Subex and Telefónica partner on IoT cyber security

  • October 21, 2020
  • Steve Rogerson

ElevenPaths, Telefónica’s cyber-security company, aims to protect IoT and converged environments through a partnership agreement with Indian firm Subex by offering its IoT threats detection service worldwide.

This monitoring and incident response service will leverage machine learning and specific IoT and OT threat intelligence techniques to profile the behaviour of IoT devices and associated networks, thereby making it possible to detect and respond to anomalies or cyber attacks that may affect the different end-to-end elements in IoT, such as devices, communication network or service platforms.

The service is fed by a global network of honeypots – decoy systems designed to be the target of an attack to detect it and obtain more information – specialised in IoT and OT. This network is distributed throughout the world in over 60 locations and covers more than 500 different architectures, processing on average ten million cyber attacks every day.

Spanish firm Telefónica’s experience in network management enables the access to traffic information that will be analysed later using Subex’s capabilities. Moreover, customers can receive all benefits of a managed service through the Telefónica operations expertise, relaying on ElevenPaths’ security operations centre, which has locations in eleven centres and is supported by experts trained in this technology.

“The vast majority of our customers from almost any sector we focus on have launched − or will launch in the short term − projects and initiatives where IoT technologies are the key,” said Alberto Sempere, product director at ElevenPaths. “While the possibilities in terms of new services and efficiency improvements are huge, they also mean greater exposure to security risks that need to be properly managed. This agreement with Subex allows us to provide a best-in-class monitoring and incident response service for IoT environments.”

The IoT threat detection addresses several IoT issues:

  • Increased discoverability and visibility of the IoT devices that are part of the infrastructure as well as the organisations’ services, to gain an understanding of their legitimate behaviour.
  • Holistic protection of organisations, where IoT devices must be seen as an increasingly significant part of the whole infrastructure to be protected. Most of the time, these elements may be the weakest link due to their dispersion, their physical accessibility, and the inexistence or deficiency of security controls.
  • The need to have the capability to escalate to the dimensions required by IoT infrastructures, as well as having sources and mechanisms to generate specific cyber intelligence in this field that guarantees the effectiveness and reliability of the detection systems.

Being agentless, there is no need to install software on the IoT devices. Given the IoT intrinsic dimension and the limited resources associated with many of these devices, this is an advantage. Also, as the analysis is performed over a copy of the traffic, it does not impact the original traffic of the IoT service or its SLAs at any time.

“Our partnership with ElevenPaths is built around affording businesses a new class of enterprise security that spans environments, devices, cyber-security strategies, and regional and global threats to deliver true cyber resilience that is deep, robust and sustainable,” said Kiran Zachariah, vice president at Subex. “We are excited by the possibilities that this alliance brings forth specifically in areas such as jointly equipping businesses to deal with the existing and emerging cyber threats with a high level of confidence and assurance.”

Founded in 1994, Subex has spent more than 25 years helping global communications service providers increase their revenues and profitability. The company has more than 300 installations across 90 countries.