Honeywell Threat Defense Platform Gets
Autonomous Deception Tech
January 11, 2021
launched a new solution designed to detect known and unknown (zero-day) attacks
across the operational technology (OT) environments in commercial buildings.
Honeywell Threat Defense Platform (HTDP) powered by Acalvio employs
sophisticated active defense – featuring autonomous deception tactics to
outsmart attackers – and provides high fidelity threat detection. Honeywell's
technology features an approach recommended by governments and cybersecurity
standard bodies because of its ability to detect and control attacks.1
Traditionally, building OT environments rely on prevention technology and
passive detection such as perimeter security and network traffic analysis to
secure systems. Yet, more than 1 in 4 (27%) surveyed facility managers
experienced a cyber breach of their OT systems in the last 12 months, according
to a recent survey conducted by Honeywell Building Technologies. Threat actors
continue to target building systems with both targeted attacks and ransomware
attacks. These attacks can go beyond accessing private customer data and may
potentially impair the operations for critical organizations that keep society
running such as utilities, data centers, hospitals and airports.
Building owners and operators need to rigorously monitor, maintain and protect
their OT environments.
HTDP uses deception tactics to confuse and mislead threats away from critical
assets and devices, resulting in low false alerts and a high rate of detection.
The solution leads threat actors to decoy assets, which appear to be valuable OT
and IT devices; however, none of the devices are real and there is no access to
the enterprise assets. The solution makes real, critical operational devices
harder to find, slowing down adversaries and helping security teams capture them
"The quantity and complexity of cyberattacks unfortunately are increasing every
day, reinforcing the need for building owners and operators to rigorously
monitor, maintain and protect their OT environments," said Mirel Sehic, global
director of cybersecurity, Honeywell Building Technologies. "Incorporating
Acalvio's autonomous deception technology into our OT cybersecurity toolbelt
provides a highly effective solution to help protect our customers' buildings
from increasingly sophisticated attacks."
Powered by Acalvio's breakthrough deception technology, HTDP incorporates
design-, intent- and industry-specific knowledge into a seamless workflow to
deploy effective deception across distributed enterprise OT networks. Using
specially crafted deception elements, HTDP also helps detect ransomware and even
zero-day variants with precision and speed. HTDP uses advanced analytics to
confirm and investigate threats.
excited to work with Honeywell to secure and keep building OT systems properly
operating while also protecting the people and data throughout an organization,"
said Ram Varadarajan, co-founder and CEO, Acalvio Technologies. "Importantly,
this technology is something that can benefit every building and facility –
especially those that do not have teams of cyber experts. It requires no prior
knowledge of attacker tactics and can be deployed without special training or
modifications to existing OT environments."
The HTDP solution includes deployment and ongoing monitoring, freeing up
internal security team resources. Advanced artificial intelligence makes the
service easy to use and scalable. HTDP is well-suited for organizations that
desire advanced intrusion detection in their building network without having to
install or operate complex technology. HTDP can be deployed across both IT and
OT environments as either an on-premises offering or cloud service.
Honeywell is committed to simplifying the cybersecurity equation for customers.
This new offering also helps customers improve their resilience and business
continuity efforts to help meet their environmental, social and governance (ESG)
goals. Honeywell's relationship with Acalvio includes investment by Honeywell
Ventures to further support the development of the latest cybersecurity
solutions and disruptive technologies.