Bedrock Automation announced upgraded control system firmware that extends its cyber security protection to networks, the industrial internet of things (IIoT) and third-party applications. Bedrock Cybershield 2.0 firmware enables authentication and encryption of I/O networks and field devices and protects compliant networks and user applications such as controller configuration, engineering and SCADA. It achieves this with the industrial control system (ICS) certification authority (CA) – drawing on public key infrastructure (PKI) and transport layer security (TLS). Bedrock Automation also announced today a controller that enables end users to obtain customized, company specific root keys and certificates.
With the inclusion of more than 40 technologies, the Bedrock open secure automation (OSA) platform initially delivered on two fundamentals of cyber defense: a secure control platform and secure component supply chain. The resulting endpoint root of trust leverages hardware-based secret root keys and certificates for cryptographic authentication of Bedrock hardware and software components, which are further fortified with layers of anti-tamper protection.
Bedrock Automation created the Bedrock OSA as both an open and a secure platform for hardware, networks and software. Several software providers are releasing or testing this secure integration. The first cyber secure software partners include 3S of Germany, with its IEC61131 configuration and runtime engines now running over TLS with authentication to the Bedrock system root of trust, as well as a field device tool (FDT) frame application by M&M Software for HART configuration. This will be followed closely with Inductive Automation’s Ignition SCADA and other SCADA partners later this year.
Bedrock Automation also announced an option for users who want to increase protection of their IP, infrastructure and human resources by restricting access to only registered, company-controlled assets. The SCC.X Controller is injected at factory birth with company-unique root keys and certificates, effectively limiting connections to company mandated, approved devices.
Cybershield 2.0 is available today and will be standard in all Bedrock systems going forward. Current customers receive it through a firmware upgrade. Customers who want to apply Bedrock technology in maintaining their own custom root of trust can do so by specifying the Bedrock SCC.X Controller at time of purchase. Software developers who want to release applications on the Bedrock OSA platform should contact Bedrock Support. Availability of smart cards and biometric technology will be rolled out through 2017.
For more information, visit Bedrock Automation website.