fermer
fermer
Le réseau de demain
Le réseau de demain
Planifiez votre chemin vers un réseau plus rapide, plus sûr et plus résilient, conçu pour les applications et les utilisateurs que vous prenez en charge.
          Essayez Netskope
          Get Hands-on With the Netskope Platform
          Here's your chance to experience the Netskope One single-cloud platform first-hand. Sign up for self-paced, hands-on labs, join us for monthly live product demos, take a free test drive of Netskope Private Access, or join us for a live, instructor-led workshops.
            Un leader sur SSE. Désormais leader en matière de SASE à fournisseur unique.
            Un leader sur SSE. Désormais leader en matière de SASE à fournisseur unique.
            Netskope fait ses débuts en tant que leader dans le Magic Quadrant™ de Gartner® pour le SASE à fournisseur unique.
              Sécuriser l’IA générative pour les nuls
              Sécuriser l’IA générative pour les nuls
              Learn how your organization can balance the innovative potential of generative AI with robust data security practices.
                Modern data loss prevention (DLP) for Dummies eBook
                La prévention moderne des pertes de données (DLP) pour les Nuls
                Get tips and tricks for transitioning to a cloud-delivered DLP.
                  Réseau SD-WAN moderne avec SASE pour les nuls
                  Modern SD-WAN for SASE Dummies
                  Cessez de rattraper votre retard en matière d'architecture de réseau
                    Identification des risques
                    Advanced Analytics transforms the way security operations teams apply data-driven insights to implement better policies. With Advanced Analytics, you can identify trends, zero in on areas of concern and use the data to take action.
                        Les 6 cas d'utilisation les plus convaincants pour le remplacement complet des anciens VPN
                        Les 6 cas d'utilisation les plus convaincants pour le remplacement complet des anciens VPN
                        Netskope One Private Access is the only solution that allows you to retire your VPN for good.
                          Colgate-Palmolive protège sa "propriété intellectuelle" "grâce à une protection des données intelligente et adaptable
                          Colgate-Palmolive protège sa "propriété intellectuelle" "grâce à une protection des données intelligente et adaptable
                            Netskope GovCloud
                            Netskope obtient l'autorisation FedRAMP High Authorization
                            Choisissez Netskope GovCloud pour accélérer la transformation de votre agence.
                              Let's Do Great Things Together
                              La stratégie de commercialisation de Netskope privilégie ses partenaires, ce qui leur permet de maximiser leur croissance et leur rentabilité, tout en transformant la sécurité des entreprises.
                                Solutions Netskope
                                Netskope Cloud Exchange
                                Netskope Cloud Exchange (CE) provides customers with powerful integration tools to leverage investments across their security posture.
                                  Support technique de Netskope
                                  Support technique de Netskope
                                  Nos ingénieurs d'assistance qualifiés sont répartis dans le monde entier et possèdent des expériences diverses dans les domaines de la sécurité du cloud, des réseaux, de la virtualisation, de la diffusion de contenu et du développement de logiciels, afin de garantir une assistance technique rapide et de qualité
                                    Vidéo Netskope
                                    Formation Netskope
                                    Grâce à Netskope, devenez un expert de la sécurité du cloud. Nous sommes là pour vous aider à achever votre transformation digitale en toute sécurité, pour que vous puissiez profiter pleinement de vos applications cloud, Web et privées.

                                      The Security Implications of A Digital Twin

                                      Jan 24 2023

                                      What are the security risks of digital twins?

                                      Digital twins are digital replicas of physical assets, processes, and systems, and they are used to perform simulations and analysis to optimise the real-world performance of those assets, processes, or systems. They have become increasingly popular in many industries, including manufacturing, healthcare, and transportation. However, as digital twins become more prevalent, it is important to consider the cybersecurity implications of these technologies.

                                      One of the main risks associated with digital twins is that they can provide cyber criminals with a new way to access and exploit sensitive information. For example, a digital twin of a manufacturing facility could provide attackers with detailed information about the layout, equipment, and processes used in the facility. This information could be used to plan and execute a targeted cyber attack.

                                      Digital twins could also be used by cyber criminals as a way to access and attack the physical assets they are modeled after. For example, a digital twin of a power plant could be used to gain unauthorised access to the controls of the plant, potentially causing damage or disruption—in the worst scenarios disrupting essential services, harming humans, animals, or the environment.

                                      How can organisations secure their digital twins?

                                      To mitigate these risks, organisations must take a proactive approach to securing their digital twins. These systems are complex, and it is insufficient to look at them in a linear way, as though they are isolated pieces roughly stitched together. Such an approach will always produce suboptimal protections. Of course, and as with any system, robust authentication, authorisation, and access should be part of the basic cyber hygiene regime, but securing a digital twin requires more.

                                      STAMP is a model for identifying the causes of accidents that uses systems theory and systems thinking. Developed by Nancy Leveson at MIT, it takes into account a wide range of factors that can contribute to accidents, such as software, human decision-making, new technology, organisational and social factors, and the overall safety culture. It is particularly useful for analysing complex systems where these factors are becoming increasingly important. When used for incident planning purposes with digital twins, it does a good job of analysing risk with awareness that the physical side of a digital twin is more than a sum total of individual parts.

                                      Security professionals who have digital twin security concerns should ensure that they are not ignoring the purpose of the system, and they also need to capture the worst outcomes of a potential attack. And this needs to be done in detail, including consideration for questions such as: 

                                      • What does the hierarchy of controllers (systems, humans, policies, and even regulations) and their interactions look like? 
                                      • Where are the vulnerabilities and how can they be exploited? 
                                      • What steps can be taken to avoid/reduce the negative impact of an incident?

                                      How to set up digital twin systems prevention protocols

                                      Prevention is better than a cure, but organisations should plan for both. A robust incident response plan that includes procedures for detecting, responding to, and recovering from cyber attacks is essential. This plan should be regularly tested and updated to ensure that it remains effective in the event of a real-world incident.

                                      It is important to conduct regular penetration testing on digital twin systems to identify and address vulnerabilities before they can be exploited by attackers. This can be done by simulating cyber attacks on the digital twin systems, and then evaluating the system’s response and identifying any weaknesses that need to be addressed. And digital twin systems should be properly segmented and isolated from other systems and networks. This limits the potential impact of a successful cyber attack on the digital twin systems, and prevents the attacker from moving laterally and accessing other sensitive data or systems.

                                      Digital twin technology is powerful, and their growing popularity reflects the value that they can bring. However, they also introduce new cybersecurity risks that must be addressed. Organisations must take a proactive approach to securing their digital twin software and must implement robust security measures to protect against cyber attacks. By doing so, they can better ensure the safety and security of their digital twin systems and the physical assets they represent.If you’d like to learn more, listen to the recent episode on the Security Visionaries podcast where Mike Anderson, David Fairman, and I discuss digital twins, the industrial metaverse, and more.

                                      author image
                                      Ilona Simpson
                                      Ilona Simpson serves as CIO EMEA. A seasoned CIO, she brings over 20 years’ experience initiating and leading the implementation of new business technology strategies.
                                      Ilona Simpson serves as CIO EMEA. A seasoned CIO, she brings over 20 years’ experience initiating and leading the implementation of new business technology strategies.

                                      Restez informé !

                                      Abonnez-vous pour recevoir les dernières nouvelles du blog de Netskope