Developers: | Infotecs |
Date of the premiere of the system: | 2020/10/5 |
Last Release Date: | 2022/04/05 |
Branches: | Information security |
Technology: | Information Security - Encryption Tools |
Content |
Main article: Cryptography
ViPNet SIES Core (ViPNet Security for Industrial and Embedded Solutions) Appliance (PAC) is a component of cryptographic information protection solution in automated control systems (ACS) and ViPNet SIES Machine-to-Machine Communication (M2M) systems designed for integration with secure devices such as programmable logic controllers (PLC), industrial automation controllers (PACs), terminals (RTUs), intelligent devices (IEDs), terminal equipment (sensors, sensors, counters, various actuators).
PAC ViPNet SIES Core is a cryptographic information protection tool that provides cryptographic operations at the request of the protected device, as well as secure storage, use and maintenance of the life cycle of key information. Automated centralized lifecycle management of key information is managed by a security administrator from a single ViPNet SIES MC management center.
2024: Obtaining a certificate of the FSB of Russia for ViPNet SIES Core Nano
On November 21, 2024, InfoTeCS announced that it had received a certificate from the FSB of Russia for the ViPNet SIES Core Nano cryptographic information protection tool (CIPF) with a key validity period of 16 years.
Certificate of the FSB of Russia No. SF/124-5018 dated 30.10.2024 certifies that the ViPNet SIES Core hardware and software complex (execution ViPNet SIES Core Nano) meets the requirements for CIPF designed to protect information that does not contain information constituting a state secret, class KS3 and requirements for cryptographic information protection tools designed to ensure incorrect registration of information that does not contain information constituting a state secret (CIPF-NR) in terms of providing protection against engineering penetration attacks.
ViPNet SIES Core Nano cryptochip is a Russian-made miniature microcircuit designed for installation in field devices, APCS electricity metering devices or industrial devices internet of things (). IIoT The device with the ViPNet SIES Core Nano built into it can be operated outside the controlled area without the need to provide additional measures of protection (opening sensors and power supplies to remove keys in case of opening the case) against access to it by a potential intruder. This is possible thanks to the engineering protection measures built into the cryptochip at the crystal level, which ensure the incomprehensibility of key information.
The term of operation of the cryptochip without changing the keys loaded into it is 16 years, which allows CIPF to operate in a completely unattended mode. ViPNet SIES Core Nano uses the CRISP cryptographic protocol (GOST R 71252-2024), which is great for protecting information in electricity, gas, heat metering devices, IIoT devices, allows you to organize secure data transmission for wireless (or IIoT) protocols LoRaWAN RU, Nb-IoT, Zigbee.
We managed to release CIPF that meets the difficult requirements of the industry related to both the service life and the peculiarities of operation. The use of cryptochip allows energy sales companies to fully comply with the requirements of regulatory documents of the Russian Federation. Having received a certificate for ViPNet SIES Core Nano, we removed a very serious stop factor that made it difficult to commercially introduce CIPF into metering devices. And we hope that the product will really become massive for the energy market, said Marina Sorokina, head of the product department of InfoTeCS.
|
2023
Inclusion in the register of domestic software
The ViPNet SIES (Security for Industrial and Embedded Solutions) solution and the ViPNet Coordinator IG 4 industrial security gateway of InfoTeCS are included in a separate class of the Unified Register of Russian Programs for Electronic Computers and Databases. Infotecs announced this on June 8, 2023. Read more here.
Integration of ViPNet SIES Core CIPF into the communication gateway CG-ZB-02
and NTC "Nartis" the company InfoTeCS"" announced the completion integration CIPF of ViPNet SIES Core. communication gateway CG-ZB-02 This was announced on March 02, 2023 in the company "InfoTeCS." More. here
2022: Obtaining a certificate of the FSB of Russia classes KS1 and KS3 for ViPNet SIES Unit version 2.0
On April 5, 2022, InfoTeCS announced that it had received a certificate of compliance with the requirements of the FSB of Russia for cryptographic protection of information of classes KS1 and KS3 for the ViPNet SIES Unit version 2.0 software package.
ViPNet SIES Unit is part of the ViPNet SIES solution and is designed to protect information servers and workstations of such industrial information systems as automated control systems technological processes (), APCS machine-to-machine interaction (M2M internet of things), and industrial things Internet (/). IoTIIoT New features of ViPNet SIES Unit version 2.0:
- Added support for the Linux family of operating systems, including the certified Astra Linux Special Edition 1.6 (Smolensk).
- Protection of transmitted data during group exchange of information between protected devices is implemented.
- Protection of transmitted data is implemented when exchanging information with redundant protected devices.
The new version of ViPNet SIES Unit 2.0 is fully compatible with the ViPNet SIES MC 2.2 component lifecycle management center and is designed to work towards the ViPNet SIES Core 2.2 embedded crypto module. Thus, obtaining a certificate for the ViPNet SIES Unit 2.0 completes the certification cycle of the ViPNet SIES version 2.2 solution.
2021: ViPNet SIES MC certification in the FSB of Russia
On May 31, 2021, InfoTeCS announced the certification of the ViPNet SIES MC hardware and software complex (PAC). The Certificate of Conformity No. SF-124-4056 confirms that the ViPNet SIES MC 10000 PAK complies with the requirements of the FSB of Russia for Class KS3 CIPF.
ViPNet SIES MC is responsible for managing the components of ViPNet Security for Industrial and Embedded Solutions (SIES) at all stages of their lifecycle from commissioning to decommissioning. It allows you to deploy the solution in a trusted way, put its components into operation, and update both the components themselves and their key information.
ViPNet SIES is an embedded security tool for elements of ACS, M2M and industrial Internet of Things (IIoT) systems. Using the components included in ViPNet SIES, developers can build their own security for field automation devices and data collection servers in the secureby design concept, while meeting regulatory requirements.
"When we faced the task of creating cryptographic products to protect automation and IIoT devices, we, understanding the scale of systems and the complexity of their operation, devoted a lot of time and effort to managing key information and the CIPF lifecycle. The result of our efforts was the creation of the ViPNet SIES MC control center, which has optimized the operational efficiency of security administrators, increased system transparency and reduced operating costs when implementing security tools and made ViPNet SIES a convenient solution for use. And the completion of the ViPNet SIES MC certification process allows us to offer the market a certified comprehensive solution for protecting industrial systems and the industrial Internet of Things, "said Dmitry Gusev, Deputy General Director of InfoTeCS. |
2020
Certificate of compliance with the requirements of the FSB of Russia for cryptographic protection of class KS3 information
On October 5, 2020, InfoTeCS announced the receipt of a certificate of compliance of the ViPNet SIES Core embedded cryptographic module with the requirements of the FSB of Russia for cryptographic information protection tools (CIPF) of class KS3.
The ViPNet SIES cryptomodule is designed to protect information in programmable logic controllers, industrial automation controllers, terminals, intelligent devices and terminal equipment (sensors, sensors, counters, various actuators).
All cryptographic transformations of information, as well as storage of encryption keys, are performed inside ViPNet SIES Core, which integrates with protected devices through inter-board interfaces and passively performs their requests for cryptographic operations with data. ViPNet SIES Core can be embedded in various secure devices regardless of their performance, architecture or operating system, which allows automation developers to use it as a cryptographic service to implement the "secure by design" concept.
With ViPNet SIES Core, protected automation devices can implement security scenarios previously available only for servers and workstations:
- identification and authentication of devices and users;
- ensuring the integrity of the transmitted information;
- ensuring the confidentiality of the transmitted data;
- ensuring non-refractory to authorship of transmitted information;
- trusted download;
- Trusted software update
- trusted configuration.
To ensure the integrity, confidentiality and authenticity of information, ViPNet SIES Core uses a specialized cryptographic protection protocol for industrial CRISP systems (Standardization Recommendations P 1323565.1.029-2019). This protocol was developed by the Technical Committee for Standardization "Cryptographic Information Protection" (TK 26) with the active participation of InfoTeCS specialists. ViPNet SIES Core is part of the integrated ViPNet SIES (Security for Industrial and Embedded Solutions) solution, which combines cryptographic information protection tools in automated control systems and machine-to-machine interaction systems for all levels: from lower-level devices to operational dispatch control tools.
For five years we have been actively developing in the field of industrial safety. Many domestic companies are trying to play on this field by developing information security solutions for the upper level of APCS. We are proud that InfoTeCS has become a company that has certified a cryptographic module designed for the lower level of automation. This is another confident step towards the development of a certified integrated ViPNet SIES solution designed to protect information at all levels of industrial systems, "said Dmitry Gusev, Deputy General Director of InfoTeCS. |
Conclusion of the FSB of Russia on the compliance of ViPNet SIES Core with the requirements for CIPF KS1 and KS3
On May 18, 2020, InfoTeCS, a Russian developer and manufacturer of high-tech software and software and hardware information protection tools, announces that it has received a positive conclusion from the FSB of Russia on the compliance of ViPNet SIES Core with the requirements for cryptographic information protection tools (CIPF) classes KS1 and KS3.
ViPNet SIES Core is an embedded CIPF designed to protect industrial automation devices, machine-to-machine interaction and the Internet of Things. All cryptographic functions, as well as the storage of key information, are performed inside ViPNet SIES Core.
ViPNet SIES Core provides a cryptographic service to secure devices, allowing them to implement information protection functions out of the box in accordance with the concept of "secure by design."
With this product, it is possible to protect communications between electronic industrial devices, including the protection of industrial protocols and serial data buses (networks), provide persistent identification and authentication of devices and users, trusted download and update of software and configurations, and the protection of data stored in the device.
ViPNet SIES Core certification has become one of the key stages for us in creating the ViPNet SIES (Security for Industrial and Embedded Solutions) cryptographic platform, designed to build industrial information security systems and which can be safely called a revolution in the industry. As far as I know, as of May 2020, this is the first cryptographic platform in Russia for APCS, M2M and IoT/IIoT, which is an "industrial CIPF" with all the necessary supported infrastructure, comments Dmitry Gusev, Deputy General Director of InfoTeCS.
|