Magnum Secure Networks Framework
The Magnum Secure
Networks Framework (MSNF) is a focused initiative of GarrettCom that
addresses cyber security requirements of power utilities, transportation
systems, water treatment plants, military installations, pipeline operations, and other critical infrastructure sectors.
Built around a Magnum Secure Networks Framework of key products and
technologies, the initiative also includes marketing, Professional Services,
cooperative vulnerability and needs assessments and a growing set of
industry partnerships aimed at providing comprehensive solutions for both
risk mitigation and compliance management.
The Magnum Secure
Networks Framework (MSNF) consists of several functional building blocks
and secure networking protocols. The MSNF can be implemented using various
combinations of GarrettCom and partner products.
MSNF functional building
- Secure Network Management
- WAN Perimeter Security
- Serial and Ethernet Port Security
- Access Control
- Network back-up and recovery
- Legacy non-routable protocol secure transport
Secure Network Management
requires each network element to implement secure management interfaces
requiring rigorous authentication/authorization and both local logging and
remote event notification regarding status, configuration change and network
security events. Key secure management protocols and features include SSH/SSL
for console access, SNMPv3, secure FTP and syslog remote logging.
Enforcement of an effective
Electronic Security Perimeter requires WAN Perimeter Security, using IP
Firewall and IP VPN technologies, as well as both physical and virtual port
security within the perimeter. VLAN, static MAC security, and 802.1x
technologies can provide Ethernet port security, while static Serial-IP and
filters, serial-port SSL and serial-port VLANs can provide serial-port
security. Firewall technology and/or SSL can be extended within a local
site to ensure end-to-end connection security.
GarrettCom works with
partners who provide Access
Management Systems for interactive access to industrial devices. By
assuring interoperability including Serial-IP services and end-to-end SSL-based
encryption, the MSNF provides a complete access control solution that
rigorously secures system access, logs activity for compliance management
and auditability, and even facilitates end-user productivity and
Key products used to
implement Magnum Secure Networking include all managed Magnum 6K Ethernet
switching products, DynaStar Industrial Routers and Magnum DX Serial Device
Routers. These products enable scalable, distributed deployment of highly
secured networks, from large-scale multi-device implementations built upon
an Ethernet switching core, to highly integrated single-device solutions
incorporating many networking functions into a singe GarrettCom product.
Automation July 2007 article "NERC/CIP: Opportunity or Headache?"
Substation Products Overview