Mocana, a San Francisco, California-based provider of mission-critical IoT security solutions for embedded systems, as per recent reports, has introduced a new cyber protection solution for massive IoT, smart cities, and distributed intelligence networks.
The newly introduced cyber solution, being based on new device admission control capabilities for Mocana’s TrustPoint on-device security solution. These newly enabled device admission controls allow TrustPoint-enabled devices (with limited memory – storage options – and processing power, such as process sensors and IoT devices) to use certificate-based authentication and network filtering embedded into the device’s software, enabling them to safeguard themselves against network-based cyber attacks on smart city, smart lighting, industrial and massive IoT applications.
“Cyber attacks on control systems are on the rise,” stated Joe Weiss, Managing Partner – Applied Control Solutions. “Compromised networks can spread malware to attack other vulnerable devices, such as process sensors, industrial control equipment, and IoT devices. With the Stuxnet and Triton attacks, it was shown that malware can jump over segmented networks and air gaps. Mocana’s device security solutions will help to protect Level 0/1 devices that are among the most critical and vulnerable assets in control systems and commercial/industrial IoT systems.”
Reportedly Mocana’s solution enables a pre-authentication or validation procedure to ensure the identity of devices before they communicate with other devices already on the network. Furthermore, the device admission control capabilities enable sensors and IoT devices to safeguard themselves against a plethora of attack scenarios, such as:
- Dictionary attacks that retrieve a user’s password
- DHCP denial of service (DOS) attacks, which prompts a device to lease all available DHCP IP addresses
- Replay attacks, in which a device although compromised, appears to be functioning correctly
- Spoofing attacks, in which a device impersonates another device by using a false MAC or IP address
“Ensuring the safety and reliability of systems is of paramount importance for mission-critical systems,” stated Dean Weber, CTO, Mocana. “In order to defend against modern network-based cyber attacks, companies need to ensure that their IoT devices are trusted and have not been compromised. Our on-device security controls are designed to operate within a tiny software footprint to enable the smallest of devices to protect themselves.”