IoT security risks are on the increase among all organizations that employ smart technologies in their infrastructure. Yet, IoT security solutions are harder to find. So the move is meant to fill a gap in the security layer of many large businesses in various industry domains, whose infrastructure includes smart devices, and who are also threatened by cyber-attacks. As the release note points out: Moreover, traditional security software can’t be deployed for such infrastructures, leaving them even more vulnerable.
How to secure IoT/OT devices with Azure Defender
The now generally available Azure Defender for IoT uses CyberX-based agentless behavioral analytics and threat intelligence to detect possible threats. Much like regular antivirus solutions, this is what Azure Defender for IoT can do for your network:
Detect threats by analyzing the specialized protocols, devices, and machine-to-machine behaviors found only in IoT/OT environments Make a complete inventory of all IoT/OT assets Analyze diverse industrial protocols to identify device details including manufacturer, type, serial number, firmware level, and IP or Media Access Control (MAC) address Quickly identify the root cause of operational issues such as misconfigured devices Identify network vulnerabilities (unpatched devices, open ports, unauthorized applications, and unauthorized connections) Detect changes to device configurations, programmable logic controller (PLC) code, and firmware Prioritize fixes based on IoT protocols Catch zero-day malware and similar exploit attempts
A great advantage of Azure Defender for IoT is that it uses a flexible deployment model including in environments protected with the Azure Sphere or Azure Sentinel technologies, with no changes over the existing infrastructure. Moreover, network admins can modify the source code to further customize the agent to the organization’s needs. The tool’s impact is minimal, with no OS kernel dependencies. Note that Azure Defender for IoT differs from the regular Azure Defender product, which is designed for general cloud environments. Microsoft offers plenty of documentation for enterprises to get started with Azure Defender deployment and further stay informed with the latest updates.
Name *
Email *
Commenting as . Not you?
Save information for future comments
Comment
Δ
