Industrial network security is now a crucial requirement rather than a mere luxury. The recent surge in cyberattacks targeting vital infrastructure has highlighted the necessity for industrial entities to give priority to cybersecurity. Regardless of the sector you operate in, threats may appear from any direction. Recent examples include cybercriminals shutting down a fuel pipeline in the USA1 and demanding substantial ransom amounts, as well as a ransomware attack that affected the self-service ticketing machines of a UK railway company2 . These cyber incidents not only result in considerable costs and inconveniences for industrial operators and end users but also emphasize the unpredictability of future attacks, making any network-connected entity a potential target.
To bolster network security, one can opt to upgrade equipment with newer models featuring built-in security capabilities. However, this replacement process can be costly and involve substantial deployment and installation efforts. Moreover, legacy equipment may still be functioning efficiently. A more practical approach is to update the security patches of existing equipment. Unfortunately, certain legacy systems utilize outdated operating systems that no longer support the most recent security patches—Windows XP is a prime example of this. This article delves into the challenges faced by industrial operators and the solutions that can enhance cybersecurity with minimal intervention.
Obstacles in Securing Your Edge Networks
To enhance operational efficiency, industrial operators must leverage current network capabilities for real-time remote monitoring. However, this improved connectivity also signifies that air-gapping your field devices is no longer viable. The primary challenge lies in connecting legacy equipment, utilizing RS-232/422/485 communications, to your local area network (LAN) or the Internet, which operate on Ethernet communications protocols. Serial-to-Ethernet devices, such as serial device servers or protocol gateways—depending on the required transparent transmissions or protocol conversions for your application—can facilitate the connection of your serial-based equipment to Ethernet-based networks. Once your legacy devices are linked, security concerns inevitably arise, especially if your connection lacks adequate protection. It is crucial to identify a secure serial-to-Ethernet device that ensures protected connectivity without necessitating the replacement of existing serial devices.
Selecting a Secure Serial-to-Ethernet Device
Contemporary security standards like IEC 62443 and NERC CIP offer guidance to secure your network infrastructure. These standards provide recommendations for verifying network devices and component suppliers that comply with industry security standards. Consequently, finding a secure serial-to-Ethernet device which adheres to these standards is a straightforward process. Moxa, a provider of IEC 62443-4-1 certified networking solutions, designs its serial-to-Ethernet devices’ security based on IEC 62443-4-2. Equipped with embedded security features, Moxa’s serial-to-Ethernet devices enhance network security and reduce the risk of unauthorized access to your serial equipment through these devices. Explore another article for more insights on security measures for safeguarding legacy systems.
Real-life Examples: Augmenting Cybersecurity With Moxa’s Solutions
Moxa’s secure serial device servers and protocol gateways have played a pivotal role in bolstering connectivity security across various industrial applications for our clientele. To illustrate how we have aided our customers in enhancing cybersecurity, we present two real-world scenarios showcasing the efficacy of our NPort 6150 serial device servers and MGate MB3000 protocol gateways in fortifying cybersecurity within the energy sector.
Strengthening Connectivity Security for Numerous Gas Stations
An American client owning more than 600 gas stations required real-time tracking of oil tank levels using ATG (automatic tank gauge, typically equipped with serial interfaces) to manage inventory replenishments at remote sites as required. They also needed data from POS terminals at gas pumps to transmit back to the store for transaction processing and record-keeping purposes. These connectivity needs demand a high level of security. Tank level data must be tightly secured to prevent manipulation, while POS data contains sensitive consumer information that needs safeguarding. Enhancing connectivity security involves safeguarding the connection between the gas station and the in-store IT room. Regular vulnerability scans executed by IT personnel are essential to maintain the devices at an adequate security level by updating firmware and security patches, ensuring the communication systems remain safe.
Our NPort 6150 serial device servers offer fundamental security features like user authentication and accessible IP lists to ramp up device security through access control measures. During operations, our products support data encryption to enhance transmission security when transmitting serial data over Ethernet. To streamline daily maintenance for IT personnel, our NPort 6150 serial device servers provide tools for simplified configuration and management of multiple devices.
Boosting Cybersecurity for Data Centers
A data center service provider and their facilities have been frequent targets for cyber intrusions, resulting in data losses and significant penalties over the past five years. To diminish hacking risks, cybersecurity has become a top-level initiative for them. Their security assessment extends beyond vulnerabilities in server rooms to cover all network entry points, including the power sources supplying the server rooms.
To monitor power usage and quality, the power supply equipment, comprising switchgears, PDUs, and UPSs, connect to networks for real-time data retrieval by operators. Our MGate MB3000 protocol gateways bridge communication between serial-based Modbus RTU devices, like power meters within power supply equipment, and Ethernet-based SCADA systems in control centers. When corporate IT staff conduct vulnerability scans, they must scan thousands of MGate MB3000 protocol gateways to promptly address identified vulnerabilities.
To simplify the tasks of IT personnel, Moxa routinely performs vulnerability scans and takes necessary actions, such as updating security patches and firmware, to mitigate potential threats. Furthermore, our MGate MB3000 protocol gateways feature an intuitive configuration tool in GUI and CLI formats, facilitating OT and IT users in managing mass firmware updates effortlessly. These gateways not only enable clients to monitor power utilization in their serial-based devices but also alleviate security concerns and operational efforts simultaneously.
With over 35 years of experience in developing serial connectivity solutions, Moxa remains committed to furnishing secure serial-to-Ethernet solutions to meet diverse industrial requirements. Refer to our selection table to find a secure serial-to-Ethernet solution. For more insights into our serial communication development, visit our microsite.
Reference:
2https://www.securityweek.com/ransomware-attack-uk-rail-system-spray-and-pray-or-targeted
- Not Only for Automobiles: Discovering CANbus Technology in Various Industrial Settings - October 29, 2024
- Boost Your Network Performance: An Exciting Manual to PoE Switches! - September 10, 2024
- Understanding Gigabit Switches: Industrial vs Regular Gigabit - September 4, 2024