Firewalls are the problem with DMZ designs. Many practitioners have the mistaken impression that firewalls protect industrial systems while still providing access to industrial data. In fact firewalls do not provide access to data – they provide access to systems. This access can be used to attack PI servers and other systems in DMZs, right through the firewalls. This eBook digs deeper into these problems and suggests an alternative: Waterfall’s hardware-enforced Unidirectional Security Gateways. The gateways make strong security simple, providing access to industrial data without providing access to industrial systems. Download our eBook now to learn how your security program can be simplified and strengthened.
Firewalls are the problem with DMZ designs. Many practitioners have the mistaken impression that firewalls protect industrial systems while still providing access to industrial data. In fact firewalls do not provide access to data – they provide access to systems. This access can be used to attack PI servers and other systems in DMZs, right through the firewalls. This eBook digs deeper into these problems and suggests an alternative: Waterfall’s hardware-enforced Unidirectional Security Gateways. The gateways make strong security simple, providing access to industrial data without providing access to industrial systems. Download our eBook now to learn how your security program can be simplified and strengthened.
Andrew Ginter is the VP Industrial Security at Waterfall Security Solutions
At Waterfall, Andrew leads a team of experts who work with the world’s most secure industrial sites. He is author of two books on industrial security, a co-author of the Industrial Internet Consortium’s Security Framework, and the co-host of the Industrial Security Podcast. Andrew spent 35 years designing SCADA system products for Hewlett Packard, IT/OT connectivity products for Agilent Technologies, and OT/ICS security products for Industrial Defender and Waterfall Security Solutions.