Bayshore IT/OT Gateway Product Sheet | Download pdf

Bayshore Pallaton™ software is the policy creation and enforcement engine inside the Bayshore IT/OT Gateway.

Pallaton augments the Bayshore appliances in IT and OT networks because it can inspect and filter industrial protocols and applications down to the machine transaction level.  Pallaton is based on XML, which means it can rapidly adapt to new and proprietary protocols. This extensibility represents a huge market advantage in industrial settings – SCADA controls alone encompass hundreds of different protocols.

Bayshore Pallaton uses a predicate-based language, which means it’s easy to create new policies or customize existing policies. In industrial settings it is typically used to create and enforce security, operational and safety policies.

Global Policy

Pallaton is an ideal platform for globally enforcing business rules that are expressed in terms of content and context. Context-aware policy objects can be written once and then distributed to Bayshore virtual machines and appliances, simply by applying it to streams of network device data.

Your Bayshore appliances will automatically change as your network changes. This allows you to keep pace with rapid network topology changes, which occur although your business rules and business posture remain the same. With Pallaton, your policy enforcement and management is expressed uniformly across multiple device types and security categories (firewalls, app security, et al). This enables you to bridge the gap between local policy development and enterprise-wide enforcement.

Pallaton coordinates and synchronizes policy objects created by people in different security functions. Significantly, it also enables different teams to develop policy objects that meet their own objectives. Pallaton policy is powerful enough to express the requirements of different security functions. Pallaton works in terms of actual wire protocols, and the XML-based system is extensible.

Policy-Driven Cybersecurity

By rapidly establishing and enforcing control policies, Pallaton enables you to control your controls. Unlike legacy industrial firewalls, which are limited to security, Pallaton encompasses security and operational policy enforcement. Its Policy-Driven Security enforces operational policies on your equipment across three critical areas:

  1. Security. Pallaton detects and blocks malicious traffic, averting obvious attacks. It utilizes out-of-the box detection and signature recognition.
  2. Operations. Bayshore partners with equipment vendors to determine how their equipment should be operated. We then bake that intelligence into our rules and policies.
  3. Business rules. This includes the plant’s business operations constraints, such as authorizations, times-of-day constraints, etc.

Multiple assembly lines or operations plants can be controlled with one set of redundant Bayshore IC appliances, with a single point of management. This includes but is not limited to controls such as robot speeds, vessel pressure and temperatures, automated timings, etc.

This comprehensive capability helps you more ably protect your physical assets from being operated in an unsafe or inappropriate manner. For example, it helps you avert the scenario in which malicious attackers or unknowing employees could apply controls to industrial equipment that would be costly and operationally destabilizing.

Operational, Safety and Security Policy

Bayshore Pallaton is designed to create and enforce the following types of policies:

Operational policy defines how you manage your assets and processes to ensure operations that are reliable, cost-effective, energy-efficient, and compliant with laws, regulations and standards.

Security policy defines how you protect your physical assets and business processes from being compromised by rogue insiders, unauthorized users, hackers, and other adversaries.

Safety policy is a third crucial policy consideration, and arguably the most important in Operational Technology and Industrial Controls environments. Safety policy defines how you manage assets and processes to ensure the safety of your employees, your customers, the public, and the environment.