Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Analytics //

Security Monitoring

10/1/2018
01:55 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Belden and Claroty Announce Strategic Partnership

Companies Deliver First-of-its-Kind Integrated Cybersecurity Solution for Deep, End-to-End Visibility and Real-Time Monitoring Across Industrial Networks

St. Louis – October 1, 2018 – Today, Belden, a global leader in signal transmission solutions for mission-critical applications, and its Tripwire brand announced a strategic partnership with Claroty, a leader in cybersecurity for industrial control networks. This partnership will provide integrated top-floor to shop-floor cybersecurity solutions that address all aspects of an industrial cybersecurity strategy, providing complete visibility to all assets so that protective countermeasures can be implemented to ensure the reliability and integrity of the industrial process. The solutions will seamlessly integrate governance and management of both IT and OT networks.

Tripwire Industrial Visibility is the first integrated solution between Tripwire and Claroty that will provide visibility, monitoring and threat mitigation across the complete OT landscape.

"Our IT and OT security solutions provide a comprehensive suite of technologies to view, monitor, and respond to threats from the enterprise business network into the plant environment," said Dhrupad Trivedi, Executive Vice President and Chief Technology Officer of Belden Inc. and President of Tripwire. "Now, by partnering with Claroty, we're able to extend visibility and threat detection all the way down to the lowest levels of the OT network."

In addition to introducing the Tripwire Industrial Visibility Solution, the partnership between Belden and Claroty seeks to extend Tripwire’s automated asset discovery reach with visibility into industrial assets inclusive of their communication patterns, including, but not limited to programmable logic controllers (PLCs), remote terminal units (RTUs) and distributed control systems (DCS). The companies’ combined technologies will provide visibility into and threat monitoring across IP and non-IP network segments within industrial control system (ICS) networks.

“Tripwire solutions provide complete visibility into device configuration and operational state. When we combine that with Claroty’s passive threat detection visibility capabilities, we are able to better equip our customers to proactively and swiftly detect and respond to threats that would detrimentally impact the industrial process,” said Galina Antova, Co-founder and Chief Business Development Officer, Claroty.

Tripwire’s current data collection approaches for both IT and OT for asset discovery, configuration change detection, integrity monitoring, vulnerability management (VM), log management, and configuration assessment for ICS cybersecurity frameworks will be complemented by Claroty's passive data collection and threat monitoring approach. This will enable full and complete visibility for all OT related assets from field process/safety instrumented systems to plant-wide operational supervisory control levels (levels 0 to 3.5 of the Purdue model).

Claroty's capabilities will extend Tripwire’s Industrial Suite, providing increased visibility into the field control and I/O levels of OT networks by pinpointing which industrial assets have known vulnerabilities and pinpointing potentially malicious behavior that can leave networks exposed.

Using Claroty’s virtual zones capability, which automatically creates logical groups of industrial assets based on the communications patterns between assets, customers can implement virtual segmentation and will have the information to create advanced ICS protocol specific deep packet inspection rules for Belden firewalls required for simplified micro-segmentation that can dramatically enhance OT threat protection. 

For more information, please visit https://www.tripwire.com/solutions/industrial-control-systems

 

About Belden

Belden Inc., a global leader in high-quality, end-to-end signal transmission solutions, delivers a comprehensive product portfolio designed to meet the mission-critical network infrastructure needs of industrial and enterprise markets. With innovative solutions targeted at reliable and secure transmission of rapidly growing amounts of data, audio and video needed for today’s applications, Belden is at the center of the global transformation to a connected world. Founded in 1902, the company is headquartered in St. Louis and has almost 10,000 employees globally, and manufacturing capabilities in North and South America, Europe and Asia. For more information, visit us at www.belden.com or follow us on Twitter @BeldenInc.

 

About Tripwire

Tripwire is a leading provider of security, compliance and IT operations solutions for enterprises, industrial organizations, service providers and government agencies. Tripwire solutions are based on high-fidelity asset visibility and deep endpoint intelligence combined with business context; together these solutions integrate and automate security and IT operations. Tripwire’s portfolio of enterprise-class solutions includes configuration and policy management, file integrity monitoring, vulnerability management, log management, and reporting and analytics. Learn more at www.tripwire.com, get security news, trends and insights at www.tripwire.com/blog/ or follow us on Twitter @TripwireInc.

 

About Claroty

Headquartered in New York and launched as the second startup from the famed Team8 foundry, Claroty combines elite management and research teams with deep technical expertise from both IT and OT disciplines. The company is backed by an unrivaled syndicate of investors and partners, including some of the most important industrial control automation companies and asset owners on earth. With an unmatched understanding of ICS, SCADA, and other essential OT/IIoT systems, Claroty built a fully integrated cybersecurity platform. Its award-winning suite of products provides extreme visibility into industrial networks – enabling unparalleled cyberthreat protection, detection, and response. For more information, visit www.claroty.com.

 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
The State of Cybersecurity Incident Response
In this report learn how enterprises are building their incident response teams and processes, how they research potential compromises, how they respond to new breaches, and what tools and processes they use to remediate problems and improve their cyber defenses for the future.
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-32812
PUBLISHED: 2021-08-02
Monkshu is an enterprise application server for mobile apps (iOS and Android), responsive HTML 5 apps, and JSON API services. In version 2.90 and earlier, there is a reflected cross-site scripting vulnerability in frontend HTTP server. The attacker can send in a carefully crafted URL along with a kn...
CVE-2021-32787
PUBLISHED: 2021-08-02
Sourcegraph is a code search and navigation engine. Sourcegraph before version 3.30.0 has two potential information leaks. The site-admin area can be accessed by regular users and all information and features are properly protected except for daily usage statistics and code intelligence uploads and ...
CVE-2021-32811
PUBLISHED: 2021-08-02
Zope is an open-source web application server. Zope versions prior to versions 4.6.3 and 5.3 have a remote code execution security issue. In order to be affected, one must use Python 3 for one's Zope deployment, run Zope 4 below version 4.6.3 or Zope 5 below version 5.3, and have the optional `Produ...
CVE-2021-21866
PUBLISHED: 2021-08-02
A unsafe deserialization vulnerability exists in the ObjectManager.plugin ProfileInformation.ProfileData functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file can lead to arbitrary command execution. An attacker can provide a malicious file to trigger t...
CVE-2021-27499
PUBLISHED: 2021-08-02
Ypsomed mylife Cloud, mylife Mobile Application, Ypsomed mylife Cloud: All versions prior to 1.7.2, Ypsomed mylife App: All versions prior to 1.7.5,The application layer encryption of the communication protocol between the Ypsomed mylife App and mylife Cloud uses non-random IVs, which allows man-in-...