Homepage>product center>traditional security> RSDC

RSDC

in the past 20 years, the Internet has been the most important technology to change society and business; now, with the rapid development of 5G, Internet of Things, cloud computing and big data, blockchain, and artificial intelligence technologies, the manufacturing field will begin to have The advanced ability to collect, transmit and process big data enables the manufacturing industry to form an industrial Internet and drive the subversion and reconstruction of traditional manufacturing. China's intelligent manufacturing 2025 strategy and Germany's industrial 4.0 strategy are gradually promoting the development of the industry.

With the enrichment of various products, the manufacturing production structure has become more complex and refined. The information flow inside the production line and production equipment and the amount of information in the management work have increased dramatically, so the data exchange between the production line environment and the external environment has become more and more frequent. Although the IT network and OT network have begun to connect and gradually merge, due to the frequent production line security incidents and the frequent security incidents against the industrial control environment in recent years, a large number of network isolation technologies have to be used for segmentation and isolation in these environments, therefore, the use of USB removable storage devices for data exchange has not been reduced due to the increase in network interconnection.

when we analyze these security incidents, it is not difficult to find that a considerable part of the malware spread from USB removable storage devices. Let's look at the famous industrial control model of Mitre ATT & CK (released on 2020-01-07). "Replication Through Removable Media" is listed in the "Initial Access" step. Obviously, it is an important means that hackers often use to spread malicious programs.

For the control of USB removable storage devices, the majority of manufacturing enterprises and industrial control environments will generally formulate rules and regulations for the use of USB removable storage devices. Many enterprises will purchase special USB removable storage devices, many enterprises will equip special computers for scanning USB removable storage devices at the door of the production line workshop, and some enterprises will purchase USB removable storage devices with their own killing function, however, it is still impossible to prevent USB removable storage devices from bringing malicious software in, because the above methods are either incomplete policy implementation, secondary infection cannot be prevented, or the cost is too high or maintenance is difficult.

In addition, the hosts in the production line environment, whether HMI, engineer station or operator station, SCADA server, OPC server, etc., are mostly using old operating systems and have poor hardware configuration. In many cases, modern anti-virus software either does not support this old operating system, or the hardware configuration is too low to run, or cannot update the virus signature library in time due to the inability to connect to the Internet when installed and run, at the same time, because the operating system is too old and even the operating system manufacturer no longer provides patches to learn to repair vulnerabilities, the self-protection capabilities of these hosts are relatively weak.

RSDC(Removable Storage Device Controller) is a product specially designed to solve this problem. It uses excellent industrial design and is suitable for different industrial environments, whether it is high temperature, high humidity or heavy dust and other harsh environments, whether it is indoor workshop or outdoor can easily adapt. At the same time, the simple operation steps of plug and play and the results of what you see is what you get make anyone competent for detection and judgment, because only the USB removable storage device needs to be plugged into the U port on the device, and the device will automatically scan and give the results.

the mandatory driver of RSDC (Enforce Driver) needs to be installed by technicians on HMI or engineer station or operator station that needs to be protected, SCADA server, OPC server, etc., only USB removable storage devices scanned by RSDC can be enabled on HMI or engineer workstation that needs to be protected, otherwise USB removable storage devices that have not been scanned are unavailable; only directories and files scanned by RSDC can be accessed and operated. If it is a directory created twice after scanning or a newly added file, it cannot be accessed and can only be accessed and operated after scanning. This design completely solves the problem of secondary infection.

In addition, RSDC's mandatory driver (Enforce Driver) anti-uninstall and anti-stop service technology can keep it running on the host that needs protection, ensuring that it must be scanned when USB removable storage devices are allowed. There is no risk of secondary infection.

RSDC's mandatory driver (Enforce Driver) supports the following operating systems:

WindowsXp Windows Server 2003 Windows Server 2008

Windows7 Windows Server 2010 Windows Server 2012

Windows 8 Windows 10 Windows Server 2016

RSDC(Removable Storage Device Controller) scanning engine is the industry's more advanced virus and Trojan scanning technology and engine, effectively resisting threats and advanced attackers, while continuously updating new technologies through the cloud to protect your environment from malicious attacks in USB removable storage devices.

Advanced Machine Learningits engine uses software samples from the global intelligence network to determine the category of malware, including known and unknown malware, by machine learning the behavior of malicious programs. This technology significantly enhances our detection capabilities, allowing RSDC to easily identify malicious software hidden in USB removable storage devices.

File Reputationfile analysis uses various technologies supported by the global intelligence network and known IOC, and combines artificial intelligence analysis to determine the security of the file. This analysis technology quickly processes the file and calculates its security score and then feeds it back to the engine on the device.

simulationFor scripts, compressed files and other executable files, our lightweight sandbox can detect polymorphic malware hidden by custom encapsulators and can detect threats that can avoid traditional technology detection based only on features.

featurescan and eradicate malicious software that invades through USB removable storage devices.

RSDC(Removable Storage Device Controller) has flexible network connection options, supports Ethernet NIC, WIFI wireless network and 4G module connection, facilitates interconnection with the cloud under various environments and conditions, and can be physically isolated from the existing production line network, thus obtaining the latest signature library update and cloud threat information, at the same time, administrators can also manage multiple devices belonging to their own enterprises and generate related reports through the centralized management platform in the cloud.