Fides - Trustworthy Control
Fides provides the control network operator an independent overview of the network operational safety and security status, in addition to previously unavailable cyber-forensics capabilities.
The goal of Fides is to provide Trustworthy SCADA – reliable, safe and secure.
The Fides system includes multiple Fides blackbox units which are monitored by the Fides server. The number of Fides blacboxes required is to be determined by the customer, according to the control network topology. C4 Security is willing to assist any customer with planning the desired deployment to achieve optimal secure operation. Deployment of the physical elements of the system is followed by deployment of the functionality modules. The currently available modules are listed below.
Fides Modules
Fides Blackbox
Small-factor network monitoring appliance which analyzes multiple SCADA and control communications
Fides Insight
Application module that allows forensics and general event investigation of the data gathered by the Fides blackboxes.
Insight will display recorded transmissions in a table, allowing the operator to view specific transmissions that are of interest to him. This module is useful in a variety of use-cases, ranging from communications debugging to security incident forensics.
Fides Alerter
Provides the operator the ability to define communication rules to the Blackboxes and to view alerts of traffic anomalies
Alerter is a deep inspection intrusion detection system, which is a key component when a “defense in-depth” approach is desired.
Alerter only supports defining allowed operations, and will alert on any anomaly. This restriction is for security reasons, in order to prevent the user from defining known attacks and suffer from an incident from an undisclosed vulnerability. The definition of the rules is solely based on the protocol fields and their expected values.
NetMap
Provides a "second opinion" on the SCADA system. Inventory, node responsiveness and load monitoring of the control network, with visualization and trending features.
More modules and supported protocols are released on a Bi-Quarterly basis.
