Purpose Built
Security Operation Centers
SCADA Security
The Zenwall-10® Access Control Module (ACM) from Secure Crossing is a powerful, compact, rugged industrial firewall that contains many advanced features all in one unit. Standard features include advanced industrial protocol filtering; secure SSL and IPSec VPN connectivity; WIFI; USB-connectable EVDO or GSM cellular; Ethernet-to-Serial conversion
Zenwall-10 was developed for securing critical infrastructure, carries Class I, Division 2 certification, assists with compliance regulations that delivers layered security and defense-in-depth risk mitigation. This ACM combines intrusion detection and deep packet inspection (DPI) into a powerful industrial firewall system that enforces rules for industrial protocols to include Common Industrial Protocol (CIP), EtherNet/IP, DNP3, OPC/.
The module allows access by IP addresses with read function codes, but disallows writing to the field device. For example, the ACM allows or disallows resets based on CIP objects in the packet payload by IP address. Users can set all rules in the dropdown menu to Pass/Drop/Reject/Report by selecting the appropriate exploit tab
Industrial Protocol Actions Whitelisting
Secure Crossing’s methodology is to use the “whitelisting” approach. By disallowing all traffic and allowing only the selected protocols and specific actions within those protocols, Zenwall provides the level of filtering needed for a customer to solve SCADA, Remote Location or Zone Level Security.
Where other products attempt to detect the bad, we can specifically allow the known good and block everything else. This is a win in any security context, as the number of bad possibilities almost always vastly outweighs the legitimate known good traffic. Along with source/destination authentication, advanced reporting, remote connectivity and audit tools, you have a winning solution to securing your critical infrastructure!
