Whether
critical infrastructure,
manufacturing companies or
process industries:
The documentationof OT assets and their communication behaviour in industrial infrastructure usually is incomplete and difficult. Often there is a continuous change in the OT landscape with new devices added or properties changed without the ability to identify or retrace those changes. Even in IEC 61850 infrastructure the update of the corresponding documentation might take weeks, thus resulting in blind spots. Additionally, vendors use proprietary settings and protocols or hide information about their components as a business secret.
In increasingly complex and networked industrial infrastructure (see left graphic), these
blind spots in the OT and ICS jeopardize OT security and availability-oriented operation. The operators lack the OT visibility necessary to detect risks early-on and mitigate attacks.