Analogue Transmission - Expert commentary

Tackling the challenge of the growing cybersecurity gap
Tackling the challenge of the growing cybersecurity gap

The SolarWinds cyberattack of 2020 was cited by security experts as “one of the potentially largest penetrations of Western governments” since the Cold War. This attack put cybersecurity front and centre on people’s minds again. Hacking communication protocol The attack targeted the US government and reportedly compromised the treasury and commerce departments and Homeland Security. What’s interesting about the SolarWinds attack is that it was caused by the exploitation of a hacker who injected a backdoor communications protocol.  This means that months ahead of the attack, hackers broke into SolarWinds systems and added malicious code into the company’s software development system. Later on, updates being pushed out included the malicious code, creating a backdoor communication for the hackers to use. Once a body is hacked, access can be gained to many. An explosion of network devices What has made the threat of cyberattacks much more prominent these days has been IT's growth in the last 20 years, notably cheaper and cheaper IoT devices. This has led to an explosion of network devices. IT spending has never really matched the pace of hardware and software growth Compounding this issue is that IT spending has never really matched the pace of hardware and software growth. Inevitably, leading to vulnerabilities, limited IT resources, and an increase in IoT devices get more attention from would-be hackers. Bridging the cybersecurity gap In the author’s view, this is the main reason why the cybersecurity gap is growing. This is because it inevitably boils down to counter-strike versus counter-strike. IT teams plug holes, and hackers find new ones, that is never going to stop. The companies must continue fighting cyber threats by developing new ways of protecting through in-house testing, security best practice sources, and both market and customer leads. End-user awareness One of the key battlegrounds here is the education of end-users. This is an area where the battle is being won at present, in the author’s opinion. End-users awareness of cybersecurity is increasing. It is crucial to educate end-users on what IoT devices are available, how they are configured, how to enable it effectively, and critically, how to use it correctly and safely. Physical security network Monitor™ is a software platform that provides a top-down view of the physical security network and ecosystem A valuable product that tackles cybersecurity is, of course, Razberi Monitor™, which is new to ComNet’s portfolio. Monitor™ is a software platform that provides a top-down view of the physical security network and ecosystem. It monitors and manages all the system components for cybersecurity and system health, providing secure visibility into the availability, performance, and cyber posture of servers, storage, cameras, and networked security devices. Proactive maintenance By intelligently utilising system properties and sensor data, Razberi’s award-winning cybersecurity software prevents problems while providing a centralised location for asset and alert management. Monitor™ enables proactive maintenance by offering problem resolutions before they become more significant problems. Identifying issues before they fail and become an outage is key to system availability and, moreover, is a considerable cost saving.

Physical security and the cloud: why one can’t work without the other
Physical security and the cloud: why one can’t work without the other

Human beings have a long-standing relationship with privacy and security. For centuries, we’ve locked our doors, held close our most precious possessions, and been wary of the threats posed by thieves. As time has gone on, our relationship with security has become more complicated as we’ve now got much more to be protective of. As technological advancements in security have got smarter and stronger, so have those looking to compromise it. Cybersecurity Cybersecurity, however, is still incredibly new to humans when we look at the long relationship that we have with security in general. As much as we understand the basics, such as keeping our passwords secure and storing data in safe places, our understanding of cybersecurity as a whole is complicated and so is our understanding of the threats that it protects against. However, the relationship between physical security and cybersecurity is often interlinked. Business leaders may find themselves weighing up the different risks to the physical security of their business. As a result, they implement CCTV into the office space, and alarms are placed on doors to help repel intruders. Importance of cybersecurity But what happens when the data that is collected from such security devices is also at risk of being stolen, and you don’t have to break through the front door of an office to get it? The answer is that your physical security can lose its power to keep your business safe if your cybersecurity is weak. As a result, cybersecurity is incredibly important to empower your physical security. We’ve seen the risks posed by cybersecurity hacks in recent news. Video security company Verkada recently suffered a security breach as malicious attackers obtained access to the contents of many of its live camera feeds, and a recent report by the UK government says two in five UK firms experienced cyberattacks in 2020. Cloud computing – The solution Cloud stores information in data centres located anywhere in the world, and is maintained by a third party Cloud computing offers a solution. The cloud stores your information in data centres located anywhere in the world and is maintained by a third party, such as Claranet. As the data sits on hosted servers, it’s easily accessible while not being at risk of being stolen through your physical device. Here’s why cloud computing can help to ensure that your physical security and the data it holds aren’t compromised. Cloud anxiety It’s completely normal to speculate whether your data is safe when it’s stored within a cloud infrastructure. As we are effectively outsourcing our security by storing our important files on servers we have no control over - and, in some cases, limited understanding of - it’s natural to worry about how vulnerable this is to cyber-attacks. The reality is, the data that you save on the cloud is likely to be a lot safer than that which you store on your device. Cyber hackers can try and trick you into clicking on links that deploy malware or pose as a help desk trying to fix your machine. As a result, they can access your device and if this is where you’re storing important security data, then it is vulnerable. Cloud service providers Cloud service providers offer security that is a lot stronger than the software in the personal computer Cloud service providers offer security that is a lot stronger than the software that is likely in place on your personal computer. Hyperscalers such as Microsoft and Amazon Web Service (AWS) are able to hire countless more security experts than any individual company - save the corporate behemoth - could afford. These major platform owners have culpability for thousands of customers on their cloud and are constantly working to enhance the security of their platforms. The security provided by cloud service providers such as Claranet is an extension of these capabilities. Cloud resistance Cloud servers are located in remote locations that workers don’t have access to. They are also encrypted, which is the process of converting information or data into code to prevent unauthorised access. Additionally, cloud infrastructure providers like ourselves look to regularly update your security to protect against viruses and malware, leaving you free to get on with your work without any niggling worries about your data being at risk from hackers. Data centres Cloud providers provide sophisticated security measures and solutions in the form of firewalls and AI Additionally, cloud providers are also able to provide sophisticated security measures and solutions in the form of firewalls and artificial intelligence, as well as data redundancy, where the same piece of data is held within several separate data centres. This is effectively super-strong backup and recovery, meaning that if a server goes down, you can access your files from a backup server. Empowering physical security with cybersecurity By storing the data gathered by your physical security in the cloud, you're not just significantly reducing the risk of cyber-attacks, but also protecting it from physical threats such as damage in the event of a fire or flood. Rather than viewing your physical and cybersecurity as two different entities, treat them as part of one system: if one is compromised, the other is also at risk. They should work in tandem to keep your whole organisation secure.

HD over Coax provides cost-effective video surveillance upgrade
HD over Coax provides cost-effective video surveillance upgrade

According to IHS Market, it is estimated that there are over 60 million security cameras in the United States, and other reports say these cameras capture more than four billion hours of footage per week. Over the last decade, IP camera technology has dominated the conversation as it has provided users with a broad offering of enhanced image quality and features. With a large percentage of existing security systems relying on analogue, many end users looking for high definition (HD) video quality have been forced to take on a complete system overhaul. Infrastructure overhaul for HD video To make the switch, customers would need to change everything, from cameras to hardware to wiring– not to mention the lengthy installation process that would ensue. IP cameras also require higher Internet speeds and more cloud space. Whether constrained by budget, bandwidth or storage, many end users have been unable to adopt this new video surveillance method.Thanks to technological advancements within the security industry, HD over Coax offers a viable solution for integrators and end users alike Thanks to technological advancements within the security industry, HD over Coax offers a viable solution for integrators and end users alike. By utilising the current Coaxial cables, this offering yields high definition video, while requiring minimal infrastructure changes and is an optimal surveillance choice for security customers. Plus, with new advancements and updates being made frequently to this technology, there is a solution for every security need. The enhanced alternative of HD over Coax has been warmly welcomed in the security industry, thanks to its simple solutions and ever-evolving features. Many new analogue HD cameras are “plug and play,” able to connect directly to existing Coaxial cables. This eliminates the need for a complete system change, creating cost-savings for the end user and an enhanced video quality offering. Easy solutions for HD video As a result, integrators can cost-effectively upgrade their customer’s surveillance solution while using their legacy infrastructure, making it an attractive option for end users and an easy sell for dealers. Latency in video is another common issue with network-based camera systems, where even the slightest delay in video surveillance can hinder security response HD over Coax cameras themselves are always expanding and evolving to meet a wide array of security needs. With the introduction of fisheye and multi-sensor cameras, users now have a multitude of coverage options, not to mention the introduction of 4K bringing resolution options to the same level as IP. Some newer technologies are even touting 4K cameras paired with 4K digital video recorders (DVRs) made specifically for analogue systems. Longer cables grant transmission for up to 1600 feet, double the distance of standard analogue solutions, and triple that of IP systems. This single cable is able to transmit both HD video and audio. Recently, broadcast quality audio over Coax has become available in limited models, a substantial improvement over older analogue technology, which was unable to transmit audio. Stopping video delay Latency in video is another common issue with network-based camera systems. Even the slightest delay in video surveillance can hinder security response. IP cameras are forced to compress and packetise their video for transmission. The outcome of this is a reduced number of images per video, which in turn causes delay. HD over Coax on the other hand, delivers an unlimited amount of HD images in real time, with smooth motion and impressive clarity. Additionally, the point-to-point transmission delivers uncompressed video free of lag. Another touted benefit is that, unlike IP networked cameras, analogue systems provide a more secure video transmission. With so much sensitive information housed on a businesses’ network, adding another point of network access through an IP camera can create concerns for cyber security risks. HD over Coax delivers an unlimited amount of HD images in real time, with smooth motion and impressive clarity Preventing network hacking With HD over Coax, the physical connections between the camera and DVR prevent network hacking. By keeping the video surveillance system offline, security professionals are able to direct their attention to the physical threats at hand, rather than having to focus on deterring cyber security risks. One of the primary difficulties of deploying HD video solutions is the fact that many older systems utilise a wide variety of HD standards and platforms. To make matters more complicated, after HD over Coax was brought to market, manufacturers raced to create their own version of this technology. Today, the most popular proprietary standards are HD-CVI, HD-TVI and AHD. However, integrators and customers found that attempting to manage multiple HD technologies proved to be near impossible.Integrators and customers found that attempting to manage multiple HD technologies proved to be near impossible Diversifying surveillance through one DVR To combat these issues, manufacturers have introduced products with more flexibility to their portfolios. One example of this is the penta-brid DVR which grants the ability to seamlessly integrate multiple technologies deployed across one application. This means that systems with diverse camera brands and technologies, such as a mix of HD-CVI, HD-TVI, AHD, analogue or IP, can be connected through one DVR. For many end users with legacy analogue systems, penta-brid DVRs give them greater freedom to choose between a variety of solutions, rather than being limited to one option. With video resolution increasing, the space needed to store the footage is similarly rising. Penta-brid technology has been able to adapt to these evolving needs, giving users ample storage space to house the HD and 4K surveillance video with some of the newest models including H.265 compression.  HD casino surveillance made simple For casinos, HD images are critical for identifying unauthorised personnel and unlawful behaviours to create a safe environment for guests and staff While HD over Coax is beneficial to many end users and integrators, those in the casino and hospitality markets find it crucial. With a combination of high profile guests, large amounts of cash on hand, constant crowds and strict industry regulations, reliable video surveillance is a must. Deploying new IP systems comes at a stiff price. When looking to upgrade their video surveillance, casinos must also be mindful of the installation process. When moving to an IP-based system, ripping out old wires and replacing them with new is the standard practice. This practice can be both disruptive and costly, not to mention gaming regulations require casino activities be monitored at all times so a complete system shutdown would result in revenue loss. This cost can be hard to justify, especially when the current legacy analogue system remains in working condition with only the lower image resolution to date it. For these scenarios, the most cost-effective option is to leverage the legacy infrastructure, replace the existing cameras with new devices, and reap the benefits that HD video has to offer without any lapse in security. For casinos, HD images are critical for identifying unauthorised personnel and unlawful behaviours to create a safe environment for guests and staff. HD over Coax cameras now offer the same resolution as IP cameras with a plug and play approach, that cuts down on expense without sacrificing quality. For businesses and applications that are unable to adopt IP technology, whether it be cost or time prohibitive, HD over Coax now features most of the same benefits IP has to offer without breaking the bank. By providing clear images in real time, maximising existing infrastructure, and affording cyber security benefits, HD over Coax provides an attractive solution for many end users and integrators.

Latest Moxa Europe GmbH news

Moxa unveils EDR-G9010 Series industrial secure routers for safeguarding industrial applications
Moxa unveils EDR-G9010 Series industrial secure routers for safeguarding industrial applications

Moxa Inc., a globally renowned company in industrial communications and networking, with a focus on securing industrial networks, has introduced the new EDR-G9010 Series. These industry-certified, all-in-one firewall/NAT/VPN/switch/routers, act as a robust first line of defence for industrial networks, in diverse applications, such as smart manufacturing and critical infrastructure. EDR-G9010 Series industrial secure routers Moxa’s EDR-G9010 Series industrial secure routers offer 10-port GbE performance and defence-in-depth security capabilities, in order to fulfill the needs of bandwidth-hungry applications that require field-proven reliability and multi-layered security. With more and more cyber security incidents occurring in operational technology (OT) systems, enhancing industrial network security becomes a key priority for business owners and chief security officers. However, in OT environments, network requirements are not just concerned with security, but also focus on keeping operations functioning smoothly. Network security solution for OT environments With the launch of the new EDR-G9010 Series, Moxa brings a tailor-made network security solution for OT environments" “With the launch of the new EDR-G9010 Series, Moxa brings a tailor-made network security solution for OT environments,” said Kevin Huang, Product Manager at Moxa Networking, adding “We recommend our customers to use the EDR-G9010 Series industrial secure routers, to segment their networks as a first line of defence and prevent threats from propagating to the rest of the network.” He adds, “Furthermore, users can leverage its advanced OT Deep Packet Inspection (DPI) technology, firewall, NAT, and VPN features, to achieve multi-layered security. Last, but not least, the 10-port Gigabit performance, faster boot time and Layer 2/Layer 3 redundancy helps ensure the availability of industrial networks.” Compact and rugged industrial secure router Kevin Huang further stated, “The EDR-G9010 Series combines all these powerful functions into a single compact, rugged, industry-certified industrial secure router. Overall, the EDRG9010 series will be Moxa’s future-proof secure routing platform, with additional capabilities being added over time.” The EDR-G9010 Series industrial secure routers offer: Advanced Network Protection with Network Segmentation and Advanced DPI - Within one field site, the EDR-G9010 Series industrial secure routers can help build a security boundary, by segmenting OT and IT networks, and feature advanced DPI technology, to give users more granular control over network traffic, by filtering industrial protocols, based on the requirements of the application. Moxa will continuously extend the DPI protocol coverage. Starting with Modbus TCP/UDP and DNP3, Moxa will add specifically, power market-related protocols in 2022. When remote connections across multiple sites are needed, the EDR-G9010 Series’ embedded IPsec VPN ensures safe industrial network communication channels, when accessing the private network from the public Internet. Future-proof platform for OT Intrusion Prevention - The superb computing power of the EDR-G9010 platform enables it to run an Intrusion Prevention Module, which will safely block ransomware, malware, viruses and other cyber security threats in OT networks. This signature-based scanning technology will move traffic filtering and asset visibility in OT networks to an unprecedented level. This module is licenced on demand and will be available by mid of 2022. Better Performance with High Bandwidth and Faster Boot Times - With the number of connected devices constantly growing, the EDR-G9010 Series is capable of achieving high throughput, while providing robust security, perfect for bandwidth-hungry applications. Meanwhile, the faster boot time helps reduce system downtime, during regular maintenance or in the event of an emergency recovery situation. More Versatility - The EDR-G9010 Series caters to the needs of different networks, whether it is the need for a firewall, network address translation (NAT), remote VPN communications, switching, or routing. These secure routers are also certified for IEC 61850-3/IEEE 1613, NEMA TS2, ATEX Zone 2, and Class I Division 2. The accessible and versatile all-in-one design makes these devices ideal for securing industrial applications, such as in power substations, intelligent transportation systems, oil and gas, and smart manufacturing. IEC-62443 hardened - Secure routers play a pyramidal role in security architecture and need to be security hardened. Hence, EDRG9010 hardware and software has been developed with Moxa’s IEC-62443-4-1 certified process, and is ready to meet the IEC-62443-4-2 requirements, up to Security Level 2. EDR-G9010 Series 10-port Gigabit Industrial Secure Router highlights include: All-in-one firewall/NAT/VPN/switch/router, 8-port TX GbE and 2-port SFP GbE, Comprehensive redundancy mechanisms, including Turbo Ring and VRRP, Wide -40 to 75°C operating temperature (-T model), Advanced Deep Packet Inspection (DPI) for Modbus TCP/UDP and DNP3 traffic, and 104 and MMS (available in Q1, 2022), and Certified for IEC 61850-3, NEMA TS2, ATEX Zone 2, Class I Division 2, EN 50121-4, DNV, IEC-62443-4-2 SL 2 (available in Q4 2022). Compatible with MXview network management software EDR-G9010 Series is also compatible with Moxa’s MXview network management software To enhance network security visibility, the EDR-G9010 Series is also compatible with Moxa’s MXview network management software. With the MXview, software users can, for example, visualise the achieved security level of IEC-62443-ready Moxa devices, perform regular configurations backups, and have an at-a-glance overview of the network’s performance. With the launch of the EDR-G9010 Series industrial secure routers, Moxa has expanded its secure network infrastructure portfolio, in order to cover a broader range of industrial applications and introduced more granular control over industrial networks, so as to fulfill its ongoing commitment to protect the connectivity of industrial environments. Connectivity for the Industrial Internet of Things (IIoT) Moxa is a globally renowned provider of edge connectivity, industrial computing and network infrastructure solutions, for enabling connectivity for the Industrial Internet of Things (IIoT). The company delivers lasting business value, by empowering the industry, with reliable networks and sincere service, for industrial communications infrastructures.

Moxa launches Turbo Pack 3 firmware for industrial Ethernet switches, enhancing device security
Moxa launches Turbo Pack 3 firmware for industrial Ethernet switches, enhancing device security

Moxa's EDS-G500E and EDS-518E/528E DIN-rail switches support Turbo Pack 3, and all of Moxa's industrial Ethernet switches will support the new firmware by 2017 Moxa, a provider of network infrastructure solutions for the Industrial Internet of Things (IIoT), announced a new firmware upgrade for its industrial Ethernet switches with major enhancements for its security functionalities. This new firmware, called Turbo Pack 3, is not only compliant with the IEC 62443-4-2 level 2 cybersecurity standard, but also supports other security management features, such as MAC Address and RADIUS authentication to prevent from unauthorised access, known security leaks and unknown attacks. At present, Moxa's EDS-G500E and EDS-518E/528E DIN-rail switches support Turbo Pack 3, and all of Moxa's industrial Ethernet switches will support the new firmware by 2017. Increased device-level security According to an ICS-CERT report, cyber-attacks on the critical manufacturing sector increased by 50% from 2014 to 2015. The report noted that a lack of proper access management and network probing are among the most common network vulnerabilities. One of the key mechanisms to ensure a safe and reliable network is to strengthen device-level security. Turbo Pack 3 ensures Moxa's switches comply with the IEC 62443-4-2 level 2 standard, which provides technical security requirements and guidelines for network device suppliers and engineers. Moreover, the new firmware upgrade supports MAC authentication bypass via RADIUS server, and also fixes certain security vulnerabilities to protect the switches from malicious intrusion. Ensure network availability The firmware upgrade also supports enhancements in redundancy technologies, such as V-ON, traffic management, and real-time event notifications. With these new functionalities, Moxa's switches are enable higher network availability and reliability, which is crucial for mission-critical applications.

SeeTec physical security solutions secure oil and gas industry
SeeTec physical security solutions secure oil and gas industry

SeeTec video technology helps to detect situations at an early stage and thus assists in avoiding consequences Despite of the development of alternative and renewable energies, oil and gas still represent the engine of the world economy. Exploration takes place under increasingly challenging conditions often in remote locations. Security requirements, already high, continue to rise. This is not surprising as incidents during up-, mid- and downstream processing can cause immense damage to people and the environment. Video technology systems from SeeTec help detecting situations at an early stage and thus assist in avoiding consequences – at all process levels. SeeTec Cayuga for staff safety Video technology is generally used on drilling vessels and –platforms to monitor the drilling and mining process and to ensure the staff’s safety. SeeTec Cayuga can easily be integrated into this process and also into higher level systems such as DCS for example. Video is then a part of an overall solution using TCP triggers or I/O modules to communicate with the sensor- and control technology. If for example a sensor detects high pressure in the system, an automatic video fly-out window showing video streams of relevant areas is displayed on the screens in the control room. SeeTec Cayuga also supports thermal cameras. Using them, high temperatures can be detected based on the colours displayed. Using video technology critical situations can be detected and validated much faster, giving staff more time to react on the basis of more information. Video analytics with SeeTec video management software Especially the transportation of gas and oil from the production sites to the refineries and the tank farms is a dangerous process. Big parts of overland pipelines lead over uninhabited areas without significant infrastructure, making the monitoring of leaks complicated. Also in politically unstable regions the risk of attacks is a serious threat. If the transportation is done by sea the risk of damage and harm affects not only the vessel but also has impact on the environment. Using SeeTec video management software pipelines are monitored permanently over long distances even if there is only low banded infrastructure. By using intelligent video analytics and by linking to process monitoring systems the attention of the security staff is drawn to possible dangers or incidents. SeeTec video systems provide protection for every need. With SeeTec the building perimeter is continuously monitored Perimeter protection with integrated security systems Next to the operational safety in refineries and production plants, safeguarding against unauthorised access is an important issue. SeeTec video systems provide protection for every need. With SeeTec the building perimeter is continuously monitored. Through the integrated video analytics and the additional analytics interface to third-party applications an automatic perimeter protection is supported. So, for example, a person trying to climb over the premises’ fences will be visualised automatically on the Client in the control room. A built-in license plate recognition solution and the integration of access control applications complement the SeeTec range. In the refinery the video system can also be seamlessly integrated into production processes. It is possible to trigger alarms or other actions over sensors or management systems by using TCP signals or I/O-modules. SeeTec’s modular architecture makes it easy for the product portfolio to grow with increasing demands and/or the growing operational areas. Using distributed installations it is possible to combine several locations to just one bandwidth-optimised system. An extended safety structure ensures that the system keeps on recording images and stays in operational mode even if the management or recording server fails. Retail security Gas stations are at the end of the value chain. They are not struggling with process safety but with robberies and thefts. SeeTec delivers video solutions, which perfectly reflect the branch structure of such a business. SeeTec keeps the costs for the camera infrastructure low by realising a bandwidth-saving usage involving several locations and by using intelligent camera features (VCAM). At the gas station the video technology can also be connected directly to the business processes, so for instance it is possible to combine the video images coming from the pump or the cash area with the accounting data by using the SeeTec POS-Interface. With the automatic license plate recognition a petrol theft can be identified easily – if a car, which already was registered with a tank fraud, is recognised in front of a gas pump, the pump can be locked. Benefits  Modular and flexibly expandable solution Support of a great number of cameras of all leading manufacturers (incl. thermal cameras, LPR cameras, outdoor cameras for special requirements) Integrated video analytics and license plate recognition Communication with third-party systems using TCP signals or I/O modules (Moxa, Adam etc.) Easy handling and operation, also on touch-based systems or mobile devices Project experiences and certifications in the oil & gas-sector

Related white papers

Security investments retailers should consider for their 2021 budget