Cato Networks today announced new capabilities for its cloud-based service access service edge (SASE) platform that will enable enterprise organizations to more easily manage and secure Internet of Things (IoT) and operational technology (OT) devices.
Cato IoT/OT Security offers network and security teams device discovery and classification features, as well as policy enforcement and threat detection capabilities in its Cato SASE Cloud Platform. The added features will help IT organizations remove potential vulnerabilities and points of weakness from their enterprise security posture, Cato says.
“Many IoT/OT devices lack integrated security features and/or often operate on outdated hardware and software, resulting in highly vulnerable devices. To address this, enterprises must overcome the challenges faced in securing IoT/OT environments including limited visibility, complex deployment, and additional integrations across multiple point solutions for policy enforcement and threat prevention,” says Brian Anderson, global field CTO at Cato Networks.
Gartner estimates that by 2025, more than “85% of enterprises will have more smart edge devices on their network than laptops, tablets, desktops, or smartphones,” and according to IDC, “there will be more than 41 billion IoT devices in 2025.” The additional devices could introduce blind spots and put a strain on IT teams, leaving them susceptible to security threats.
“Most enterprises are already burdened with too many point solutions. Adding another point solution like IoT/OT security creates further complexity. This solution sprawl can result in potential security gaps, making it costly and difficult to manage and protect IoT/OT devices,” Anderson says.
To properly manage and secure IoT/OT devices, enterprise organizations need discovery, visibility, policy enforcement, and threat prevention capabilities, according to Cato. The additional IoT/OT features in Cato SASE Cloud Platform include:
- Device discovery and classification: Provide visibility into IoT and OT environments without any additional integration requirements.
- Policy enforcement: Define and enforce granular access policies based on characteristics for specific IoT/OT devices or based on grouping by type, manufacturer, or model.
- Threat prevention: Apply threat detection capabilities such as DNS Security, intrusion-prevention system (IPS), and next-generation anti-malware (NGAM) to IoT/OT devices to safeguard them against known and unknown threats.
These capabilities will not only better secure these devices, but they will also simplify the management of IoT/OT devices, Cato says. For instance, the purpose-built AI and machine learning capabilities in Cato IoT/OT Security enable precise device discovery and classification. “These technologies can be used to fingerprint devices on the network by identifying key characteristics such as type, manufacturer, and version. This detailed classification eliminates security blind spots by providing a comprehensive view of IoT/OT environments,” Cato’s Anderson explains.
Cato SASE Cloud Platform runs on a private global backbone of more than 90+ points of presence (PoP) connected via multiple SLA-backed network providers. The PoP software continuously monitors the providers for latency, packet loss, and jitter to determine in real-time the best route for every packet. Cato applies optimization and acceleration to all traffic going through the backbone to enhance application performance and the user experience. To ensure all locations benefit, Cato optimizes traffic from all the edges and toward all destinations, on-premises and in the cloud.
Cato IoT/OT Security is a native feature in the Cato SASE Cloud Platform, which allows enterprises to activate the new solution without installing or configuring new hardware or software. Cato IoT/OT Security is generally available for customers globally.
Source:: Network World