Frequently Asked Questions
Getting Started with Mission Secure
-
While every customer is unique, most get started in one of three ways:
(1) some buy the Mission Secure Platform “off the shelf” and handle the on-site installation, configuration, and on-going management themselves,
(2) many start with a Mission Secure remote technology-based assessment that includes - framework assessment and scoring, network and P&ID design reviews, design recommendations, 3-month technology-based network analysis, passive remote penetration testing, and 24/7 monitoring and reporting,
(3) and others start with a full Mission Secure technology-based on-site assessment that includes - everything included in the remote assessment above, plus on-site network walk-downs, manual network diagram creation, and on-site pen-testing.
-
The Mission Secure Platform is a hardware-software solution, typically including a Mission Secure Console, Console Appliances, and Sentinels to provide visibility, segmentation, protection, and patented signal-integrity monitoring.
-
The Mission Secure Platform components are pre-staged, shipped to location, and installed on-site with either Mission Secure remote support or on-site installation services.
-
The entire process from pre-staging, to shipping, to installation and configuration typically takes 2-4 weeks depending on shipping times, deployment scale, and facility availability.
-
Yes, the Mission Secure sales team can work with you to design the Mission Secure Platform deployment for your specific application. In most cases, we already have example reference designs that provide a very close approximation to your final design.
-
In most cases, all three components of the Mission Secure Platform are deployed. However, it is possible to deploy the ConsoleAppliances without the Sentinel and vice versa. The Mission Secure Console is deployed in all cases.
Mission Secure OT Cybersecurity Platform
-
The Console Appliance can be deployed on a network tap, a switch SPAN port, or inline. Physical network segmentation and threat blocking are only possible with the Console Appliance deployed inline. The Sentinel is wired directly on electrical contacts or on a signal splitter.
-
When used inline in the OT network, the Console Appliance can be configured to “fail-open” or “fail-closed”. Fail-open means the device continues to pass all traffic with no network impact in the event of device failure or full power loss. The fail-open configuration is typical within industrial environments. The fail-closed configuration is more typical in defense environments.
-
Yes, the Mission Secure Platform is rated for deployment in hazardous locations and has achieved UL Class 1 Division 2 certification and ATEX Directive 2014/34/EU certification.
-
Typically, there is one local Mission Secure Console deployed at each site or location. However, in some scenarios, the Enterprise Console is used to manage distributed physical sites or locations.
-
Typically, no. In most cases, the Sentinel for signal-integrity is deployed on truly mission-critical assets and processes, but we can assess your environment together to make that determination.
-
The Sentinel supports three distinct pairs of input data acquisition channels. This includes 2 x 0-10V analog, 2 x 4-20mA analog, and 2 x 0-51V digital binary (voltage above 2V registers as 1). While providing a wide diversity for connectivity, the configuration typically will only allow two signal lines to be monitored per device.
-
This is entirely dependent on the network architecture. Segmentation is a way to isolate the various sub-systems in a control system. A segment or security zone is usually identified based on a grouping of logical or physical assets that share common security requirements based on factors such as criticality, consequence, logical function, and/or physical location.
-
The Console Appliance offers many of the same benefits of an industrial firewall, including robust industrial design, network segmentation into security zones per ISA/IEC 62243 (or similar standards), network protection, and threat detection.
Unlike most industrial firewalls, however, the Console Appliance functions as part of the larger Mission Secure Platform, and also provides asset and communications visibility, doesn’t require lots of expensive add-ons, is purpose-built at a price point that makes sense for wide deployment and control in OT networks, and is offered with full 24/7 managed services. Combined with the rest of the components, the Mission Secure Platform offers complete visibility, segmentation, protection, and patented signal-integrity monitoring.
-
From a Visibility perspective, the Mission Secure Platform currently uses passive asset and communications discovery techniques.
-
New software releases for the Mission Secure Platform components are deployed through the Mission Secure Console and can be deployed without traffic loss in the OT network.
-
The Mission Secure Platform has been pen-tested by multiple organizations including Lockheed Martin, Millennium Corporation, and the Arizona Cyber Warfare Range for both the functional and component robustness of the platform’s ICS protections. Report is available upon request.
-
Mission Secure supports the following protocols and we are constantly adding to the list through regular software updates and on an as-needed basis for new customer environments:
Modbus/TCP, DNP3, DCR/RPC, DHCP, DNS, FTP, HTTP, IMAP, IRC, KRB, MySQL, NTLM, POP3, RADIUS, RDP, RFB, SIP, SMB, SMTP, SNMP, SSH, SSL, XMPP, and MQTT. Others in process include CIP, CIP: EtherNet/IP, OPC UA, BACnet, EtherCAT, PROFINET.
Mission Secure Managed Services
-
No, the Mission Secure Managed Services are an optional service available to all customers but are not required for any Mission Secure Platform customer.
-
Both remote incident response support and on-site incident response support are available to Mission Secure’s Managed Services customers. Remote incident response support is included in the Managed Services subscription up to 100 hours per subscription year. Additional hours of remote incident response support can be purchased if required.
On-site incident response support is available upon request at an hourly charge plus travel and expenses.
-
Yes, Mission Secure provides on-site cybersecurity risk assessments. These assessments focus on understanding OT network exposures and related cybersecurity risks that, in the event of a cyber incident, could lead to operational disruption.
The latest Mission Secure news and resources.
News & Articles
-
Mission Secure Releases Sentinel 5.0 Platform, Enabling Zero Trust Security for Critical Infrastructure OT
-
Industrial Cyber | TSA’s July 2022 Security Directive
-
StateTech | How America’s Ports Defend Against Cyberthreats
-
Bloomberg | Cyber Pirates Prowling Ship Controls Threaten Another Big Shock
-
Mission Secure positioned as a Cool Vendor in the 2021 Gartner® Cool Vendor™ in Cyber-Physical Systems Security: Novel Approaches Enter the Scene