Kaspersky IoT Secure Gateway (KISG) is a software platform for the eponymous Cyber Immune data gateways based on KasperskyOS.
Data gateways connect the world of operational technology (OT) with the world of information technology (IT). You can use them to connect industrial equipment and facility monitoring and automation systems to various data storage, processing and visualization systems, ranging from standard corporate MES/ERP systems to advanced IoT platforms with digital analytics services.
Third-party companies can create their own applications for the gateways, which will be added to the Kaspersky Appicenter™️. Administration and application management are carried out through the local administration console such as Kaspersky Security Center , ensuring the authenticity of the applications and their safe installation. Kaspersky Appicenter also provides a developer portal where all necessary tools and documentation are available for a successful start in application development.
The gateway supports applications with edge computing capabilities that enable:
The commercial development of KISGs and the creation of end-to-end digital services based on them is carried out by Adaptive Production Technologies LLC (Aprotech), Kaspersky’s subsidiary which took part in the development of the gateways.
Gateway functions in an industrial network
KISG operation in data diode mode
KISG operation in router mode
Reliable data transmission, traffic monitoring and filtering
Support for cloud platforms and data transfer to corporate business systems
Creation of custom applications for KasperskyOS and their safe delivery to devices
Protection of network infrastructure and inherent resilience to most types of cyberattacks
One of the main objectives of digitalization is the transfer of data to an external network. As a result, the network often becomes a target for cyberattacks and requires maximum protection, which Kaspersky IoT Secure Gateway can provide.
All IoT devices connected to the network are also at risk. Hacking can lead to data leaks or spoofing, or allow attackers to change the software configuration
New unauthorized connections to the system can disrupt its structural integrity and prevent it from operating correctly
If there are devices on the IoT network with public addresses or access to "the outside", they can become targets for network attacks
By gaining access to the cloud platform, attackers can compromise the data stored on it and alter configurations, putting the entire infrastructure at risk
Next-generation Сyber Immune data gateway based on KasperskyOS. The device was developed in collaboration with the Adaptive Production Technologies LLC (Aprotech) company.
In data diode mode, Kaspersky IoT Secure Gateway collects data via industrial protocols, then converts and transfers it unidirectionally to corporate information systems hosted either on private infrastructure or in the cloud.
In router mode, Kaspersky IoT Secure Gateway operates as a router with firewall capabilities, industrial protocol analysis and filtering (including intrusion detection and prevention functions), as well as an MQTT broker.
The Cyber Immune Gateway is protected not only from known but also from as-yet-unknown threats at the architectural level
Protection of the network infrastructure from cyber threats and reliable data transport
Development of custom applications for Linux
Management through a unified Kaspersky Security Center (KSC) administration console
A platform for distributing digital content that supports all stages of its lifecycle and brings together users, independent application developers, and global manufacturers of devices based on KasperskyOS. Kaspersky Appicenter consists of three functional components aimed at developers and end users of devices.
Kaspersky Appicenter for Developers is designed for Kaspersky's partners and provides all the tools and documentation necessary to create applications for devices based on KasperskyOS.
Kaspersky Appicenter application catalog contains detailed descriptions of the functionality of applications for KasperskyOS-based devices, as well as contact information for their developers.
Administration consoles, such as Kaspersky Security Center, ensure the authenticity of the applications and provide safe installation on devices.
Kaspersky Security Center is an advanced integrated platform for centralized administration and monitoring of the events of Kaspersky IoT Secure Gateway 1000.
Transparency, cost reduction and improved administration efficiency; correlation of events from different sources
Management of up to 100,000 physical, virtual and cloud workstations
Incident notifications through various administrator-friendly channels: text messages, email, push notifications, etc.
Customizable and ready-to-use reports with dynamic filtering and sorting by any data field
Each administrator can only access the tools and data relevant to their work responsibilities
When purchasing or releasing a new application, a relevant extension can be installed without re-installing or patching the console
