A new Open Development Environment (ODE) tool launched that makes it easier for organizations to secure unmanaged IoT and ICS devices running proprietary protocols.
The Horizon Protocol ODE created by CyberX enables users to develop, test, and deploy custom protocol dissectors without divulging proprietary information about how the protocols are designed or sharing network packet captures (PCAPs) that may contain sensitive information. Dissectors are plug-ins that decode network traffic so it can be processed by automated network analysis programs.
With Horizon, users can quickly integrate custom dissectors into the CyberX platform and immediately leverage a broad array of automated Deep Packet Inspection (DPI) services, including: Asset and firmware identification; risk and vulnerability management; continuous threat monitoring using patented M2M-aware behavioral analytics; and IoT/ICS threat intelligence. The platform also provides built-in support for integrating with a wide range of security stacks used in modern SOCs (Splunk, IBM QRadar, ServiceNow, Palo Alto Networks, Cisco, HP Aruba, etc.).
Horizon is looking to address a key challenge for securing IoT and ICS environments because equipment vendors that design proprietary protocol systems typically do not disclose their technical information to third parties. And, in many critical infrastructure and industrial organizations, it’s a violation of compliance regulations or corporate policy to share sensitive network traffic information with external organizations.
Horizon also enables customers and partners to easily localize messages and reports into any language they choose, making CyberX accessible to organizations in any part of the world.
Additionally, Horizon is a flexible open framework enabling customers and partners to:
• Modify text in alerts and reports to meet unique organizational requirements
• Customize support for standard protocols, such as when using non-standard ports
• Monitor dissectors in real-time to understand how they’re performing (memory, bandwidth, etc.) and make sure they’re working correctly
“The Horizon Protocol ODE enables CyberX to leverage a global developer community to quickly scale its support for securing any protocol, for any device, anywhere,” said Nir Giller, CyberX Co-Founder, CTO, and GM of International Operations. “It’s a huge industry milestone because it addresses a long-standing challenge for the entire industry — how to support the diverse mix of specialized protocols deployed in IoT and ICS environments across a range of sectors.”