Claroty Partners with Cisco and Belden

Jan. 17, 2019
These new partnerships with Claroty will connect Cisco’s pxGrid Ecosystem and Belden’s Tripwire offerings to industrial control system devices.

Over the past couple of years, industrial control system cybersecurity supplier Claroty has signed a number of partnerships with automation technology suppliers, including Schneider Electric, Rockwell Automation and Siemens.

Claroty has since announced two additional partnerships—one with Cisco and one with Belden.

As part of Cisco’s pxGrid Ecosystem (a platform that allows multiple security products to share data and work together), Cisco will combine Claroty’s Continuous Threat Detection technology for real-time operational technology (OT) network monitoring and visibility with Cisco’s Identity Services Engine (ISE) for automated threat detection and response, as well as  its Firepower firewall technology to enable automated and active threat protection for OT environments.

Specifically addressing the automated aspects of the combined technologies, Cisco said, “Through integration with pxGrid, Cisco customers can easily ingest asset details into ISE… to create new policies…for industrial networks. This integration also enables ISE to automate policy management—applying preset policies for new assets that appear based on the asset type and other details. For example, ISE can generate policies for PLCs or RTUs that are running firmware with known vulnerabilities or access policies that can be tuned for the different levels of risk posed by devices such as HMIs [human machine interfaces], PLCs [programmable logic controllers] or RTUs [remote terminal units].”

Claroty’s Continuous Threat Detection pinpoints which industrial assets have known vulnerabilities, enabling ISE or Firepower to ingest this data and automatically apply additional protection rules, Cisco said.

The strategic partnership between Claroty and Belden’s Tripwire brand will focus on “integrated top-floor to shop-floor cybersecurity solutions that address all aspects of an industrial cybersecurity strategy, providing complete visibility to all assets so that protective countermeasures can be implemented to ensure the reliability and integrity of the industrial process,” said Belden.

A key technological aspect of the partnership is that it will extend Tripwire’s automated asset discovery reach into industrial assets such as PLCs, RTUs and distributed control systems. The combination of technologies from Tripwire and Claroty will reportedly provide visibility and threat monitoring across IP and non-IP segments within industrial control system networks.

“Tripwire solutions provide complete visibility into device configuration and operational state. When we combine that with Claroty’s passive threat detection visibility capabilities, we are able to better equip our customers to proactively and swiftly detect and respond to threats that would detrimentally impact the industrial process,” said Galina Antova, co-founder and chief business development officer, Claroty.

According to the two companies, using Claroty’s virtual zones capability, which automatically creates logical groups of industrial assets based on the communications patterns between assets, customers can implement virtual segmentation to create advanced ICS protocol-specific deep packet inspection rules for Belden firewalls, a requirement for simplified micro-segmentation.

About the Author

David Greenfield, editor in chief | Editor in Chief

David Greenfield joined Automation World in June 2011. Bringing a wealth of industry knowledge and media experience to his position, David’s contributions can be found in AW’s print and online editions and custom projects. Earlier in his career, David was Editorial Director of Design News at UBM Electronics, and prior to joining UBM, he was Editorial Director of Control Engineering at Reed Business Information, where he also worked on Manufacturing Business Technology as Publisher. 

Sponsored Recommendations

Rock Quarry Implements Ignition to Improve Visibility, Safety & Decision-Making

George Reed, with the help of Factory Technologies, was looking to further automate the processes at its quarries and make Ignition an organization-wide standard.

Water Infrastructure Company Replaces Point-To-Point VPN With MQTT

Goodnight Midstream chose Ignition because it could fulfill several requirements: data mining and business intelligence work on the system backend; powerful Linux-based edge deployments...

The Purdue Model And Ignition

In the automation world, the Purdue Model (also known as the Purdue reference model, Purdue network model, ISA 95, or the Automation Pyramid) is a well-known architectural framework...

Creating A Digital Transformation Roadmap Using A Unified Namespace

Digital Transformation has become one of the most popular buzzwords in the automation industry, often used to describe any digital improvements to industrial technology. But what...