Viruses are an everyday concern for anyone using a computer. Any network equipment you have deployed that supports a web interface is vulnerable to malicious virus attacks, even your network monitoring gear.
Your monitoring devices are tasked with an important job: monitor your critical network equipment to ensure optimum reliability. If your monitoring equipment is compromised by a malicious virus or malware attack, your wider network will be vulnerable. You can't afford to let a security hole with your monitoring gear expose your entire network.
Security for Compliance
On top of having a more reliable network monitor, you'll also comply with many security standards. Many organizations are faced with standards and regulations that must be met (for example, NERC regulations) and deploying security-enhanced monitoring gear can help you attain that compliance.
Using DPS secure devices, you can protect your network from security holes.
Malware attacks eat profits in 2 ways
Accessing your monitoring devices via web interface on consumer-grade hardware will always be risky. Malicious viruses can sneak into your system and expose your sensitive network data.
These kinds of virus attacks create two problems. First, a virus always comes with a repair bill. You're going to have to spend time and resources fixing any computer that's infected. This wastes manpower and resource costs. Secondly, any downtime caused by a virus attack can easily upset your customers - causing them to take their business elsewhere. These two issues are easily avoided when using security-enhanced features for your network monitoring gear.
Security-enhanced features for your network monitoring
Which security features make DPS Telecom monitoring equipment so secure?
- Proprietary Operating Systems - DPS RTUs use proprietary operating systems. What does this mean for network security? Outside programs aren't allowed to be installed or loaded on DPS hardware. This means any malicious viruses or malware can't execute on DPS equipment. Any hardware you use made by DPS Telecom is protected against viruses and malware attacks.
- SSL/HTTPS Secure Web Browsing - Most web-based communication is not encrypted. For everyday browsing this isn't as big of an issue, but for accessing your important alarm data, it can be a huge issue. SSL encryption allows the web server to establish a secure connection to your web browser - this way any data that passes through the connection is encrypted and protected.
- SNMP v3 Support - SNMP v3 can add an additional layer to any data communications over the SNMP protocol in your network. SNMP v3 is the latest and greatest version of the protocol, and comes with two primary security-enhancing functions:
- Authentication - As data messages are created, they are given a special key that is shared with the intended recipient and used to receive the message.
- Privacy - The payload of the SNMP messages are encrypted to ensure they cannot be read by unauthorized users. Any intercepted traps will be filled with garbled characters and meaningless information - making the trap unreadable.
- SSH Support - Connect securely via Telnet/serial connection with SSH support. If you're going to be accessing your gear via text-based interfaces, then you'll want optimum security. With DPS equipment, you can select build options with SSH - so your Telnet connections will always be secure.
- RADIUS Authentication - This capability gives you superior control over user access to your equipment. With RADIUS authentication, your RTUs, master stations, and other equipment can now pass authentication attempts to a central server. You can control access rights from this centralized user database to restrict/allow specific privileges. See the NetGuardian 832A G5 for a product that uses secure RADIUS authentication.
The NetGuardian 832A G5 supports both SNMP v3 and RADIUS Authentication, in addition to SSL/HTTPS secure browsing.
Having control over your user access and permissions can protect you from an unauthorized user from causing damage. All DPS gear supports user-level permissions - giving you complete control over the privileges you grant to your users.
- Multiple Network Interfaces (NICs) - With several network interface cards (NICs), you can support your networks without having to worry that your monitoring gear is a bridge between networks for an unauthorized network intruder. The equipment is on multiple networks, but does not route traffic between them. The NetGuardian 832A supports dual NICs and the T/Mon LNX supports 6 NICs - giving you lots of visibility.
Know that these products have been tested with multiple industry-standard vulnerability assessment tools and that they all passed.
Learn more about how to secure your network monitoring
There's a lot you can do to protect your network monitoring. Your sensitive and important alarm data should never be vulnerable to malware and outside attacks. Simple precautions and the right vendor can provide you with the secure equipment to truly protect your network.
If you're ready to protect against viruses and malware, contact the DPS Telecom secure monitoring experts. Even if your security need is unique, DPS will work to create a specific solution just for you.
For one security-conscious client, DPS created a one-way protocol and removed control relays from the device. This allowed their remote sites to report information to their master, without their master being able to control or access their sites. This prevented any hacker from gaining control over the equipment in their network.
To get started tackling your secure monitoring challenges...
- Call 1-800-693-0351
- Email email@example.com
- Use the form below to submit a fast information request
"Ask us anything"
Ask me anything:
To find out more about this and other DPS applications, give us a call at our toll-free number and talk to one of our network specialists. They'll help you put together a perfect fit solution for your network!