Detect and Eliminate Zero Day Attacks at the Edge.

• Instantly detect and isolate threats, anomalies, and vulnerabilities on field devices and OT networks
• Monitor across IP/Ethernet and non-IP/non-Ethernet based networks to maximize coverage
• Detect, map and manage all devices across your network from level 0 to level 4
• Uncover untrusted and unknown devices as well as malicious data traffic on your network
• Root cause detection of compromised devices, stopping attacks before they spread
• Automatically mitigate and remediate attacks, threats and vulnerabilities

• Guarantee 100% full duplex network traffic with no packet loss
• Ensure unidirectional traffic flow with Data Diodes
• Products engineered for extreme OT environments including heat and vibration
• Maintain network integrity for industrial network monitoring without exposing additional risk
• 100% secure and invisible - Network TAPs have no IP address, no MAC address
• Enable deployment of security tools when switch ports aren’t available

When a SPAN port is available on the switch, customers may prefer to use this route to deploy the MicroIDS since it will allow for a base level of visibility and protection right away. This application has its advantages because it will be a quick and fast deployment. However, there are security risks associated with using the SPAN port on a switch, so customers may deploy a Garland Hardware Data Diode to ensure unidirectional traffic to the MicroIDS, guaranteeing the SPAN port doesn’t become a point of entry into their network.

A more robust solution includes the use of Network TAPs to send traffic to the MicroIDS. This approach provides a higher level of security as a customer is not relying on the correct configuration of a switch into a SPAN port to send copies of traffic to the MicroIDS. Deploying Network TAPs ensure more traffic and thus more assets are sent to the MicroSec appliance for analysis and protection. Also, there is the added benefit of the unidirectional protection of the Data Diode in the Network TAP itself when deployed.

Customers who are looking for visibility into multiple links in a network can also use a Garland Network Packet Broker to aggregate the different links, filter out traffic, such as camera traffic, that MicroSec does not need to see, before sending the groomed traffic to the appliance. This approach ensures that the sensor isn’t overburdened or processing unimportant information.