safe
affordable
no TAP | SPAN ports or agents
no device | network impact
50% savings vs. competitors
no TAP | SPAN ports, agents, tuning or multiple appliances
no device crashing or network impact
free to start, 50% savings vs. competitors
IoT News
faq
- Discover, track and identify IoT devices
- Safely detect IoT-specific vulnerabilities that vulnerability scanners often miss
- Summarize IoT inventory and vulnerabilities in the report
Safe on Devices: The IoT-miniTM uses a proprietary non-intrusive technique called PortSafeTM Inspection. Unlike vulnerability scanners, PortSafeTM will not interfere with devices as it discovers, identifies, and does vulnerability detection on devices.
Safe on the Network: Unlike competitve solutions, the IoT-miniTM does not use network TAP/SPAN ports, so there is no addition load on the switch to duplicate packets which can cause network performance issues. Also, the IoT-miniTM generates only a small fraction of traffic vs. network scans.
The Benefit: Now you can safely and confidently discover and vulnerability test sensitive and resource-constrained devices that are excluded from intrusive vulnerability scans, without concern of crashing devices or causing network performance issues.
The IoT-miniTM will only use locally accessible network information protocols to obtain information about local devices to be profiled. As such, no data could be used to identify or attack any customer. The data would be useless without direct access to the network, and direct access to the network would allow access to this information anyway.
The IoT-miniTM will connect to our CloudPortal® a minimum of every 5 minutes to access the updates and databases that help determine what tests to perform for a given device. There is no collection of packets or any potentially sensitive data in any way, not directly to the appliance itself or out to our CloudPortal®. Any data that is retained is stored in the geographic region of the customer’s choosing.
The IoT-miniTM will attempt to communicate with devices to assist in device profiling and vulnerability detection. This communication is minimal, a small fraction of the traffic in comparison to network scanners, and done interatively to avoid any impact to the device or network.
These measures provide assurance to our customers and partners that we will not gather or maintain any of their sensitive or protected information in our systems and that we be safe on the network and to devices.
The Internet of Things (IoT) is a general category of connected devices that do not necessarily meet the classic description of a computer and are commonly designed for a single purpose. Examples of IoT devices include medical devices, HVAC controllers, door access controllers, IP Cameras, Smart TVs, smart watches, and speakers.
Virtually every network, whether a large corporate intranet or a simple home Wi-Fi network, has IoT devices on it. Most are unknown or unmanaged devices and hard to secure, making it challenging to know what IoT is on the network, where they are, where they are communicating, and whether they are vulnerable. Traditional security tools can’t keep up, making dedicated IoT security solutions a critical piece of any enterprise security strategy.
- risky default behavior like creating open services, have hard-coded passwords or data collection and transmission on their own to other devices
- lack built-in security and security patching from the manufacturer
- can’t run endpoint agents or don’t produce logs, so they are hard to monitor
- can’t be scanned for vulnerabilities because they are resource constrained and easily crash
- create Shadow IT problems as they are easily deployed without IT oversight
- Plug in the CAT6 Ethernet cable to a working ethernet port on the network to be scanned
- Plug in the power supply
- Scan the QR code to activate the IoT-miniTM
- Wait 24 hours for the report to be delivered to your inbox
We have a limited supply of IoT-minisTM and they are currently available at no charge. The initial report is currently available free of charge. Restrictions include: 1) You must be an IT employee of a company that: a) has greater than 200 employees, or b) is a value-added reseller, or c) is a managed service provider or d) is a professional security auditor. 2) You will not use the IoT-miniTM or the information it provides for malicious purposes, or to compete in any way with IoT Secure. 3) The IoT-miniTM and any information produced by the IoT-mini must not be used for resell purposes without express, written permission by IoT Secure.
4) The IoT-miniTM is for use on corporate networks. Restrictions are subject to change without notice.
The IoT-miniTM can assess any network environment it’s connected to and activated on. If you need to test additional networks, please contact sales@iotsecure.io.
Once the IoT-mini is connected to a network and activated, it begins inspecting and identifying devices. Within 24-48 hours (depending on the size of the network), you will be contacted to schedule a report review with an engineer.
The IoT-miniTM Pro+ uses the same device as the IoT-miniTM FREE, but it is upgraded to provide automated assessments on an entire corporate network, advanced IoT inventory and vulnerability detection, device-level behavior monitoring, granular configuration options and a real-time dashboard.
The IoT-maxTM is a high capacity, full enterprise-level solution that has all the features as the IoT-miniTM Pro +, but it also provides integration of results into existing tools such as SIEM, NAC, Asset & Vulnerability Management, ITSM, etc.
Please send us an email with your questions to sales@iotsecure.io