ONEKEY is proud to announce that we have been appointed “Top Industrial IoT Solutions Provider in Europe“. With a handful of other leading companies, we were awarded by an industry leading US-magazine “Manufacturing Technology Insights”.
“We’re thrilled to receive this award and that our solution to ensure the security infrastructure against vulnerabilities gets so much attention by experts and security insiders for clearing the black holes to create a secure software supply chain”, says Jan Wendenburg, CEO of ONEKEY.
We believe in our ONEKEY-mission in product cybersecurity, and the international situation creates and exploits more and more vulnerabilities within the firmware of IoT/OT-systems. “Cyberattacks on Industrial Automation and Control Systems (IACS) are becoming increasingly common and represent a huge risk for companies and institutions. We recognized this need early on and today ONEKEY offers a sophisticated, automated firmware analysis platform with a development edge, thus making IoT/OT systems and devices more secure worldwide” says Jan Wendenburg, CEO of ONEKEY. One of the main targets of ONEKEY’s security engineers is to enable easy, instant, and ubiquitous availability of security and compliance information of software including Software Bill of Materials (SBOM).
ONEKEY Industrial IoT security solution not only provides one-time testing of software integrated into products and industrial infrastructure. Digital twins enable continuous analysis for new or newly discovered security risks and offer high security for all devices around the clock. Continuous monitoring is important as with each software update, new risks and gaps in security can likewise emerge. To this end, the database is constantly updated, and ONEKEY’s forensic research team ensures the further development.
“We work with hardware manufacturers and equipment producers worldwide and, on the one hand, enable the publication and use of secure software in the IoT/OT area; on the other hand, we also continuously ensure the highest possible security level,” says our CEO Jan Wendenburg. The goal is to establish a software bill of materials across the board, which includes all IT products with their own operating system – from printers to CNC milling machines – and gives operators and producers alike maximum transparency and thus security. In case of changes to components, real-time alerts give operators the opportunity to take immediate action and prevent economic damage.
Virtually all manufacturing operations use connected manufacturing devices and machines and are at risk of extortionist or politically motivated hacking attacks. The danger is higher than ever; the German Federal Office for Information Security (BSI) and many international organizations and state services have been reminding us for months of the increased threat level in Germany in the context of the war in Ukraine. This is compounded by the already tense overall threat situation affecting industry, commerce and critical infrastructure facilities. It is obvious that the best and most expensive security infrastructure is absolutely useless if an easily vulnerable IoT/OT control of a facility, or smart devices in the infrastructure, offer hackers an easy gateway. Therefore, from security expert’s perspective, security testing must be part of the IoT/OT supply chain – ideally in the form of a digital software bill of materials (SBOM) that is continuously monitored and automatically updated accordingly with each update.
More information on IoT/OT security and SBOMs are available in the new whitepaper: “Tackling Software Supply Chain Risks with IEC 62443 and SBOM” – please download here.
ONEKEY is the leading European specialist in Product Cybersecurity & Compliance Management and part of the investment portfolio of PricewaterhouseCoopers Germany (PwC). The unique combination of an automated Product Cybersecurity & Compliance Platform (PCCP) with expert knowledge and consulting services provides fast and comprehensive analysis, support, and management to improve product cybersecurity and compliance from product purchasing, design, development, production to end-of-life.
Critical vulnerabilities and compliance violations in device firmware are automatically identified in binary code by AI-based technology in minutes – without source code, device, or network access. Proactively audit software supply chains with integrated software bill of materials (SBOM) generation. “Digital Cyber Twins” enable automated 24/7 post-release cybersecurity monitoring throughout the product lifecycle.
The patent-pending, integrated Compliance Wizard™ already covers the upcoming EU Cyber Resilience Act (CRA) and existing requirements according to IEC 62443-4-2, ETSI EN 303 645, UNECE R 155 and many others.
The Product Security Incident Response Team (PSIRT) is effectively supported by the integrated automatic prioritisation of vulnerabilities, significantly reducing the time to remediation.
Leading international companies in Asia, Europe and the Americas already benefit from the ONEKEY Product Cybersecurity & Compliance Platform and ONEKEY Cybersecurity Experts.
euromarcom public relations GmbH
+49 611 973 150