Posts

NIS 2 Raises the Bar for Network Security

/by

Key directive: One or more DMZs are needed for the most secure, manageable, and scalable segregation of control and corporate networks.

The recent adoption of a new NIS 2 Directive by the European Commission is a sign of the times.  Beset by a world-wide pandemic, many companies across the EU have turned to digital technologies to allow their workforce to stay productive, and to facilitate access to valuable production data.  This has led to unprecedented levels of industrial data being passed between company networks and across the Internet, increasing the risk of exposure to malicious intruders.

To combat the threat, the European Commission has accepted revisions to the Directive on Security of Network and Information Systems (NIS), now calling it NIS 2. Among other things, this document mandates a number of basic security elements, including standards for networking data between the production and corporate levels of a company.

The Commission has tasked ENISA, the European Union Agency for Network and Information Security, with implementing the standards.  In pursuit of this mandate, ENISA relies on the expertise of three well-known bodies, NIST, ISO, and ISA to provide detailed descriptions of how network security should be implemented, as published in its Mapping of OES Security Requirements to Specific Sectors document.

Using DMZs

For example, the recommended way to bring process data into the corporate office is summed up in NIST document SP-800-82.  It says: “The most secure, manageable, and scalable control network and corporate network segregation architectures are typically based on a system with at least three zones, incorporating one or more DMZs.”

These three zones are the control zone (OT), the corporate zone (IT), and the DMZ itself.  The document describes the value and use of firewalls to separate these zones, and to ensure that only the correct data passes from one to the other. Using a DMZ ensures that there is no direct link between corporate networks and control networks, and that only known and authenticated actors can enter the system at all.

Skkynet recommends using a DMZ for OT/IT networking, and provides the software needed to seamlessly pass industrial data across a DMZ-enabled connection.  Most industrial protocols require opening a firewall to access the data, but Skkynet’s patented DataHub architecture keeps all inbound firewall ports closed on both the control and corporate sides, while still allowing real-time, two-way data communication through the DMZ.

Unlike MQTT, which cannot reliably daisy-chain connections across the three zones as ENISA recommends, the DataHub maintains a complete copy of the data and connection status from the source to final destination.  Thus, it provides accurate indicators of data reliability at each zone in the system, along with making the data itself available.

We applaud the European Commission for its no-nonsense stance on cybersecurity with NIS 2, and encourage all EU members, indeed any company expanding its use of corporate networking, Industrie 4.0, or Industrial IoT technologies to adhere closely to the guidance of ENISA, and to implement three-zone security using one or more DMZs.

Skkynet Participates in Wavefront European Trade Mission

/by
Market linkage trip with Wavefront to Germany and the Netherlands puts Skkynet in touch with manufacturing industry leaders.

Mississauga, Ontario, September 26, 2017 – Skkynet Cloud Systems, Inc. (“Skkynet” or “the Company”) (OTCQB: SKKY), a global leader in real-time cloud information systems, is pleased to announce that Skkynet was part of a trade mission to Europe led by Canada’s Wavefront Wireless Commercialization Centre Society (Wavefront) from September 17-22.  With focus on smart manufacturing and IoT, the trip included several days at the Industry of Things World event in Berlin and visits to manufacturing centers in Germany and the Netherlands for meetings with potential customers and partners.

“Thanks to Wavefront, we were able to connect to the right people at the appropriate level of each company we visited,” said Xavier Mesrobian, Vice President of Sales and Marketing for Skkynet.  “As Industrie 4.0 is a German initiative, they are very knowledgeable about Industrial IoT, and keen to learn about our secure-by-design approach.”

Skkynet’s software-based solutions allow industrial and embedded systems to securely network live data in real time from any location. They enable bidirectional supervisory control, integration and sharing of data with multiple users, and real-time access to selected data sets in a web browser, either on-site or remotely over insecure networks such as the Internet.

“We met a wide range of people in a short period of time, and got a glimpse into how these industry leaders are implementing smart manufacturing solutions,” said Mesrobian.  “They are willing to consider new methods for high-speed data integration and secure remote access, given the expanded requirements of Industrie 4.0 and Industrial IoT applications.”

Skkynet’s DataHub software and SkkyHub service are capable of handling over 50,000 data changes per second, at speeds of just microseconds over network latency. Secure by design, SkkyHub requires no VPN, no open firewall ports, no special programming, and no additional hardware.  Seamless integration with Skkynet’s Embedded Toolkit (ETK) provides embedded devices with secure, end-to-end Industrial IoT and Industrie 4.0 connectivity for real-time, bidirectional data flow.

About Wavefront

Wavefront is Canada’s leader in transforming business through mobile and IoT innovation. It is a centre for commercialization for companies in the wireless and IoT technologies space. Wavefront’s vision is to build a globally relevant, nationally connected ecosystem that delivers digital capacity, competitiveness and prosperity for Canadians.

About Skkynet

Skkynet Cloud Systems, Inc. (OTCQB: SKKY) is a global leader in real-time cloud information systems. The Skkynet Connected Systems platform includes the award-winning SkkyHub™ service, DataHub®, WebView™, and Embedded Toolkit (ETK) software. The platform enables real-time data connectivity for industrial, embedded, and financial systems, with no programming required. Skkynet’s platform is uniquely positioned for the “Internet of Things” and “Industry 4.0” because unlike the traditional approach for networked systems, SkkyHub is secure-by-design.  For more information, see https://skkynet.com.

Safe Harbor

This news release contains “forward-looking statements” as that term is defined in the United States Securities Act of 1933, as amended and the Securities Exchange Act of 1934, as amended. Statements in this press release that are not purely historical are forward-looking statements, including beliefs, plans, expectations or intentions regarding the future, and results of new business opportunities. Actual results could differ from those projected in any forward-looking statements due to numerous factors, such as the inherent uncertainties associated with new business opportunities and development stage companies. Skkynet assumes no obligation to update the forward-looking statements. Although Skkynet believes that any beliefs, plans, expectations and intentions contained in this press release are reasonable, there can be no assurance that they will prove to be accurate. Investors should refer to the risk factors disclosure outlined in Skkynet’s annual report on Form 10-K for the most recent fiscal year, quarterly reports on Form 10-Q and other periodic reports filed from time-to-time with the U.S. Securities and Exchange Commission.