Zero Trust, Device Level Protection for IoT and Connected Devices
Security has become a vicious cycle of an arms race. Attackers continuously develop new tools to exploit vulnerabilities, and defenders are tackling new attempts using patches of known vulnerabilities, applying network defenses and more. In this arm race, Cyberattackers seek persistency to prevail, e.g. survive a device reset, in order to execute zero-day attacks, ransomware demands etc.
NanoLock zero trust, device-level protection and management secure IoT, OT and connected devices against persistent cyberattacks by outsiders¸ insiders and supply chain adversaries. The solution takes zero-trust to the device-level by allowing persistent changes in the device, only if authenticated and signed by an external authorized server.
Every attempt for a persistent change to the device’s critical code, such as firmware, calibration, and configuration, is verified by the an embedded gatekeeper. Only update requests that were authenticated by an external server will be approved. Unauthorized change attempts are rejected and alerted, blocking cyber-attacks by insiders, outsiders and even supply chain attackers.
NanoLock’s protection is a perfect fit for any connected device:
- Lightweight passive protection, regardless of attack type
- Processor and operating system agnostic
- Minimal energy requirements
- No performance hit
- Works with legacy and new devices
NanoLock’s root-of-trust is available either as an embedded software on already operational devices or rooted in the silicon of leading Flash memory providers for new devices.