Radiflow, a renowned provider of cyber security solutions for industrial automation networks, announced the launch of CIARA, a major new platform offering Cyber Industrial Automated Risk Analysis (CIARA). The solution helps meet emerging best practice around risk modelling and management using the ISA/IEC 62443 series of standards. CIARA is the first fully automated tool for assets data collection, data-driven analysis and transparent risk metrics calculation including risk scoring per zone and business process based on business impact. The new platform is a response to the growing digitisation of the production floor (Industry 4.0) that has led to rising tide of cyber threats - while risk assessment processes remain manual tasks that fail to address the full scope of the issue. Advanced analysis algorithms CIARA is a next-generation Cyber risk platform intended to support the CISO, Operation manager and other risk stakeholders that act to reduce cyber risk in Industry 4.0 environments using advanced analysis algorithms to automate and manage the entire cyber security risk life cycle. Threat landscape is changing continuously which means a yearly risk assessment quickly becomes out of date" The solution adheres to the ISA/IEC 62443 series of standards, developed by the ISA99 committee and adopted by the International Electrotechnical Commission (IEC), which provides framework to address and mitigate current and future security vulnerabilities in industrial automation and control systems (IACSs). In addition, the CIARA reports assist the operators to meet regulations including the EU NIS Directive and elements of NERC CIP Cybersecurity Requirements with additional support for the NIST Cyber Security Framework under development. Cyber security risks “Risk assessment is currently a complex and time consuming process that for the most part revolves around spreadsheets and subject matter expertise which is cumbersome and prone to human error,” said Rani Kehat, Radiflow BVP Business Development. “Worse still, the threat landscape is changing continuously which means a yearly or bi-yearly risk assessment quickly becomes out of date - leading to a false sense of security." "With CIARA, industrial organisations can now perform continuous assessment of their cyber security risks and base cyber security expenditure planning in direct correlation to the potential loss, backed up with quantitative data.” Digital network models Yehonatan Kfir, CTO at Radiflow, also highlight the complexity that CIARA helps to overcome, “CIARA automates the process of examining hundreds of the most commonly used security controls, against simulation of hundreds of cyber threat types while modelling against dozens of features for the digital network models including protocols, vulnerability, firmware versions, topology, device type and many others." CIARA speeds up the risk management process by utilising the structure of ISA/IEC 62443" "These risk assessments are then factored against common OT risk scenarios including loss of availability, loss of control, damage to property and other. The result is a matrix of potentially tens of thousands of permutations that can’t be analysed by humans while CIARA is able to evaluate it and provide comprehensive reports in a few minutes.” Threat intelligence feed CIARA is continually updated with assets data from the field and a threat intelligence feed that is based on multiple sources including the MITRE ATT&CK knowledgebase of adversary capabilities, tactics and techniques. Ilan Barda, CEO for Radiflow, commented: “For many of our customers that are the new to the area of ICS/SCADA Cyber Security, CIARA dramatically speeds up the risk management process by utilising the methodology and structure of ISA/IEC 62443 – a standard that is likely to become a mandated requirement in the future." Risk assessment processes "There is also significant budgetary pressure in the post COVID-19 business environment, and planning capabilities to help better assign scarce resources are another driving force for the adoption of better risk assessment processes,” Barda adds. CIARA has been BETA tested successfully by several existing Radiflow customers and partners including a top 5 global consultancy firm and is now available for new customers with an easy demo offering.
Radiflow, globally renowned provider of cybersecurity solutions for industrial automation networks, and the Fraunhofer Institute of Optronics, System Technologies and Image Exploitation (Fraunhofer IOSB), a prominent research institute for applied science in Germany, today announced the launch of a joint research project for applying advanced machine learning and artificial intelligence to cyber security for industrial automation networks. Artificial intelligence techniques For this research project, Radiflow and Fraunhofer IOSB will collaborate on developing machine learning methods and artificial intelligence techniques for allowing the autonomous detection of non-compliant and anomalous behaviors on industrial automation networks. This applied research will involve evaluating graph-based and semantic approaches for event correlation and context awareness in order to develop these new machine learning and artificial intelligence capabilities. The outcome of this research will be the development of a prototype for an Autonomous Industrial Cyber security Assistance System (AICAS) that expands on existing approaches for detecting deviations and anomalies to a baseline of network behaviors on OT networks. This prototype will be designed to self-learn the underlying behaviors of industrial automation networks and the functions of the connected assets in order to dynamically detect new and unknown cyber-threats. Applying AI to the industrial cyber security Radiflow incorporates the new capabilities of this AICAS prototype into its iSID industrial threat detection system “The question of how AI can enhance industrial cyber security to better respond to changing OT environments and new attack techniques is timely and essential,” said Dr. Christian Haas, Group Manager at Fraunhofer IOSB. “Radiflow and its extensive experience working with industrial enterprises and critical infrastructure operators make the company the ideal research partner for applying AI to the industrial cyber security domain.” The funding for this research project, which is scheduled to last two years, was granted by the Innovation Authority in Israel and the Federal Ministry of Education and Research in Germany. At the conclusion of this research project, Radiflow intends to incorporate the new capabilities of this AICAS prototype into its iSID industrial threat detection system. Securing an OT network “Determining if abnormal behaviour has been caused by normal operational activities or by cyber-attackers is critical for understanding and securing an OT network,” explained Yehonatan Kfir, CTO of Radiflow. “AI holds the potential to improve the situational awareness of OT networks by efficiently distinguishing between abnormal behavior that was caused by normal operations and abnormal behavior that is connected to a cyber-attack.” “We are excited to partner with Fraunhofer IOSB on this innovative research project,” added Kfir. “We expect that the outcome of this research will expand the cyber-monitoring capacities for our customers and MSSP partners with new capabilities that require less analyst input to highlight the most critical events on dynamically changing OT networks.” The funding for this applied research project was coordinated by the Variance Ascola, a globally renowned financial and economic advisory firm in Israel.