Kaspersky confirms rumoured critical industry OS

Russian antivirus firm Kaspersky has unveiled its plans to build an operating system designed to thwart cyber attacks on industrial control systems (ICS) that are employed in critical infrastructure operations.

The company on Tuesday gave a lengthy explanation of the conditions -- including highly publicised malware such as Stuxnet, Duqu, Flame - which have demanded the creation of a “written from scratch” secure operating system.

Although Kaspersky does not share any details about the system itself, the main feature of its in-development OS is that it has the “categorical impossibility of running on it undeclared functionality”.

Critical infrastructure providers supposedly need this because all software inevitably contains vulnerabilities, which can be exploited, meaning that any components of ICS can be infected, according to Kaspersky. This could lead to a system malfunction of the type Iran’s Natanz nuclear facility is said to have experienced.

Engineers need visibility into background processes and the power to shut systems down when the time calls for it, according to Kaspersky.

“For the secure operation of industrial/infrastructural installations it is vitally important for an engineer to be able to obtain reliable information from the operation/process management system - so as to be able to control the operational processes based on that information. This permits avoiding mistakes in controlling the processes, and helps – where necessary – to shut them down in time and avert disaster.”

Until now, Kaspersky has only described the product in development as a “solution” for ICS. In August, after it was reported the company was recruiting engineers to build its ICS product, it issued the following statement to media:

"The recent Stuxnet, Duqu and Flame attacks raise the stakes still higher. These incidents demonstrate the existence of well-funded and perfectly organized cyberwarfare units. Not only can they steal sensitive data from businesses and governments, they can also cause physical damage to this infrastructure – with alarmingly unpredictable consequences.

"Kaspersky Lab confirms it is developing a dedicated security solution for industrial control systems. Due to the specifics of this project, we are not ready to reveal further details yet."

Today, Kaspersky says that a new security system is needed to oversee all aspects of ICS software without necessarily replacing them.

“It’s a security system that takes into account the whole complex of performance indicators of industrial operations/ processes, or of an overall industrial system, and prevents major malfunctions resulting from incorrect actions of an engineer, from mistakes in ICS software, or from cyber-attacks. Besides, such a system can complement traditional industrial safety systems, adding the ability to monitor more complex incidents.”

Follow @CSO_Australia and sign up to the CSO Australia newsletter.

Join the CSO newsletter!

Error: Please check your email address.
Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by Liam Tung

Latest Videos

  • 150x50

    CSO Webinar: The Human Factor - Your people are your biggest security weakness

    ​Speakers: David Lacey, Researcher and former CISO Royal Mail David Turner - Global Risk Management Expert Mark Guntrip - Group Manager, Email Protection, Proofpoint

    Play Video

  • 150x50

    CSO Webinar: Current ransomware defences are failing – but machine learning can drive a more proactive solution

    Speakers • Ty Miller, Director, Threat Intelligence • Mark Gregory, Leader, Network Engineering Research Group, RMIT • Jeff Lanza, Retired FBI Agent (USA) • Andy Solterbeck, VP Asia Pacific, Cylance • David Braue, CSO MC/Moderator What to expect: ​Hear from industry experts on the local and global ransomware threat landscape. Explore a new approach to dealing with ransomware using machine-learning techniques and by thinking about the problem in a fundamentally different way. Apply techniques for gathering insight into ransomware behaviour and find out what elements must go into a truly effective ransomware defence. Get a first-hand look at how ransomware actually works in practice, and how machine-learning techniques can pick up on its activities long before your employees do.

    Play Video

  • 150x50

    CSO Webinar: Get real about metadata to avoid a false sense of security

    Speakers: • Anthony Caruana – CSO MC and moderator • Ian Farquhar, Worldwide Virtual Security Team Lead, Gigamon • John Lindsay, Former CTO, iiNet • Skeeve Stevens, Futurist, Future Sumo • David Vaile - Vice chair of APF, Co-Convenor of the Cyberspace Law And Policy Community, UNSW Law Faculty This webinar covers: - A 101 on metadata - what it is and how to use it - Insight into a typical attack, what happens and what we would find when looking into the metadata - How to collect metadata, use this to detect attacks and get greater insight into how you can use this to protect your organisation - Learn how much raw data and metadata to retain and how long for - Get a reality check on how you're using your metadata and if this is enough to secure your organisation

    Play Video

  • 150x50

    CSO Webinar: How banking trojans work and how you can stop them

    CSO Webinar: How banking trojans work and how you can stop them Featuring: • John Baird, Director of Global Technology Production, Deutsche Bank • Samantha Macleod, GM Cyber Security, ME Bank • Sherrod DeGrippo, Director of Emerging Threats, Proofpoint (USA)

    Play Video

  • 150x50

    IDG Live Webinar:The right collaboration strategy will help your business take flight

    Speakers - Mike Harris, Engineering Services Manager, Jetstar - Christopher Johnson, IT Director APAC, 20th Century Fox - Brent Maxwell, Director of Information Systems, THE ICONIC - IDG MC/Moderator Anthony Caruana

    Play Video

More videos

Blog Posts