Critical national infrastructure
security
Many modern industrial and CNI infrastructures rely on simple devices and embedded computers sending telemetry signals, receiving control messages, and connecting the physical world to a digital representation. The increasing number of cybersecurity risks turn telemetry data and control messages into another kind of sensitive data that needs protection.
We have built secure systems that protect telemetry data in huge state-owned enterprises. Our solutions fit both state-owned TSOs and SCADA networks and simple IoT environments, and allow achieving compliance with ISO 27k, NIS, CAF, ICS, ETSI EN 303 64.
CNI industry challenges
Legacy systems
The abundance of legacy hardware and industry standards that are only semi-compatible with the modern stack.
Vendor-locked solutions
Multi-component systems are built on "vendor-locked" solutions that don't provide enough flexibility and security management.
Successfull cyberattacks
A constantly increasing number of successful attacks on critical infrastructure objects, which leads not only to financial loss but also to electricity blackouts and halts in manufacturing processes.
Availability is king
Historically, CNIs were all about availability and air-gapped security. Now we're in a very different world, trying to cross the gap between legacy and ultra-modern systems.
Modern CNI security solutions
Focus on a dataflow
Hardware-based data encryption that follows the dataflow – protects the data starting with its generation sources.
Bridging legacy
Integrating security layers to cross the gap between legacy and ultra-modern systems, preserving security and stability.
High throughput and availability
Demand for real-time available data is growing, so modern security solutions for CNI have to be optimised for a higher load.
Tools and services we offer
Themis
A cross-platform cryptographic library for mobile, web, and server platforms, which solves 90% of typical data protection use cases that are common for most apps. Themis helps to integrate application level encryption fast and easy.
Read more
Acra
Offers a transparent application level encryption which is easy-to-integrate to already existing infrastructures. Use AcraServer to encrypt database fields “on the fly”, use Acra’s Requests Firewall and Anomalies Detection to protect against suspicious queries.
Read more
Integration with custom hardware
We built data aggregation modules to be integrated with custom hardware, injecting and encrypting data, and sending it encrypted to a processing center.
Specialised security modules
Critical infrastructure requires more than data protection. It needs a deep understanding of industry limitations, legacy protocols and the security risks associated with data automation.
Multi-layered security systems
We design scalable and reliable systems that integrate security on multiple levels: VPNs, TLS, cross-services authentication, field level encryption, data processing, audit logging, etc.
Have a question? Get a human to answer it!
How we make a difference
Fast & compliant crypto
Our solutions are based on FIPS 140-2 compliant cryptographic libraries, and they are tailored to work fast on cheap microcontrollers.
Experience in country-scale systems
Our solutions already work in highly distributed infrastructures in country-level enterprises and provide complete software&hardware solutions for data protection.
SCADA-aware
Our tools support the typical SCADA protocols for direct integration with existing legacy hardware, extracting and encrypting telesignal data "on the fly".
Adaptable to telemetry and telemechanics
Our solutions are optimised for storing and processing the time-series organised telemetry data securely & efficiently.
Our mission is simple.
We help you focus on serving your customers better, while relieving your team from security engineering pains and making your users confident that their data is safe with you.
Contact us
There are many ways we can help: with our products, bespoke solutions, and engineering services. Leave your contact information to connect with our team:
Relevant stories and posts
Protecting telemetry data of power grids
Protecting data signals transmitted over the air between power distribution stations and central dispatch system.
Acra 0.90.0: application level encryption and searchable encryption for any SQL and NoSQL databases
Acra Community Edition 0.90.0 – database security suite for SQL and NoSQL databases, which comes with application level encryption, searchable encryption, and encryption-as-a-service API available for any developer.
Defense in depth security strategy based on data encryption
Defence in depth approach to building secure apps explained with the help of Acra encryption suite.