Achieving Network Security for Industrial Automation

In order to optimise operational efficiency for modern industrial automation systems, network convergence between OT and IT is imperative. While streamlining your OT/IT networks unlocks the potential of your industrial systems, it also raises network security concerns. It is a particular concern for those OT systems that used to be air gapped but must still protect network communications without interrupting operations.

Moxa is committed to developing secure and reliable networking solutions that proactively identify and mitigate cyberthreats in OT environments. To realise this commitment, Moxa strictly follows secure-by-design practices, utilises distributed OT intrusion prevention systems capabilities, and provides a wide array of rugged networking portfolios to perfect defending industrial applications in depth.

Identify Network Status
Enhance the visibility and management of your network status, device security levels, and remote connections.
Secure Network Infrastructure
Build security boundaries with an orchestrated network topology design to enhance network security.
Secure Edge Connectivity
Secure your edge connectivity at every stage from initial deployment to daily maintenance.

Why Industrial Network Security and Cybersecurity are Important

In today’s complex industrial environment, a robust cybersecurity strategy relies on three critical elements: network visualisation, system network hardening and device hardening. The three critical elements enable a comprehensive security posture. Network visualisation informs and enhances the effectiveness of both hardening strategies. System network hardening reduces the attack surface at the core and infrastructure levels, while device hardening protects individual endpoints. Together, these elements ensure high availability, data integrity, and uninterrupted productivity.

Increasing Connected Devices
Increasing number of business are willing to invest in automation to digitalise industrial operations in important
Rising Ransomware Cyberattacks
Ransomware has been exploited by malicious parties to conduct untargeted attacks for financial gain.
Targeting Critical Infrastructure
In addition to financial gain, critical infrastructure is being targeted to trigger public panic and threaten national security.

1. Visualise Device and Network Security Status

Visibility empowers you to secure your industrial control systems. Moxa’s complete product portfolio, including network management software, allows you to centrally manage your networking devices with real-time visibility. Additionally, our network security management software makes it easy to track and identify cyberthreats.

The Moxa MXview One next-generation network management software is designed for monitoring and diagnosing devices in industrial networks. It provides an integrated management platform for discovering network devices and SNMP/IP devices installed on the subnet. Network devices can be managed anytime, anywhere, whether at a local or remote site, or even through a web browser.

The Solution: Real-time Network Visibility

Improve Network Visualisation
  • Speed up troubleshooting with real-time visibility, detecting changes quickly.
  • Built-in dashboards allow you to review network topology, traffic, incidents, and roaming logs at any time.
  • Visualising network management enables faster response times to ensure that the network runs smoothly without interruptions.
Centralise Device Management
  • MXview One offers centralised management that helps administrators consistently maintain a product’s functional and physical attributes throughout its operational life.
  • MXview One offers centralised management that helps administrators audit all devices and ensures all devices comply with company policies.

The Solution: Centralised Security Management

MXsecurity Industrial Network Security Management Software
  • Centralised management and monitoring of Moxa’s routers and firewalls for better administration and maintenance.
  • Unified mass deployment of firewall policies, firmware upgrades, and signature updates.
  • Complete visibility of real-time network activity and instant threat alerts.
  • Automatically collects security logs and sends notifications.

Protect Your Industrial Networks and Critical Assets

You need a secure network infrastructure to ensure continuous industrial operations. Moxa’s product portfolio not only provides powerful secure routers to build solid network segmentation, but also offers industrial cybersecurity solutions to strengthen protection for your industrial networks and critical assets.

The Solution: Co-defense by Network Segmentation with Secure Routers

Zone Segmentation
  • NAT: Moxa’s devices help administrators establish a private local zone to hide internal network information from external probing.
  • IPS: Moxa’s devices prevent exploitation of known vulnerabilities and help protect legacy devices that have no support with patch updates.
  • IDS: Moxa’s devices can identify cyberattacks and contain them within certain zones; also, they notify administrators by utilizing IPS pattern matching.
  • VLAN ID or MAC Addresses: Moxa’s devices only allow users to access data and networks based on their roles.
Conduit Traffic Control
  • Firewalls: Moxa’s devices help administrators establish conduits in the network to only allow permitted traffic and packets to transfer from one zone to another.
  • IP Addresses and Ports: Moxa’s devices only allow permitted traffic on the network.
  • Deep Packet Inspection: Moxa’s devices check the content of each packet payload to ensure only approved content is transmitted on the networks.
  • VPN (Virtual Private Network): Moxa’s devices create secure, encrypted tunnels (e.g., IPsec VPN) between zones or remote access points to ensure the confidentiality and integrity of data transmitted over public or untrusted networks.

The Solution: Defense Against Threats

Prevent exploitation of known vulnerabilities on Windows systems and help protect legacy Windows devices that are unable to install a patch due to lack of support with Moxa.

With MXview One network management software, you can easily identify and visualise the status of your industrial networks. With Moxa’s Security View function, you can check whether Moxa’s networking devices are configured to meet the security levels suggested by your security policies.

With MXsecurity industrial network security platform, you can easily monitor and identify cyberthreats and prevent security misconfigurations to create a robust network defense.

The industrial network security management suite translates complex network activity and threat intelligence into real-time visibility of cybersecurity statuses and actionable management for better detection and reaction against cyberthreats.

2. Secure Edge Connectivity in Every Aspect

A Secure Edge-Connectivity Solution should focus on two essential elements. The first is trusted access and network optimisation. This includes using port locks to restrict physical ports, ensuring that only authorised devices can connect. Additionally, implementing VLANs and Quality of Service (QoS) helps segment traffic and prioritize critical packets, maximizing available bandwidth. The second essential is secure data transmission, which can be achieved through end-to-end encryption. By utilizing SSL or SSH, all traffic is protected during the collection and forwarding of data, ensuring security throughout the process.

Product Solution: Moxa SDS-3000 Series

Co-defense by network aegmentation with Moxa Smart Switches, you can ensure reliable and secure network performance for your industrial operations. Equipped with robust cybersecurity features, these switches provide peace of mind by safeguarding your critical infrastructure from potential threats.

Product Solution: Moxa NPort® 6000

Ensuring the integrity of data transmission is a top priority when connecting serial devices to the network for various applications. The NPort® 6000 supports SSL and SSH protocols to encrypt data before transmitting over the network.

3. Security hardened Networking and Connectivity Solutions

The secure DNA of our products empowers you to run existing industrial systems easily. Moxa is an IEC 62443-4-1 certified industrial connectivity and networking solutions provider. When we develop our products, we reference the security features of the IEC 62443-4-2 standard to ensure secure product development, which allows you to ramp up device security in your industrial applications.

To request a quote or for more information call 1300 36 26 26 or email our friendly team at sales@colterlec.com.au