Kaspersky IoT
Secure Gateway

Protecting the internet of things
at the Cyber Immune gateway level

About the solution

Kaspersky IoT Secure Gateway (KISG) is a software platform for the eponymous Cyber Immune data gateways based on KasperskyOS.

Data gateways connect the world of operational technology (OT) with the world of information technology (IT). You can use them to connect industrial equipment and facility monitoring and automation systems to various data storage, processing and visualization systems, ranging from standard corporate MES/ERP systems to advanced IoT platforms with digital analytics services.

Third-party companies can create their own applications for the gateways, which will be added to the Kaspersky Appicenter™️. Administration and application management are carried out through the local administration console such as Kaspersky Security Center , ensuring the authenticity of the applications and their safe installation. Kaspersky Appicenter also provides a developer portal where all necessary tools and documentation are available for a successful start in application development.

 


 

The gateway supports applications with edge computing capabilities that enable:

  • unification of field equipment while supporting sensor diversity;
  • unification of communication interfaces with information systems;
  • reduction in traffic and cloud resources via on-premises analytics;
  • zero-latency management;
  • secure installation and update of applications.

 

The commercial development of KISGs and the creation of end-to-end digital services based on them is carried out by Adaptive Production Technologies LLC (Aprotech), Kaspersky’s subsidiary which took part in the development of the gateways.

Technical diagram

Gateway functions in an industrial network

KISG operating mode

KISG operation in data diode mode

KISG operating mode

KISG operation in router mode

Features

Secure data transport

Reliable data transmission, traffic monitoring and filtering

Integration with business systems

Support for cloud platforms and data transfer to corporate business systems

Support for third-party applications

Creation of custom applications for KasperskyOS and their safe delivery to devices

Cyber Immune protection

Protection of network infrastructure and inherent resilience to most types of cyberattacks

Markets

Manufacturing
Petrochemical
Energy
Smart cities and buildings
Transpoation and logistics
Public Sector

Threat protection

One of the main objectives of digitalization is the transfer of data to an external network. As a result, the network often becomes a target for cyberattacks and requires maximum protection, which Kaspersky IoT Secure Gateway can provide.

Connected device vulnerability

All IoT devices connected to the network are also at risk. Hacking can lead to data leaks or spoofing, or allow attackers to change the software configuration

Threats of unauthorized connections

New unauthorized connections to the system can disrupt its structural integrity and prevent it from operating correctly

Risks to public devices

If there are devices on the IoT network with public addresses or access to "the outside", they can become targets for network attacks

Cloud storage hacking

By gaining access to the cloud platform, attackers can compromise the data stored on it and alter configurations, putting the entire infrastructure at risk

Solution components

Hardware platform KISG

Next-generation Сyber Immune data gateway based on KasperskyOS. The device was developed in collaboration with the Adaptive Production Technologies LLC (Aprotech) company.

In data diode mode, Kaspersky IoT Secure Gateway collects data via industrial protocols, then converts and transfers it unidirectionally to corporate information systems hosted either on private infrastructure or in the cloud.

In router mode, Kaspersky IoT Secure Gateway operates as a router with firewall capabilities, industrial protocol analysis and filtering (including intrusion detection and prevention functions), as well as an MQTT broker.

Features

Kaspersky Cyber Immunity

The Cyber ​​Immune Gateway is protected not only from known but also from as-yet-unknown threats at the architectural level

Secure data transfer

Protection of the network infrastructure from cyber threats and reliable data transport

Support for third-party applications

Development of custom applications for Linux

Centralized management

Management through a unified Kaspersky Security Center (KSC) administration console

Kaspersky Appicenter

A platform for distributing digital content that supports all stages of its lifecycle and brings together users, independent application developers, and global manufacturers of devices based on KasperskyOS. Kaspersky Appicenter consists of three functional components aimed at developers and end users of devices.

Kaspersky Appicenter for Developers is designed for Kaspersky's partners and provides all the tools and documentation necessary to create applications for devices based on KasperskyOS.

Kaspersky Appicenter application catalog contains detailed descriptions of the functionality of applications for KasperskyOS-based devices, as well as contact information for their developers.

Administration consoles, such as Kaspersky Security Center, ensure the authenticity of the applications and provide safe installation on devices.

Kaspersky Security Center

Kaspersky Security Center is an advanced integrated platform for centralized administration and monitoring of the events of Kaspersky IoT Secure Gateway 1000.


Unified management console

Transparency, cost reduction and improved administration efficiency; correlation of events from different sources

Full IoT infrastructure overview

Management of up to 100,000 physical, virtual and cloud workstations

Features

Convenient alerts

Incident notifications through various administrator-friendly channels: text messages, email, push notifications, etc.

Flexible reporting

Customizable and ready-to-use reports with dynamic filtering and sorting by any data field

Role-based access

Each administrator can only access the tools and data relevant to their work responsibilities

Scalable architecture

When purchasing or releasing a new application, a relevant extension can be installed without re-installing or patching the console

Learn more about KasperskyOS

We are always happy to answer your questions about KasperskyOS and solutions based on it. Fill out the form to get additional information or to discuss cooperation prospects

Ask a Question

Answering the most frequently asked questions about KasperskyOS and products based on

Read the FAQ