Honeywell Threat Defense Platform (HTDP) powered by Acalvio uses “sophisticated active defense – featuring autonomous deception tactics to outsmart attackers,” providing “high fidelity threat detection,” according to the company.
Traditionally, building OT environments rely on prevention technology and passive detection such as perimeter security and network traffic analysis to secure systems.
More than 1 in 4 (27%) surveyed facility managers experienced a cyber breach of their OT systems in the last 12 months, according to a recent survey conducted by Honeywell Building Technologies.
Threat actors continue to target systems with both targeted attacks and ransomware attacks. These attacks can go beyond accessing private customer data and may potentially impair the operations for critical organizations such as utilities, data centers, hospitals and airports.
HTDP uses deception tactics to confuse and mislead threats away from critical assets and devices, resulting in low false alerts and a high rate of detection, according to Honeywell. The solution leads threat actors to decoy assets, which appear to be valuable OT and IT devices; however, none of the devices are real and there is no access to the enterprise assets. The solution makes real, critical operational devices harder to find, slowing down adversaries and helping security teams capture them faster.
“The quantity and complexity of cyberattacks unfortunately are increasing every day, reinforcing the need for building owners and operators to rigorously monitor, maintain and protect their OT environments,” said Mirel Sehic, global director of cybersecurity, Honeywell Building Technologies, in a statement. “Incorporating Acalvio’s autonomous deception technology into our OT cybersecurity toolbelt provides a highly effective solution to help protect our customers’ buildings from increasingly sophisticated attacks.”
Ram Varadarajan, co-founder and CEO of Acalvio Technologies, said, “…This technology is something that can benefit every building and facility – especially those that do not have teams of cyber experts. It requires no prior knowledge of attacker tactics and can be deployed without special training or modifications to existing OT environments.”
The new HTDP solution includes deployment and ongoing monitoring, freeing up internal security team resources. Advanced artificial intelligence makes the service easy to use and scalable. HTDP is well-suited for organizations that desire advanced intrusion detection in their building network without having to install or operate complex technology. HTDP can be deployed across both IT and OT environments as either an on-premises offering or cloud service.
The new offering also helps customers improve their resilience and business continuity efforts to help meet their environmental, social and governance (ESG) goals.