CYBERSECURITY

How security is ensured at any level with the Secomea Solution.

IT compliance Certifications Security Concepts CVE Numbering Authority Tech Information

STATE-OF-ART-SECURITY

Accelerating digitalization and unlocking new levels of productivity without compromising security is vital in the modern factory. By mastering the delicate balance between ease of use and security, the Secomea Solution minimizes the possibility of cybersecurity risks resulting from human error. In return, you increase uptime and maintain a competitive advantage.

Security is a key fundament of the Secomea Solution. It is built-in, not bolted on and designed from the ground up to meet both operational technology (OT) and IT requirements.

ACT IN COMPLIANCE WITH IT POLICIES

  • Firewall friendly: Only outbound connections are used on ports 80, 443 or 11444
  • Two-Factor-Authentication: Password in combination with personal security certificates, optionally extended with SMS code validation
  • Fine-grained user management: Distinct Authorization through fine-grained user management in an intuitive web UI, capable of time-limited access restriction down to a single IP or port on a PLC or HMI
  • AD authentication: Support for AD authentication via LDAP under a Secomea SaaS agreement, including the possibility for differentiating authentication method based on user roles (administrator, remote access user etc.)
  • Strong encryption: Strong encryption on all connections (TLS/AES) with access blocked to the wider network from all clients and IoT devices
  • Full audit trail: All access activity is logged to ensure a transparent record of all user activity

Download Security Paper Secure your ICS network

Security Certificate

The Secomea Solution is certified according to IEC62443 standards. Each component of our solution is continuously audited by the external security company TG alpha GmbH (Formerly ProtectEM GmbH) to maintain the highest global cybersecurity standards from both an IT requirement and a corporate policy perspective.

Open Certificate

Industry 4.0 Certificate

The Secomea Solution is Industry 4.0 certified to ensure compliance and enabling of the Reference Architecture Model Industrie 4.0 (RAMI4.0) with reference to IEC/PAS 62443-3. The certification supplements Secomea’s security certification and ensures that the solution is fully aligned with Industry 4.0 criteria.

Open Certificate

IEC62443-4-1 Certified

The IEC 62443-4-1 certificate confirms that Secomea has implemented a secure by design methodology from the first day of the product development process, which includes complete security lifecycle management and patch management. This certificate also demonstrates Secomea’s capability to identify and respond to vulnerabilities and work with customers to mitigate their risks.

Open Certificate

DOWNLOAD THE SECOMEA CONCEPT AUDIT REPORT HERE

Fill out this form and get access to the ProtectEM report containing valuable insight in risk analysis and assessment of the Secomea solution against the security levels of the international standards IEC 62443-3-3 and IEC 62443-4-2 for Industrial Automation Control Systems (IACS) components.

The report also evaluates the system against the IT baseline security protection requirements defined by the German federal office for information security (BSI).

“Secomea’s solution provides high robustness and ease of use at low cost. It has achieved a very high level of security, and we consider it the best solution for remote access outside the IP-VPN closed network main area, especially abroad„

-Toshiba Mitsubishi-Electric Industrial Systems Corporation (TMEIC).

Read Case

SECURITY CONCEPTS

Learn how the Secomea Solution supports the Purdue Model (PERA), Defence in Depth (DiD) and Zero Trust Security.

Learn more

CVE NUMBERING AUTHORITY

Secomea is authorized by CISA (Cybersecurity & Infrastructure Security Agency) as a CVE Numbering Authority (CNA), which is the de-facto international standard for identifying and naming cybersecurity vulnerabilities. By this authorization, Secomea follows international standards for identifying vulnerabilities to effectively mitigate security issues and protect your systems against threats.

Learn more

OVERCOME THE LIMITATIONS
OF TRADITIONAL VPN

The Secomea Solution overcomes the limitations of traditional VPN and addresses the security requirements of linking service engineers with industrial equipment.

Learn how

INFO FOR
IT PROFESSIONALS

Learn how the security is ensured at any level of the Secomea Solution keeping your operations secure.

Learn More

INFO FOR
MANAGEMENT

Learn how you ensure the required degree of security when choosing a remote access solution.

Learn More

Cybersecurity in the digital plant

CYBERSECURITY IN THE DIGITAL PLANT

Cybersecurity is a vital consideration in the modern factory. Any laxity in this area can create a point of failure in the whole structure – something that no factory can afford. We discuss the optimal route to smart manufacturing and the required degree of cybersecurity in the digital plan.

Learn more

WANT TO PROVIDE REMOTE MAINTENANCE WITH THE HIGHEST LEVEL OF SECURITY?


Contact us and get more information about how our solution can help you to meet the balance between the security specifications required from IT and the easy usability needed in OT.

FREQUENTLY ASKED QUESTIONS

The Secomea Solution not only complies to standards for safety and interference but is also both security and Industry 4.0 certified end-to-end according to: NIST SP800-115 & SECOM OSSTMM, ISA 99 / IEC 62443 & BSI and Industry 4.0 (RAMI4.0) ref. IEC/PAS 62443-3.

The Secomea Solution supports 2FA, fine-grained user management down to a single IP address and AD authentication via LDAP.

The solution is security certified according to IEC62443 standards. Each component of the solution is continuously audited by the external security company ProtectEM GmbH to maintain the highest global cybersecurity standards from both an IT requirement and a corporate policy perspective.

Secomea is authorized by CISA (Cybersecurity & Infrastructure Security Agency) as a CVE Numbering Authority (CNA), which is the de-facto international standard for identifying and naming cybersecurity vulnerabilities. By this authorization, Secomea follows international standards for identifying vulnerabilities to effectively mitigate security issues and protect your systems against threats.

NEWSLETTER SIGN-UP

Get the latest Secomea news sent straight to your inbox.

 
Subscribe

INSIDE SECOMEA

About Secomea
Cybersecurity
Partners
Careers

RESOURCES

GateManager Server Status
Events
Webinars
Cases

CONTACT

Secomea Headquarters
Copenhagen, Denmark
+45 88 70 86 50
info@secomea.com

Contact Secomea
Contact a distributor

Find addresses here

Privacy & Cookie Policy  © Secomea 2022, All rights reserved