Humans make mistakes. That is a fact of life.
What are some best practices to create a sound configuration system for a security device?
Statistics show that as little as 3% or as high as 67% of breaches were due to misconfigurations. The 2023 Veracode State of Software Security reported misconfiguration errors in 70% or more applications that introduced a new security vulnerability last year. Hackers accessed hundreds of millions of data records in 2022 alone because of misconfigurations. National Security Agency admits government data leaked to the public due to misconfigurations.
Have you ever heard of a concept called Radical Simplicity? Radical Simplicity means having as few components and moving parts as possible and reusing technology for different purposes instead of having a new moving part for each purpose. Last week, I discussed authentication and reusing Apple Pay techniques for user validation. That was an excellent example of reuse that enhances simplicity.
Security products, frankly, kind of suck when it comes to configuration because they simply lack simplicity. The more they do and the older they are, the more broken they become. When an IT security vendor attempts to turn their legacy IT product into an OT product, complexity skyrockets. This is the essence of the IT versus OT security problem - IT products are not purposely fit for OT, as shown by the sheer number of hacks due to misconfigurations.
So, OT security needs products created (or at least wholly remodeled) with OT security problems in mind. How do you get to Radical Simplicity? How should those products be configured?
These are just a few rules a security system needs to follow for configuration simplicity. As you might expect, the BlastShield solution was designed meet the concept of Radical Simplicity, and we pride ourselves on the user experience. If you want a demo of a security system users rave about using, contact BlastWave for a demo!
Experience the simplicity of BlastShield to secure your OT network and legacy infrastructure.