Bayshore Networks produces solutions for active protection of the industrial (OT) environment, protecting industrial devices, control and monitoring (iFIX SCADA) systems and preventing intentional or unintentional changes in process operation. In addition, they provide isolation of critical elements and sensitive parts of the network from cyber-attacks and misuse.
Bayshore OTfuse
OTfuse is an automatically adjustable device for the protection of industrial equipment. It is an intelligent security element and Intrusion Prevention System (IPS) that is very easy and quick to configure.
The physical OTFuse device is installed upstream of critical endpoints to protect PLC devices, SCADA systems, frequency converters, smart devices, etc.
It works by learning and learning about industrial communication itself, which means that a “whitelist” of known communication from known devices is created. Based on learning and OTfuse rules, it enforces the “normal” operation of the process in the plant and actively prevents any unknown communication from reaching the protected devices in real time.
It supports protocols such as Modbus, Bacnet, Ethernet/IP, Siemens S7, SLMP, FINS, DNP3 and is designed to be used by technologists, maintenance and automation engineers with knowledge of computer science and industrial communication protocols.
The solution protects the network and devices against unauthorized changes (software or configuration), device resets, device reads, and unwanted changes to parameter values (e.g. out of limits).
Bayshore NetWall
Operational networks and their critical equipment are usually isolated from other networks to protect them from cyber-attacks, so we are often faced with the challenge of how to securely transfer data from a protected (process) environment to other networks (e.g. business networks).
NetWall solves this issue elegantly.
It is also called a unidirectional safety gateway or diode and is the hardware and software that performs unidirectional data mapping. With NetWall, a network can be divided into a trusted part and a potentially dangerous part. Data is transferred from a trusted network (e.g. a production plant) without exposing devices to an untrusted network (corporate IT, business destinations). As a unidirectional data diode, it represents an industrial bridge between OT and IT networks, over which data flows seamlessly in one direction only.
NetWall is designed to extract data from separate networks and simultaneously protect networks in a way that no firewall can.
Main functionalities:
- A hardware and software solution that allows high-speed data transfer in one direction only.
- Once installed, it creates a secure network segment that isolates and protects critical devices and sensitive networks from cyber-attack and misuse.
- Securely transfers various data from the process part of the network (e.g. control systems, log files, process databases, etc.) to IT data centers or other (cloud) networks.
- Supports real-time copying of files and data to business systems such as ERP, MES, PLM, PIM and others.
Industrial Software Sales Manager
Aljaž Stare, PhD.