ViPNet SIES (Security for Industrial and Embedded Solutions)

Main article: Cryptography

2025: Adapted CIPF Release Plan NE51IOT ver.2

JSC NIIME and JSC InfoTeCS signed a cooperation agreement. Within the framework of the agreement, NIIME JSC plans to release the CIPF NE51IOT ver.2 chip, adapted to the infrastructure requirements of the ViPNet SIES solution - a complex of embedded CIPF manufactured by InfoTeCS. This was last reported on April 15, 2025. Read more here.

2024: ViPNet SIES Presentation

InfoTeCS has developed a certified solution for organizing the protection of information transmitted through the communication channels of the intelligent electricity metering system (ISUE) - ViPNet SIES (Security for Industrial and Embedded Solutions). The decision meets the requirements of the regulatory and legal framework of the Russian Federation in the field of protection of information that does not contain information constituting a state secret and the Federal Law "On the Security of the Critical Information Infrastructure of the Russian Federation" dated 26.07.2017 No. 187-FZ. The company announced this on November 26, 2024.

𝓲

Фото: infotecs.ru

The ViPNet SIES solution is a complex of cryptographic information protection tools designed to ensure information security of a wide range of devices included in the ISUE:

• ViPNet SIES Core Nano cryptochip is built into electricity metering devices (PU) in the form of a miniature microcircuit of Russian production, in which a set of engineering protection measures is implemented at the crystal level. ViPNet SIES Core Nano meets the requirements of the FSB of Russia for Class KS3 CIPF and for CIPF-NR in terms of protection against engineering penetration attacks, due to which a CP with a built-in crypto tip can be operated outside the controlled zone without the need to provide additional protection measures (opening sensors and power supplies to remove keys in case of opening of the housing) from access to it by a potential violator, and loaded keys can be used without a shift for 16 years;
• in data collection and transmission devices (DRC), gateways, base stations, the device manufacturer integrates the ViPNet SIES Core hardware cryptomodule, which can be used in the device outside the controlled area (using the device body opening sensor);
• The ViPNet SIES Unit software is installed in the information and computing complex (ICS) on the information collection and processing server or on a separate server located inside the controlled zone (excluding the access of unauthorized persons). When installed on a separate server, work with a redundant cluster of the information collection and processing server is supported.

These CIPFs perform enciphering sending and decryption of the received data on the protected devices and check the integrity of the received data.

The solution for protecting information in ISEU has a number of advantages. Developers do not need to understand cryptography, all cryptographic operations are placed in a separate module and are available via the API. The use of certified CIPF does not require certification of devices, obtaining a license for their development and production, an impact assessment is sufficient. Cryptographic computing is handled by a separate module, so devices do not need to perform resource-intensive operations.

To protect data transmitted via ISUE communication channels, the CRISP cryptographic protocol is used, which is accepted as the GOST R standard 71252-2024 "Information Technology. Cryptographic information protection. Protocol of secure exchange for industrial systems, "and is included in the list of approved by the Order of the Ministry of Digital Development. CRISP protects application and service interaction between protected devices over the used communication protocol, allows fragmenting and limiting packet sizes.