The year of testing SKDPU NT on the cyber poligon in Cheboksary passed effectively

2023: Analysis of NP SCDCP operation

The company ATI Bastion"" analyzed the work of its comprehensive RAM-solution, NP SCDCP deployed a year ago at the stands of the integrator test laboratory software developer , and technical solutions for electrical power industries industries iGrids and. This was CheboksaryATI Bastion announced on November 2, 2023.

During this time, employees of the companies were able to test the interaction of the platform in various bundles with the Kaspersky Industrial CyberSecurity for Networks intrusion detection system from Kaspersky Lab. Technical tests of products and scenarios of their operation were successful: information security incidents were detected on time and correctly worked out.

ATI Bastion installed SKDPU NT in the laboratory for testing IT and information security products of iGrids in October 2022. First, a virtual machine was deployed there, and in the summer of 2023 it was supplemented with a physical server: for convenience and clarity, as well as for higher reliability and fault tolerance. All this time, the technical specialists of the integrator company used the SKDPU NT complex to test and demonstrate its functionality in control systems (APCS), including the existing integrations in the "field" conditions on a "live" infrastructure with real results. We simulated situations and worked out cases, monitored the work of SKDPU NT and its interaction with other systems.

In particular, the engineers checked the correctness of the integration of the RAM solution with the Kaspersky Lab product Kaspersky Industrial CyberSecurity for Networks (KICS), tested the operation of the complex of solutions in the industrial network, deploying IT loop protection against loss of access control. Tests were conducted using an API connector, a special software interface designed to organize correct and effective interaction of information systems.

Thus, the specialists tested scenarios for the continuous operation of a fault-tolerant HA cluster, database replication and a load balancer with a KICS solution. During the tests, they checked the remote connection to the automated workplace (AWS) through the access gateway "SKDPU NT," worked out ways to bypass it. When the gateway was potentially bypassed by the alleged cyber intruder, Kaspersky Industrial CyberSecurity for Networks recorded this and sent data to the monitoring and analytics system of SKDPU NT, denoting the incident for taking information security measures and further subject analysis.

Remote connectivity - access - is by November 2023 one of the most popular ways to maliciously infiltrate information systems and the most common reason is. And INFORMATION SECURITYleaks it, of course, needs to be controlled. Especially when it comes to a large industrial sector, in particular to power-. Here such incidents are critical and can result in irreparable consequences. Our SKDPU NT solution helps track users with privileged access rights to IT company structures, ensuring full control over their actions. And integrations with partner solutions by data protection make this control even more flexible. As a result, we all have even more opportunities for variability in ensuring the information security of our customers, - said the technical director of iT Bastion. Dmitry Mikheev

SKDPU NT has shown itself to be a very reliable solution for closing remote access problems with a convenient and understandable control interface. The iT Bastion company itself promptly reacted and assisted in work at all stages of product testing, and was also always in touch when any technical issues arose, "commented Dmitry Timofeev, engineer for technical information protection at Intellectual Networks.