Privileged access management for operational technology (OT) including embedded HTTP web applications, SSH, and Remote Desktop.

Secure remote management of devices with Multi-Factor authentication, secure password vaults & brokered authentication

silverhawk-full-logo.png
IMG_20170413_151816_edited_edited_edited_edited.jpg

Dedicated
Secure Access Gateway for Operational Technology adding logging,
time-based access
and secure authentication

ENROLL
FORGOTTEN
DEVICES

Centralise authentication for all devices including outliers that aren't backed by
remote authentication like

Active Directory or RADIUS

Provide instant access to legacy embedded device applications, file transfer and remote management protocols

CENTRALISE
MANAGEMENT

Rapid privileged remote access to OT equipment. Add in-depth logging, multi-factor authentication and attack detection to equipment that is insecure out the box.

Remove the requirement for network access and provide granular access to single devices or groups based on
maintainence time-windows

 

Centralised Zero Configuration authentication for 1000s embedded devices

embedded-login.png

The Silverhawk Gateway sits in between your system administrators and OT technology to broker authentication, network access to ensure authorization and logging of all actions. It was built to tackle the problem of OT / IT assets that are left out of third-party vendor's unified platforms.

Administrators log in to the Silverhawk Gateway, using Multi-Factor Authentication, to view the inventory of devices they are able to access. Engineers & administrators never have access to device credentials or the network.



 

network-diagram.png

Most industrial OT environments comprise of technology from a wide number of vendors. Silverhawk is the first solution to offer a unified gateway through which embedded applications can be managed.

Network switches, access points, CCTV cameras as well as industry specific technologies including ICS, SCADA and IoT sensors.

 

 

SECRETS REMAIN SECRET

All device credentials are stored in an

encrypted password vault, engineers cannot access authentication secrets.

 

Credentials are used by Silverhawk and passed on to the device during authentication.

The authenticated session is passed onto the user's browser

Automation

Common functions such as device backup, firmware update & password cycling can be automated across the estate

Privileged access

Remove direct network access and give permissions based on teams and times.

 

Silverhawk controls all authentication to devices across the network, access is provided only to those who need it.

 

Engineers never access the credentials or the network, only authenticated access to management applications.

http cache

Application files such as CSS, JS & images can be cached to speed up load times of interfaces on devices remote areas

Audit Logs

All device activity is logged including authentication, device interactions and configuration changes.

The Silverhawk OT Gateway only requires network access in order to provide Privileged Access Management to your equipment

Network routes through VPN and jump hosts can be spun up instantly when connecting to remote devices

PROTOCOLS &
DEVICES

The gateway supports the majority of devices as it is built to be vendor agnostic

Tried and tested on devices including Cisco, Panasonic, Moxa, HP and GE for authentication & comms over:

Embedded HTTP Web Apps

SSH

Telnet

Remote Desktop

SMB, TFTP, FTP/SFTP

AGENTLESS

Watch a short demo of some of features of the Silverhawk Gateway

Case Study

Read our story of how we centralised management of Northern Rail's on-board train equipment, improving security and speeding up maintenance.

northern_rail_edited.png

Learn more or schedule a chat

Drop us a message to find out more about rail technology offerings from Modux

Thanks for submitting!