Trend Micro TXOne StellarProtect
Industrial-grade, next-generation endpoint security for ICS

Overview

Securing ICS endpoints introduces difficulties for both operational engineers and security administrators. Though traditional antivirus has long been seen as a core part of cyber defense strategy, the test of time has shown it brings shortcomings to work sites. All antivirus software requires constant virus signature updates over the Internet to be able to scan for threats. These scans, in turn, place heavy demand on both CPU loading and memory consumption as intensive I/O hooking is conducted. This puts availability at risk even in work sites running modernized operational devices. Safeguarding ICS endpoints requires different priorities: chosen solutions must ensure daily working processes are never jeopardized, computation is never slowed, and production decisions are never delayed. TXOne StellarProtect is the first solution of its kind: all-terrain endpoint protection, a defensive solution custom-engineered for operational technology. Its advanced threat scanning brings known attacks to heel while its next-gen machine learning engine blocks unknown threats, requiring no internet access. StellarProtect’s ICS filtering, based on an inventory of applications and certificates, eliminates unnecessary overhead to allow the most lightweight operation possible. Effective in a range of environmental conditions with high accuracy and very low impact on endpoint performance, StellarProtect provides full coverage in one deployment.

Features

Performance that exceeds industry standards

Balancing availability and confidentiality is central to StellarProtect’s architecture. Our cloud-based reputation service collects and validates an inventory of ICS applications and certifications, considerably reducing overhead by making scans unnecessary for known files.

This improvement to performance surpasses industry standards and allows far better resource availability than that of traditional antivirus software. Central management from the StellarOne console grants security operations centers a greater insight into the security posture of OT endpoints.

Ensure complete ICS endpoint security

Running solutions without the latest pattern updates can allow unknown malware attacks to jeopardize critical endpoint operations! StellarProtect’s signature-based engine and machine learning technology offer security across the all-terrain ICS environment, able to repel known and unknown attacks even in an air-gapped environment with no internet.

Reduce operational workload

StellarProtect’s purpose-built ICS application defense works by learning each ICS application’s sequence of operations and nailing down the pattern of the fixed-use machine’s profile. Any operational scenario not included in the learning profile is considered a violation and brought to a halt. Human management is no longer necessary to ensure zero trust operational efficiency.