Countless organisations are taking their first steps in OT security by investing heavily in asset visibility and threat detection solutions. However the reality displayed on these expensive dashboards hands executives an overwhelming financial burden rather than the comfort of security. According to statistics from major industrial security research firms performing an initial infrastructure scan of an average smart factory using a visibility solution immediately uncovers thousands of historically accumulated unpatched vulnerabilities. Executives have successfully spent a fortune to visualise exactly how at risk they are but are simultaneously faced with the harsh reality of managing thousands of ticking time bombs every single day.
The true dilemma begins with the fact that despite discovering these thousands of vulnerabilities there is practically no viable way to resolve them immediately. As proven by the latest global downtime report from Siemens and Senseye the cost of halting a large scale core process reaches a staggering $2m (approximately £1.5m) per hour. Shutting down production lines that must run around the clock just to patch aging legacy equipment is a catastrophic financial risk that companies simply cannot afford. Ultimately a visibility solution merely diagnoses the fragility of the infrastructure but is severely limited in its ability to act as an execution barrier against actual attacks. What matters just as much as finding vulnerabilities is having the physical and fundamental control to ensure machines cannot malfunction even in an unpatchable environment.
The sheer volume of asset inventories and vulnerability reports churned out by visibility solutions causes severe operational overload for security personnel. According to research by the global IT advisory firm Gartner a significant portion of security operations centre staff suffer from extreme fatigue due to the relentless flood of warning alarms which paradoxically degrades the actual threat response capability of the organisation. As the red risk indicators multiply on the dashboard the pressure on the security team mounts but this creates structural friction with production managers on the shop floor who refuse to allow any equipment manipulation or downtime in the name of operational availability.
Executives must be wary of the illusion that a sophisticated dashboard equates to comprehensive security. The vast amount of security logs and alert data collected after achieving visibility becomes a primary driver of continuously escalating operational costs. Companies are forced to inject substantial capital into additional personnel and resources just to triage and verify hundreds of daily alarms. Visibility is merely the diagnostic starting point of security and can never be the final destination. Simply monitoring the state of the system does very little to physically stop a hacker from infiltrating.
The vulnerability management guidelines universally proposed by the network security industry frequently clash with the reality of the manufacturing floor. As consistently highlighted in advisories from the US Cybersecurity and Infrastructure Security Agency (CISA), a vast majority of critical vulnerabilities found in industrial control systems are concentrated in legacy equipment where immediate patching is impossible. Decades old PLCs or HMI devices often no longer receive patch support from the manufacturer or applying new patches carries a high risk of compromising the stability of the entire process. Under these constraints the endless patching recommendations demanded by the dashboard remain an impractical burden on the shop floor.
In such circumstances a system that continuously identifies and warns about unresolvable vulnerabilities can actually expose the organisation to unexpected compliance risks. Leaving a documented trail that risks were identified but not mitigated due to operational reasons can severely disadvantage executives when assessing liability following an actual breach. In an industrial environment where aging equipment cannot be immediately replaced and systems cannot be paused at will organisations need more than simple vulnerability identification. They require a fundamental barrier that strictly denies any unauthorised command regardless of what vulnerabilities exist.
Relying on network packet monitoring and anomaly detection exposes a critical blind spot when an attacker gains access using legitimate credentials. According to the latest IBM X-Force threat intelligence report the most frequent initial access vector used by hackers is not the exploitation of vulnerabilities but the use of already compromised valid accounts. A visibility solution records activities within the network but it faces structural difficulties in immediately identifying and blocking a hacker who logs in with a stolen legitimate partner account to manipulate a valve or motor.
Ultimately the way to overcome the visibility dilemma and secure a genuine return on security investment is to withdraw unconditional network trust and directly control the execution rights of the machines at the final stage. Implementing an architecture that unconditionally demands a one time dynamic identification code right at the network edge just before a physical command reaches the hardware effectively neutralises the risks posed by unpatched vulnerabilities. Even if an attacker accesses the internal network using legitimate accounts or known vulnerabilities physical manipulation remains fundamentally impossible if they cannot provide the real time one time code required to move the machine.
It is time for executives to redirect their security budget from extensive data collection and state observation towards a more tangible realm of control. Rather than exhausting resources analysing endless logs and reviewing unresolvable vulnerability reports it is far more efficient from both a financial and operational perspective to build a defence system that flawlessly verifies and executes even a single critical command. Instead of adding more surveillance cameras to track an intruder it is fundamentally more secure to replace the dial of the vault itself with a dynamic cryptographic system that outsiders cannot predict.
Strict dynamic identity control at the execution gateway provides an alternative that fundamentally neutralises the countless unresolved challenges created by visibility solutions. There is no need to forcefully halt core processes for impossible patches and security personnel are freed from the flood of ambiguous warning alarms allowing them to focus on stable infrastructure operation. It is time to move beyond the false comfort of dashboard monitoring and invest in the absolute certainty that only verified dynamic codes can command your hardware.
--------------------
swIDch will continue its quest to innovate and pioneer next-generation authentication solutions. To stay up-to-date with the latest trends sign up to our newsletter and check out our latest solutions.