Tripwire announces Configuration Compliance Manager for industrial cybersecurity |

Tripwire announces Configuration Compliance Manager for industrial cybersecurity

Tripwire announces Configuration Compliance Manager for industrial cybersecurity

June 24, 2016 — Tripwire, Inc., a provider of endpoint detection and response, security, compliance and IT operations solutions, today announced  that  Tripwire Configuration Compliance Manager (CCM) now supports ANSI / ISA-62443, a global standard for securing industrial  automation systems, controllers, and associated networking equipment configurations. Tripwire CCM is designed to reduce cyber security risks from external attacks, malicious insiders and human error while protecting critical infrastructure reliability, uptime and safety of industrial automation and manufacturing environments. 

Tripwire CCM allows engineers and cyber security personnel to audit industrial automation networks and controllers for secure and approved configurations. It also identifies unauthorized changes, configuration hardening errors and security vulnerabilities and provides prioritized remediation guidance to reduce risks without affecting operational availability, reliability or safety. Tripwire CCM can be layered on top of a standard implementation of FactoryTalk AssetCentre from Rockwell Automation for greater visibility into industrial automation applications.

Key features:

  • Agentless design requires no software installation or changes to ICS environments.   Tripwire CCM provides security intelligence by monitoring FactoryTalk AssetCenter and does not communicate directly with ICS control devices.
  • ANSI/ISA-62443 policy support coverage was derived from the same policy document detailing IEC 62443.
  • New “Search by Security Level” feature allows plant owners to assess the compliance of all devices in the plant environment.
  • Comprehensive cyber security assessment that evaluates configuration data, vulnerabilities, ICS-CERT advisories, vendor advisories, industry standards, policies and hardening guidelines.

According to the Department of Homeland Security and ICS-CERT, cyber attacks against industrial organizations have increased between 2014 and 2015,  with more of these attacks making it through to the controller layer. Recent attacks such as the attack on the Ukraine power system have shown that firmware on control devices can be corrupted, allowing attackers to compromise the reliability, availability and safety of mission-critical infrastructure.

Tripwire CCM support for industrial automation is part of Belden’s cyber security initiative, which brings together three Belden brands – Tripwire, Tofino Security and GarrettCom – to form comprehensive industrial cyber security solutions. 

Back to top
Related Portals:
Home Page