safety-critical applications like connected commercial and military aircraft. We are excited to be working with Mocana and our joint customers to provide an integrated platform for safety-critical avionics applications that combines key pieces of their IoT software with our best-in-class DO-178 real-time operating system."
Greg Rose
Vice President of Marketing and Product Management at DDC-I
The tools provided by Mocana are rooted in its long history of equipping engineers with the ability to harden devices that perform mission-critical operations."
Rob Westervelt
Research Manager, IDC
Connected devices are being deployed at a rapid pace, and security can no longer be optional. This is a shared industry responsibility, which is why Arm is working with partners including Mocana to shift the economics of security by providing a common framework for building more secure connected devices through PSA."
Paul Williamson
Vice President and General Manager, IoT Device IP, Arm
Find the process protection solutions that meet your needs
