Given the interconnectedness of today’s industrial operations, the network-layer isolation security methods of the past are ineffective, exposing vulnerable systems to the risk of cyber-attack. Xage’s role-based access control (RBAC) solution enables remote and on-site system access for control systems (ICS), IoT devices, and operational data streams, dramatically improving and simplifying access security, while enabling continuous protection even if the network-layer is breached.
Xage RBAC takes responsibility for setting secure device credentials, holding credentials on-site in the tamperproof Fabric to make default, lost, shared, or stolen passwords a thing of the past. Xage RBAC also automates the implementation of OT security policies such as password complexity, credential rotation, and immediate user revocation. Plus, for the many industrial control systems and devices that have no password nor built-in protection – leaving them open on the network – Xage provides the Xage Enforcement Point (XEP), controlling access according to the tamperproofed policies secured in the Fabric.
With credential management and XEP capabilities, Xage enables universal RBAC for every device, from legacy control systems to the newest IoT machines, while tracking all access attempts with a tamperproof audit-log.
Xage is deployed non-intrusively, without any upgrades or changes to the protected devices and industrial controllers, and. The Xage Policy Manager, part of Xage RBAC, enables customers to define and enforce RBAC requirements for all devices, apps and users field-wide from a single dashboard. This automates critical infrastructure security and maintains compliance with evolving regulations and such as NERC-CIP.