Background
Over the past decade, critical control equipment has become increasingly interconnected using networking technologies such as Ethernet, TCP/IP and Web Services. Connecting control devices to a network provides many benefits, including remote management, monitoring and increased information flow, but also exposes the control devices to malicious attacks from malware and hackers. Attacks from any one of these sources can enter and then propagate through the control network to negatively impact communications and process control.
Cyber security is now a growing concern in the critical control industry. Both industry and government are pressing for regulatory and security compliance requirements to be met, as worries escalate that critical control systems could be used as a means for malicious attacks. To meet these requirements, control device manufacturers must rigorously test their devices to assure partners, customers and auditors that the equipment is secure. Asset owners, who purchase the control devices, must be confident that integrating a particular control device into a network will not introduce any vulnerabilities.
The Achilles Test Platform was launched in 2008 to provide a solution to the lack of rigorous vulnerability testing available for control devices. It is an automated testing solution that assesses known and unknown vulnerabilities and cyber security threats to any Ethernet-based device used in critical control systems.
The Achilles uses automated grammar-based testing and stateful packet generation to test for cyber security threats that impact the performance and integrity of a device. It also tests the implementation of common industrial protocols and available proprietary protocols. Third-party test tools can be integrated with the Achilles. Each Achilles test generates performance statistics and measurements that can be used to assess the robustness of the tested device.
In addition to testing the security of existing control devices, the Achilles can be used by control device manufacturers to expedite the QA cycle when developing new devices. It can be used to identify and address critical vulnerabilities in a device, to generate network tests and to validate resource allocation and redundancy mechanisms.
Asset owners can use the Achilles to investigate the security of deployed devices, to ensure the integrity of security patches and to evaluate the impact of system upgrades or modifications. Moreover, it can be used to generate periodic reports for compliance purposes.
Meet Our Team
Ashish Dharnidharka
General Manager
As the driving force behind Wurldtech, Ashish brings a wealth of experience and a passion for innovation to the company. With a deep understanding of technology and business strategy, he has been instrumental in shaping Wurldtech into a leader in assessment of control devices in critical control systems.Under Ashish’s guidance, Wurldtech is committed to delivering cutting-edge solutions, fostering a culture of collaboration, and pushing the boundaries of what’s possible. With a strong belief in security, innovation, customer-centricity, Ashish ensures that every decision made aligns with the company’s mission to provide a best-in-class solution for the testing of control devices.
Beyond leading the company, Ashish is a visionary who inspires teams to think big, embrace challenges, and drive meaningful impact in the industry.
Background
Over the past decade, critical control equipment has become increasingly interconnected using networking technologies such as Ethernet, TCP/IP and Web Services. Connecting control devices to a network provides many benefits, including remote management, monitoring and increased information flow, but also exposes the control devices to malicious attacks from malware and hackers. Attacks from any one of these sources can enter and then propagate through the control network to negatively impact communications and process control.
Cyber security is now a growing concern in the critical control industry. Both industry and government are pressing for regulatory and security compliance requirements to be met, as worries escalate that critical control systems could be used as a means for malicious attacks. To meet these requirements, control device manufacturers must rigorously test their devices to assure partners, customers and auditors that the equipment is secure. Asset owners, who purchase the control devices, must be confident that integrating a particular control device into a network will not introduce any vulnerabilities.
The Achilles Test Platform was launched in 2008 to provide a solution to the lack of rigorous vulnerability testing available for control devices. It is an automated testing solution that assesses known and unknown vulnerabilities and cyber security threats to any Ethernet-based device used in critical control systems.
The Achilles uses automated grammar-based testing and stateful packet generation to test for cyber security threats that impact the performance and integrity of a device. It also tests the implementation of common industrial protocols and available proprietary protocols. Third-party test tools can be integrated with the Achilles. Each Achilles test generates performance statistics and measurements that can be used to assess the robustness of the tested device.
In addition to testing the security of existing control devices, the Achilles can be used by control device manufacturers to expedite the QA cycle when developing new devices. It can be used to identify and address critical vulnerabilities in a device, to generate network tests and to validate resource allocation and redundancy mechanisms.
Asset owners can use the Achilles to investigate the security of deployed devices, to ensure the integrity of security patches and to evaluate the impact of system upgrades or modifications. Moreover, it can be used to generate periodic reports for compliance purposes.
Meet Our Team
Ashish Dharnidharka
General Manager
As the driving force behind Wurldtech, Ashish brings a wealth of experience and a passion for innovation to the company. With a deep understanding of technology and business strategy, he has been instrumental in shaping Wurldtech into a leader in assessment of control devices in critical control systems.
Under Ashish’s guidance, Wurldtech is committed to delivering cutting-edge solutions, fostering a culture of collaboration, and pushing the boundaries of what’s possible. With a strong belief in security, innovation, customer-centricity, Ashish ensures that every decision made aligns with the company’s mission to provide a best-in-class solution for the testing of control devices.
Beyond leading the company, Ashish is a visionary who inspires teams to think big, embrace challenges, and drive meaningful impact in the industry.