資源探索
我們致力於促進世界安全,持續努力改進和創新解決方案,以最先進的資安技術迎擊工業 4.0 下快速變化的所有挑戰。 歡迎與我們一起探索全球新知,包括白皮書、新聞稿、科技會談等一線消息。
黑熊最新消息與全球新知
黑熊觀點:指令本身無誤時,即使數值超標,防火牆也無從抵擋。
技術白皮書
眼見為憑
提到單向傳輸閘道器,常聽到一個問題:「到底防火牆和單向傳輸閘道器有什麼不同?」
單向傳輸閘道器為特別需要保護的網路區段提供額外防禦,因此可說是防火牆的好拍檔。不過細究會發現,兩者的防禦概念迥然不同。
防火牆在兩段網路或系統間擔任阻隔,但允許部分資訊雙向流通。產業應用上,即是在資訊技術 (IT) 與營運技術 (OT) 系統間,根據預設路由規則調控資料轉移與否。
使用者認證與追蹤紀錄
組態設定錯誤是網路資安事件的常見肇因,可能源自操作人員有意或無意更動,也可能是外部網路攻擊的結果。 根據 ISA62443 標準指示,任何可調整設定組態之網路連線元件皆應遵循以下原則: 1. 使用者身分識別與認證:人機使用介面需強制執行身分識別與認證,且每位使用者都必須有各自的帳號與權限。只有最高管理員能變更設定,其他操作人員僅能查看裝置設定。 2. 使用者操作不可否認性:元件需能辨識人為操作,並將操作內容詳情與時間、使用者帳號記錄在人類可讀取的報告中。 3. 組態完整性檢查:元件若支援組態設定檔案,需能檢查檔案完整性,以免毀損的檔案侵害系統。
The cyber security risk of substation is high
Electricity serves an important part to the economy and to people’s day-to-day activities. A power grid that fails can cause catastrophic damages.
Cyber-attack incidents on the rise
For industrial and corporate giants, data has been incredibly useful to provide daily insights for improvement everywhere. Thus, OT gradually converges with IT, transforming the traditional operation model towards automation to improve productivity. However, convenience and productivity have introduced more attack vectors to the OT environment and created more opportunities for malicious activities. OT systems which were designed many decades ago are now exposed to a lot of risk.
Protecting PLCs in a smart-grid digitalization system
Programmable logic controllers (PLCs) are the most important components of industrial control systems, providing the high performance and efficiency that is necessary for automation. They receive information from input devices (e.g. sensors), process the data, and conduct necessary actions based on pre-programmed parameters. These days, PLCs are also more integrated and interconnected with other complex systems and open source solutions.
Machinery these days are highly sophisticated and expensive, consisting of a lot of sensors, moving parts and computing power.
In the long term, they can produce high return on investment for companies, replacing manual workforce in critical areas that require high precision and productivity. However, when machines act as the brains for operation and are connected to a lot of industrial devices, a security breach can put the whole operation at stake.
實力看得到
滲透測試
專利技術已通過全球多家專業實驗室滲透測試。
資安標準
我們的解決方案符合 ISA 62443-4 SL3 規範中的縱深防禦 (Defense in Depth) 和安全區域與管道 (Zones & Conduits) 原則。
工業規格
憑藉 30 多年集團經驗,產品符合工業等級 EMC,適用於嚴峻環境下使用。
工業網路經驗
國際知名OT資安機構
滲透測試認證通過
海外辦公室
軟硬體工程師
認證機構
