Remote Access & Industrial Internet of Things (IIoT)
Secure remote access to innovative IIoT solutions.
Your Data is important
ArroSuite has been built from the design upward to be a secure platform for the Remote Access of your plant information. Cyber threats are on the increase, and we recognise you must be confident
in the system’s security capabilities.
There’s a world of hackers waiting to exploit your internet footprint for their own ends. Secure access is vital to limiting threats, but its only one part of a much broader scope to ensure your data, systems and business remain safe.
Access Security
Critical infrastructure such as power generation, water treatment and industrial process assets can no longer accept a simple username/password level of protection from intrusion. ArroSuite uses a multi-faceted approach to inhibiting unsecure access to the system:
- A secure VPN access to the industrial network
- Stateful firewalling protecting ports, protocols and communication directions.
- MFA identity authentication
- Encrypted and secure token management between machines
- Following the Australian Cyber Security Centre’s (ACSC) Industrial Control Systems Remote Access Protocol.
- While we are confident we provide a secure system – don’t take our word for it. We encourage client sourced independent penetration testing to satisfy any further security concerns, and would request copies of any penetration testing findings to ensure we respond to any issues identified on your system. Significantly ArroTek is an ACSC Network Partner, keeping up to date with the latest threat
intelligence and advice to enhance situational awareness.
Data Backup
ArroSuite’s core components (ArroPoint devices, Control Servers and databases) are backed up daily. As an “Enterprise grade” cloud based storage solution, ArroSuite’s ArroPoint devices are capable of storing and buffering data locally should network interruptions interfere with connection to the database. In this way, we take at a minimum a risk based approach to minimise the risk of losing sensitive telemetry information. For more critical applications additional data protection measures can be incorporated, and we’d be please to discuss project specific needs with you.
Data Encryption
Communication between machines is encrypted and authenticated at a transactional level. Token based authentication of transactions provide high level protection from your data being intercepted.
Hardware serial numbers and other security features are used to protect unauthorised execution of code on ArroPoints.
Data Resilience
At the time of purchase an assessment will be made as to the geo-redundancy needs of your organisation. At a minimum, control servers are hosted and backed up in at least two data centres.
ArroPoint configuration images are backed-up to control servers. A risk profile of your business will be determined and agreed to, so that failover and load balancing will also be considered to ensure
the implementation of your ArroSuite system can meet your needs.
