Why now for Active Defense?
HTDP is the industry’s first Active Defense solution focused on securing the OT systems that businesses use to manage their buildings. Active Defense is a new and powerful concept in cybersecurity, providing a pro-active approach to protect from threats, ranging from malware to APT attacks.
All existing security solutions for OT networks are based on Prevention (firewall, access management etc) and Passive Detection based on log (traffic, endpoint events etc) analysis.
How does HTDP Work?
Unlike passive cyber defenses, HTDP is not signature or anomaly based. HTDP delivers active defense by deploying a comprehensive deception fabric across the OT network. This deception fabric is a significant evolution of earlier deception technologies that relied on physical decoys and manual configurations.
HTDP enables Defense teams to detect and respond to threats that target HBT customers. HBT customers gain protection from Ransomware attacks, ability to protect the Key Assets in a Building Automation System and ability to protect from attacker attempts to exploit targeted vulnerabilities (such as the recent Log4Shell exploit, that can target OT and IoT environments)
HTDP is an autonomous deception solution which signifies that the platform has abilities to auto-configure and auto-respond. The platform is cloud based, which makes it immensely scalable. Because alerts are based off of live attacker behaviors against deceptions, HTDP has the lowest false positive rate of any cybersecurity system.
HTDP is an orchestration of a robust palette of “deception elements”. These deception elements are more than just simple decoys. Deception elements are a range of artifacts and techniques designed to deceive an attacker into believing they have located valuable assets.
Honeywell Threat Defense Platform provides a comprehensive inventory of deception elements ranging from common IT systems to sophisticated building and safety automation systems. The deployment is non-intrusive, this is a key benefit for OT environments. HTDP provides an ability for rapid response actions, to ensure that the threat is immediately isolated.
HTDP joins a family of Honeywell cybersecurity services designed to make running and securing a building easy and reliable for Honeywell customers. No matter the customer’s current level of cyber maturity, HTDP provides a significant level of confidence in the ability to maintain the integrity of the building and its operations. Despite the complexities of modern cybersecurity, Honeywell and HTDP Powered by Acalvio make it fast and easy to set up the world’s foremost platform for Active Defense.
Learn more about HTDP powered by Acalvio here.