cerrar
cerrar
Su red del mañana
Su red del mañana
Planifique su camino hacia una red más rápida, más segura y más resistente diseñada para las aplicaciones y los usuarios a los que da soporte.
          Descubra Netskope
          Get Hands-on With the Netskope Platform
          Here's your chance to experience the Netskope One single-cloud platform first-hand. Sign up for self-paced, hands-on labs, join us for monthly live product demos, take a free test drive of Netskope Private Access, or join us for a live, instructor-led workshops.
            Líder en SSE. Ahora es líder en SASE de un solo proveedor.
            Líder en SSE. Ahora es líder en SASE de un solo proveedor.
            Netskope debuta como Líder en el Cuadrante Mágico™ de Gartner® para Single-Vendor SASE
              Protección de la IA generativa para principiantes
              Protección de la IA generativa para principiantes
              Learn how your organization can balance the innovative potential of generative AI with robust data security practices.
                Modern data loss prevention (DLP) for Dummies eBook
                Prevención moderna de pérdida de datos (DLP) para Dummies
                Get tips and tricks for transitioning to a cloud-delivered DLP.
                  Libro SD-WAN moderno para principiantes de SASE
                  Modern SD-WAN for SASE Dummies
                  Deje de ponerse al día con su arquitectura de red
                    Entendiendo dónde está el riesgo
                    Advanced Analytics transforms the way security operations teams apply data-driven insights to implement better policies. With Advanced Analytics, you can identify trends, zero in on areas of concern and use the data to take action.
                        Los 6 casos de uso más convincentes para el reemplazo completo de VPN heredada
                        Los 6 casos de uso más convincentes para el reemplazo completo de VPN heredada
                        Netskope One Private Access is the only solution that allows you to retire your VPN for good.
                          Colgate-Palmolive Salvaguarda su "Propiedad Intelectual" con Protección de Datos Inteligente y Adaptable
                          Colgate-Palmolive Salvaguarda su "Propiedad Intelectual" con Protección de Datos Inteligente y Adaptable
                            Netskope GovCloud
                            Netskope logra la alta autorización FedRAMP
                            Elija Netskope GovCloud para acelerar la transformación de su agencia.
                              Let's Do Great Things Together
                              La estrategia de venta centrada en el partner de Netskope permite a nuestros canales maximizar su expansión y rentabilidad y, al mismo tiempo, transformar la seguridad de su empresa.
                                Soluciones Netskope
                                Netskope Cloud Exchange
                                Netskope Cloud Exchange (CE) provides customers with powerful integration tools to leverage investments across their security posture.
                                  Soporte técnico Netskope
                                  Soporte técnico Netskope
                                  Nuestros ingenieros de soporte cualificados ubicados en todo el mundo y con distintos ámbitos de conocimiento sobre seguridad en la nube, redes, virtualización, entrega de contenidos y desarrollo de software, garantizan una asistencia técnica de calidad en todo momento
                                    Vídeo de Netskope
                                    Netskope Training
                                    La formación de Netskope le ayudará a convertirse en un experto en seguridad en la nube. Estamos aquí para ayudarle a proteger su proceso de transformación digital y aprovechar al máximo sus aplicaciones cloud, web y privadas.

                                      The Security Implications of A Digital Twin

                                      Jan 24 2023

                                      What are the security risks of digital twins?

                                      Digital twins are digital replicas of physical assets, processes, and systems, and they are used to perform simulations and analysis to optimise the real-world performance of those assets, processes, or systems. They have become increasingly popular in many industries, including manufacturing, healthcare, and transportation. However, as digital twins become more prevalent, it is important to consider the cybersecurity implications of these technologies.

                                      One of the main risks associated with digital twins is that they can provide cyber criminals with a new way to access and exploit sensitive information. For example, a digital twin of a manufacturing facility could provide attackers with detailed information about the layout, equipment, and processes used in the facility. This information could be used to plan and execute a targeted cyber attack.

                                      Digital twins could also be used by cyber criminals as a way to access and attack the physical assets they are modeled after. For example, a digital twin of a power plant could be used to gain unauthorised access to the controls of the plant, potentially causing damage or disruption—in the worst scenarios disrupting essential services, harming humans, animals, or the environment.

                                      How can organisations secure their digital twins?

                                      To mitigate these risks, organisations must take a proactive approach to securing their digital twins. These systems are complex, and it is insufficient to look at them in a linear way, as though they are isolated pieces roughly stitched together. Such an approach will always produce suboptimal protections. Of course, and as with any system, robust authentication, authorisation, and access should be part of the basic cyber hygiene regime, but securing a digital twin requires more.

                                      STAMP is a model for identifying the causes of accidents that uses systems theory and systems thinking. Developed by Nancy Leveson at MIT, it takes into account a wide range of factors that can contribute to accidents, such as software, human decision-making, new technology, organisational and social factors, and the overall safety culture. It is particularly useful for analysing complex systems where these factors are becoming increasingly important. When used for incident planning purposes with digital twins, it does a good job of analysing risk with awareness that the physical side of a digital twin is more than a sum total of individual parts.

                                      Security professionals who have digital twin security concerns should ensure that they are not ignoring the purpose of the system, and they also need to capture the worst outcomes of a potential attack. And this needs to be done in detail, including consideration for questions such as: 

                                      • What does the hierarchy of controllers (systems, humans, policies, and even regulations) and their interactions look like? 
                                      • Where are the vulnerabilities and how can they be exploited? 
                                      • What steps can be taken to avoid/reduce the negative impact of an incident?

                                      How to set up digital twin systems prevention protocols

                                      Prevention is better than a cure, but organisations should plan for both. A robust incident response plan that includes procedures for detecting, responding to, and recovering from cyber attacks is essential. This plan should be regularly tested and updated to ensure that it remains effective in the event of a real-world incident.

                                      It is important to conduct regular penetration testing on digital twin systems to identify and address vulnerabilities before they can be exploited by attackers. This can be done by simulating cyber attacks on the digital twin systems, and then evaluating the system’s response and identifying any weaknesses that need to be addressed. And digital twin systems should be properly segmented and isolated from other systems and networks. This limits the potential impact of a successful cyber attack on the digital twin systems, and prevents the attacker from moving laterally and accessing other sensitive data or systems.

                                      Digital twin technology is powerful, and their growing popularity reflects the value that they can bring. However, they also introduce new cybersecurity risks that must be addressed. Organisations must take a proactive approach to securing their digital twin software and must implement robust security measures to protect against cyber attacks. By doing so, they can better ensure the safety and security of their digital twin systems and the physical assets they represent.If you’d like to learn more, listen to the recent episode on the Security Visionaries podcast where Mike Anderson, David Fairman, and I discuss digital twins, the industrial metaverse, and more.

                                      author image
                                      Ilona Simpson
                                      Ilona Simpson serves as CIO EMEA. A seasoned CIO, she brings over 20 years’ experience initiating and leading the implementation of new business technology strategies.
                                      Ilona Simpson serves as CIO EMEA. A seasoned CIO, she brings over 20 years’ experience initiating and leading the implementation of new business technology strategies.

                                      ¡Mantente informado!

                                      Suscríbase para recibir lo último del blog de Netskope