TXOne Networks | Stellar

• Monitor StellarProtect/StellarProtect (Legacy Mode) agent status
• Examine connection status
• View configurations
• Collect agent logs on-demand or by policy (Legacy Mode only)
• Turn agent Application Lockdown on or off
• Enable or disable agent Device Control
• Configure agent Maintenance Mode settings
• Update agent components
• Initialize the Approved List
• Deploy agent patches
• Add trusted files and USB devices
• Export agents' information
• Import/Export agents' configuration settings or Approved List (Legacy Mode only)

StellarProtect™ / StellarProtect (Legacy Mode), using the single-agent design that delivers seamless asset-centric protection and ensures coverage for modern CPS and legacy OT devices throughout their entire asset lifecycle. The lightweight unified agent simplifies security by combining CPS Detection and Response (CPSDR), threat prevention, operations lockdown, and device control.

CPSDR: Embodied within the advanced Operations BehaviorAnomaly Detection feature, which establishes a unique baselinefingerprint of each agent-device during practicable operating statesand performs fingerprint deviation analysis by means of anexpansive industrial application repository and ransomwaredetection engine to defend against unexpected changes that mayimpact stability.

Moreover, TXOne Stellar brings the contextualization of securityinto an operation-led view to allow both the operation and securityteams to achieve their goals without needing to compromise. Toillustrate, if a device suddenly tried to start launching differentapplications, it would be blocked from doing so.From the operation view, this may be an unplanned auto-updatethat, if run, would take the device offline to reboot. From a security view, this could be an attempt to access an encryption library that isabout to be used to execute ransomware. By applying the operationcontext, both security and operation-initiated changes can bedetected, and appropriate responses are taken.In both cases, CPSDR stopped the event before it could occur. Thesecurity team followed up and resolved the ransomware infection ina different part of the environment. The operation team scheduledthe required update for during an upcoming planned maintenance

Multi-Method Threat Prevention: Provides advanced threat scan onthe basis of ICS root of trust and operations-focused machinelearning to secure the agent-devices against known and unknownmalware threats without compromising operational availability.
Operations Lockdown: For fixed-function and devices with limited patching availability, operations lockdown enforcement prohibitsunauthorized changes, including alterations to registry andfunction parameters.
Trusted Peripheral Control: Unauthorized access from externalsources, such as USB devices, is configurable and controlled toreduce physical access threats.

Leveraging an expansive ICS application and certificate library and exclusive ransomware detection engine, TXOne Stellar maintains CPS operational integrity through behavioral anomaly detection and eliminates configuration drift for legacy and fixed-use assets with device lockdown. Security teams can confidently deliver detection and response outcomes across the OT terrain, with TXOne Stellar effectively secure organization's security posture while maintaining its business operations stability.