securitylinkindia

NIST Offers Tools to Help Defend Against State-Sponsored Hackers

Nations around the world are adding cyber warfare to their arsenal, employing highly skilled teams to launch attacks against other countries. These adversaries are also called the ‘advanced persistent threat,’ or APT, because they possess the tools and resources to pursue their objectives repeatedly over an extended period, adapting to defenders’ efforts to resist them. Vulnerable data includes the sensitive but unclassified information managed by government, industry and academia in support of various federal programs. Now, a finalized publication from the National Institute of Standards and Technology (NIST) provides guidance to protect such ‘controlled unclassified information’ (CUI) from the APT. NIST’s Special Publication (SP) 800-172, Enhanced Security Requirements for Protecting Controlled Unclassified Information: A Supplement to NIST SP 800-171, offers a set of tools designed to counter the efforts of state-sponsored hackers and complements another NIST publication aimed at protecting CUI. “Cyberattacks are conducted with silent weapons, and in some situations those weapons are undetectable,” said Ron Ross, a Computer Scientist and a NIST Fellow, “Because you may not ‘feel’ the direct effects of the next hack yet, you may think it is coming someday down the road; but in reality, it’s happening right now.” The federal government relies heavily on nonfederal service providers to help carry out a wide range of missions using information systems – a term that includes computers, but also a range of other specialized technologies such as industrial control systems and the Internet of Things. The protection of sensitive federal information that resides in nonfederal systems – such as those used by state and local governments, colleges and universities, and independent research organizations – is of paramount importance, as it can directly impact the federal government’s ability to carry out its operations. A hack in 2018 that compromised sensitive information directly inspired the NIST team’s work on SP 800-172. Formerly numbered SP 800-171B during its draft stages, SP 800-172 offers additional recommendations for handling CUI in situations where that information runs a higher than usual risk of exposure. CUI includes a wide variety of information types, from individuals’ names or social security numbers to critical defense information. “We developed SP 800-171 in response to major cyberattacks on U.S. critical infrastructure, and its companion document SP 800-172 is designed to mitigate attacks from advanced cyber threats such as the APT,” Ross said, “Implementing the cyber safeguards in SP 800-172 will help system owners protect what state-level hackers have considered to be particularly high-value targets – sensitive information about people, technologies, innovation and intellectual property, the revelation of which could compromise our economy and national security.” The enhanced security requirements are to be implemented in addition to those in SP 800-171, since that publication is not designed to address the APT. The requirements in SP 800-172 apply to the components of nonfederal systems that process, store or transmit CUI or that provide protection for such components. To further narrow the scope, the requirements are applied only when the designated CUI is associated with a critical program or high-value asset – the highest priority for protection. Developed primarily for administrators such as program managers, CIOs and system auditors, the publication addresses the protection of CUI for system components by promoting penetration-resistant architecture, damage-limiting operations, and designs to achieve cyber resiliency and survivability. Its tools, divided into 14 families, are not intended to be implemented en masse, but selected according to the needs of the organization. “Most likely an organization implementing this guidance will not want to use all of the enhanced security requirements we offer here,” Ross said, “The decision to select a particular set of enhanced security requirements will be based on your mission and business needs – and then guided and informed by ongoing risk assessments.” In response to feedback received during the public comment period, the final draft includes updated scoping and applicability guidance and a more flexible requirements selection approach to allow organizations to customize their security solutions. Ross said that the tools in the new publication should offer hope to anyone seeking to defend against hacks, even by as intimidating a threat as the APT. “The adversaries are bringing their ‘A-game’ in these cyberattacks 24 hours a day, 7 days a week,” he said, “You can start making sure the damage is minimized if you use SP 800-172’s cyber safeguards.”  

Read More

Eagle Eye Networks and Sitasys Introduce First of its Kind Automated Alarm Handling for Operation Centers

Eagle Eye Networks, a leading global player in cloud video surveillance, and Sitasys, the leading cloud alarm management platform have now integrated the Eagle Eye Cloud VMS and its analytics functionality into the evalink alarm monitoring platform allowing service operations centers to more efficiently and effectively manage an unlimited number of cameras without additional human resources. This development builds on the existing partnership between Sitasys and Eagle Eye Networks to create an enhanced security monitoring platform by implementing a cloud-to-cloud integration of video surveillance and alarm monitoring. This integration allows users to immediately connect Eagle Eye Networks VMS into the revolutionary cloud based evalink alarm management platform from Sitasys. Sitasys used Eagle Eye Networks RESTful API platform and Big Data Video Framework™ to rapidly develop and deliver a unique cyber secured integration between its alarm management evalink platform and the Eagle Eye Networks cloud-based video surveillance platform. The integrated system allows users to connect video analytics with smart workflows to automate operational processes. In addition, the user can index, search, retrieve, and analyze video based on alarms from the Sitasys system. The integration and verification process saves time, reduces operations to a minimum, and prevents unnecessary intervention costs. “Our true cloud environment, open platform and advances analytics are not only changing the video surveillance industry, but cloud-to-cloud integration with partners like Sitasys is extending the capabilities of the alarm monitoring industry creating a safer, more secure environment and providing business intelligence than can improve operations,” said Rishi Lodhia, Managing Director, Eagle Eye Networks in EMEA, “This form of automated monitoring is a first in the industry and will give businesses the opportunity to outsource their video monitoring at a lower cost with better accuracy creating benefits for everyone involved. This is an example of how AI can optimize the whole value chain within the security industry. We’re proud to join with Sitasys in pushing the boundaries of technology and client experience.” Working closely together the engineering teams at Eagle Eye Networks and Sitasys completed development and quality assurance in two weeks. The functionality meets an often requested need for service operation centres that want to scale their business, add additional remote monitoring services and manage more cameras without adding additional resources. “With evalink, we help companies automate processes and create additional value for their customers,” added Peter Monte, CEO and Founder of Sitasys AG, “Seamless integration of true cloud systems results in a fantastic ecosystem with best-in-class experiences and services for its users. The integration with a cloud video surveillance partner was something we didn’t have, and we were keen on creating this to show how simple and intuitive systems can be embedded nowadays, while adding exceptional value to the client.”  

Read More

Eastplats Installs Invixium Touchless Temperature Screening Solution at Crocodile River Mine in South Africa

Invixium, a leading global provider of innovative touchless biometric solutions, recently announces that Eastern Platinum Limited (Eastplats) has deployed IXM TITAN with Enhancement Kit at their Crocodile River Mine. This deployment comes in response to a growing global need for touchless access control and temperature screening due to COVID-19. The local deployment of IXM TITAN was handled by South Africa-based integration specialists, Bluewhale Digital. Bluewhale Digital has 35 years experience in the South Africa mining sector, and after assessing a number of products, chose IXM TITAN for its superior specifications, build quality and ability to handle the unique challenges posed at the mine. Mining operations like Crocodile River Mine require extremely rugged security equipment. Invixium’s IXM TITAN is crafted with an all-aluminum body and a Corning® Gorilla® Glass LCD screen to withstand the harshest environmental conditions, from exposure to dust and sand to high impacts caused by nearby mine blasts. With an existing HRMS installed, Eastplats requires full feature integration with their time and attendance access control hardware. Shift schedules and breathalyzer results need to be checked to enter the mine, and TITAN’s time tracking data would be used to calculate payroll. Further, Eastplats’s COVID-19 response demands that temperature screening and mask detection be added to its access control protocol for thousands of employees and visitors at every shift, adding complexity to an already-intricate integration. IXM TITAN with Enhancement Kit was selected not only for its ruggedness and integration capabilities, but also for its high throughput. With the Enhancement Kit installed, the complete solution can touchlessly authenticate and temperature-screen 12 to 15 users per minute. Thousands of employees and the overall business risk monumental financial losses from delays in entry; thus, speed is a top factor in biometric hardware selection. “Our concern was for the safety and well-being of the Eastplats employees as well as addressing the large amount of time spent on collation and reporting for regulatory requirements,” said Matthew Simpson, Director at Bluewhale Digital, “In the midst of a global pandemic, we needed a way to safely and reliably move 500 people through turnstiles during shift change. We needed to do it with no physical contact, and in line with South Africa’s lockdown regulations.” Using IXM TITAN Bluewhale Digital was able to integrate employee identification and touchless core body temperature scanning, with Eastplats’ existing time and attendance system and their multi-layered security infrastructure. This, along with an automated system for restricting access until a COVID-19 declaration statement was signed by all those entering the mine ensured Eastplats received a fully integrated solution that reduced paperwork and reporting time, and prioritized the health and safety of all mine employees. Following a successful proof of concept trial with four IXM TITAN with Enhancement Kit units, Eastplats plans to add additional Invixium solutions at more entry points to Crocodile River Mine. Due to the ease of installation and integration with their existing system, Eastplats is highly satisfied with the increase in productivity and peace of mind provided by the Invixium solution. “There has been a revolution when it comes to face recognition in the rugged industry of mining, as fingerprints have obvious issues with the time it takes to wash hands before touching a delicate sensor. Add that to the risk of COVID-19 lingering on surfaces, and face recognition becomes the obvious answer for access control,” said Hannelie Hanson, General Manager at Eastplats, “Invixium’s products are quick and accurate, even in our mine, and the Enhancement Kit’s temperature screening reduces the number of steps it takes for a person to get to work safely and with ease. IXM TITAN’s integration with Crocodile River Mine’s current human resource management system and security software ensures managers have all the necessary documents and reports to manage staff and visitors in one location.” “Deploying biometric technology in the mining sector is extremely challenging,” said Shiraz Kapadia, CEO & President at Invixium, “We’re proud to have engineered IXM TITAN to be well suited for extremely harsh environments, like mines, and we are pleased to be the premiere biometric provider to mining operations worldwide, like Eastplats in Africa. IXM TITAN was selected for its ruggedness and speed in face recognition and temperature screening in various lighting conditions. The result is very positive. TITAN ensures a simple and comprehensive solution for employees and managers to allow them to return to work in a healthy, safe, and productive environment.” Invixium is represented by its authorized distributor Pyro-Tech Security Suppliers, located in Johannesburg. Invixium’s presence in South Africa has grown significantly since its regional launch in 2019.  

Read More