Comprehensive Protection for Internet of Things Infrastructure: The Kaspersky IoT Secure Gateway β

By 2021.02.11.Insights

The Internet of things (IoT) is changing the world right before our very eyes. It can make it safer and more convenient, help conserve resources and efficiently manage entire production lines.

The IoT concept encompasses an enormous amount of devices, technologies, software, and data transmission protocols. However, the diversity of this environment also brings with it a variety of risks that could threaten the security of various aspects of life.

The complexity of an IoT infrastructure provides cybercriminals with a multitude of opportunities to conduct various attacks. Unfortunately, manufacturers of endpoint smart devices often ignore the main principles of cybersecurity. For example, a lot of hardware fails to ensure the integrity of its firmware, and devices are often delivered with predefined passwords (including default administrator passwords) along with their already weak network security settings or outdated and vulnerable software versions.

The infrastructural and technological complexity of the IoT combined with its exceedingly high rates of growth has unfortunately turned the Internet of things into a hotbed of potential threats.

Kaspersky IoT Infrastructure Security is a comprehensive solution for protecting and monitoring an IoT infrastructure at all levels, covering everything from endpoint smart devices, gateways and cloud platforms to the actual data transmission channels. Its main component is Kaspersky IoT Secure Gateway, which provides security for systems at the gateway level. Monitoring and management is provided through Kaspersky Security Center.

Kaspersky IoT Secure Gateway β*

Secure Gateway for Protected Internet of Things
Some of the most important yet most vulnerable devices in an IoT network are gateways. Their connection to external networks and frequent use of outdated firmware make gateways a prime target for attacks and malware infiltration. Cybercriminals can also exploit a gateway’s computing power. For this reason, the gateway of an IoT infrastructure should be secured first of all before any other components of the infrastructure.

Kaspersky IoT Secure Gateway based on KasperskyOS is a product designed for building secure IoT systems. It protects data at the gateway level by receiving, verifying and distributing sensor messages received over the MQTT protocol, and by relaying control commands to actuators. The main security features of the product include detection and classification of devices, registration of security events in IoT systems, and protection against network attacks (IDS/IPS).

Kaspersky IoT Secure Gateway can also be configured and complemented with some features of partner products.

* The current version of the product is intended for non-commercial piloting

For more information about the Kaspersky IoT Secure Gateway and its features and benefits, please see: https://os.kaspersky.com/solutions/kaspersky-iot-infrastructure-security/

Kaspersky Security Center

Centralized management and monitoring of the events of Kaspersky IoT Secure Gateway
The Kaspersky Security Center combines tools and technologies to form an advanced integrated platform for centralized administration, monitoring and security of IoT systems. It

  • expedites routine tasks
  • reduces vulnerability to attacks
  • helps protect all your endpoints and servers
  • simplifies administration
  • ensures integrity of systems
  • provides a complete picture of the IT environment.

Example implementations of Kaspersky IoT Infrastructure Security

Smart City
A residential building is equipped with systems that monitor the consumption of resources and manage electricity and water supply. The meters inside apartments are connected over the wireless protocol known as LoRaWAN.

Physical security of the systems is provided through remote-access video surveillance systems, motion detectors and door sensors. Information security is ensured by Kaspersky IoT Secure Gateway, which blocks attacks launched against local devices and workstations, identifies unauthorized connections to the network, and protects the network perimeter and cloud communications.

Kaspersky Security Center provides convenient centralized management for the events of Kaspersky IoT Secure Gateway to help monitor the security of IoT infrastructure and promptly responding to incidents.

 

Smart Warehouse
A warehouse is equipped with climate control systems that can be managed through the cloud to continually maintain and control the climate in the warehouse from any location. Automated warehouse accounting is conducted via RFID sensors and tags and is managed locally (from user workstations on the network) and centrally.

Remote-access video surveillance systems, volume sensors and door sensors provide physical security for the warehouse. Information security is ensured by Kaspersky IoT Secure Gateway, which blocks attacks launched against local workstations, identifies unauthorized connections to the network, and protects the network perimeter and cloud communications.

Kaspersky Security Center provides convenient centralized management for the events of Kaspersky IoT Secure Gateway to help monitor the security of IoT infrastructure and promptly responding to incidents.

The IoTAC project plans to extend the functionalities of the Kaspersky gateway with the new research results and aims to validate this combined technology in four IoT use cases: Smart Home, Industry, Unmanned Air Systems and Automated Driving.

Leave a Reply

4 × two =