The digitization of public institutions — from public services to digital government — allows for greater efficiency, faster decision-making and fewer mistakes. But there is a downside to this trend: since public digital systems contain a huge amount of sensitive data, from personal information to military secrets, their security is a priority and an extremely challenging task.
The public sector is a target for the most sophisticated cyberattacks, including targeted attacks (advanced persistent threats, or APTs) — not only by cybercrime groups but also by the intelligence agencies of other states. With the help of APTs, hackers can obtain classified data and money, or disrupt critical services both locally and nationally. The intentions of the attackers may vary, but all successful targeted attacks without exception can lead to extremely serious consequences.
At the same time, public sector organizations can also fall prey to random cyberattacks capable of causing significant damage. For example, in 2017, WannaCry malware kept dozens of departments in the UK’s National Health Service paralyzed for several days, resulting in the cancellation of thousands of appointments, the failure of internet-connected equipment and huge financial losses (around 92 million pounds).
The extremely complex and diverse range of cyberthreats to public services makes ensuring information security a challenging task that requires a comprehensive approach, especially in the face of all-out digitization and the increasing level of intelligent IT systems. Security software for state sector digital infrastructures must predict, detect and prevent cyberattacks at different levels. For example, Kaspersky’s portfolio includes solutions that ensure the security of various components of IT systems at large agencies, from endpoint control to comprehensive safeguards against targeted attacks.
The use of the internet of things in the public sector (primarily in smart city systems, including transport management, video surveillance and public utilities) makes IT infrastructure even more complex and requires new approaches to security.
We believe that in the future, the internet of things should be based on solutions that have Cyber Immunity. The Kaspersky approach enables the creation of IT solutions with the highest level of security that can successfully perform their key functions in an aggressive environment.
IoT technology helps improve the efficiency and reliability of public digital infrastructures. Networks of smart devices that independently process and exchange information significantly accelerate the work of public administrations, minimize the human factor risk, and allow IT staff to focus on other tasks. In order to enjoy the full benefits of complex multi-level IoT systems, quality protection needs to be assured.
Risks to all IoT components can be minimized at the level of a secure gateway. It is to this gateway that all smart devices and data channels are connected — it is through this gateway that information is transferred to data centers for further processing and storage, and control instructions reach actuators.
Powered by KasperskyOS, the Kaspersky IoT Secure Gateway product is the key component of the Kaspersky IoT Infrastructure Security solution. It is installed on the edge between IoT infrastructure and external data networks, for example, in the cloud. It blocks attacks on IoT infrastructure components, identifies unauthorized network connections, provides secure software updates and configurations and transfers control commands to actuators, helping systems run smoothly.
Convenient centralized configuration and management of the events of Kaspersky IoT Secure Gateway are provided by the Kaspersky Security Center product. It enables an administrator to monitor the state of gateways and timely respond to incidents.
Kaspersky with support from the Orenburg regional government has built a cloud control room for managing smart digital systems in the municipal sphere. The foundation of the project is Kaspersky IoT Infrastructure Security, a comprehensive solution for IoT security and management. The new control room can help optimize monitoring of public utilities, reduce maintenance costs and resource consumption and respond more quickly to security incidents.