The Byos Industrial µGateway
A Secure Gateway Edge
Built for protecting entire fleets of IoT devices, the Byos Secure Gateway Edge is an industrialized µGateway for protecting any type of connected device, providing microsegmentation.
As IoT continues to grow, So Do System Vulnerabilities
IoT devices are used as an entry point into the larger corporate networks, where the most valuable data resides. Legacy IoT devices such as servers, modems, PLCs, controllers, and networked medical devices are especially vulnerable as attack methods increase in sophistication. The lack of IoT device management capabilities also contributes to challenges, including the absence of built-in security monitoring and update management capabilities.
What Byos is solving for customers
Microsegmentation provides network security at the edge, reducing the attack surface
Centralized fleet-wide visibility and threat management of networking assets
Seamless provisioning and secure access to any endpoint, regardless of the network
Remote Access without compromising on Security
Are you curious about how organizations with different types of devices in networks they don’t control are managing and servicing endpoints remotely?
The Byos Secure Lobby™ facilitates secure access without breaking isolation.
Three Modes of Operation
The Industrial µGateway can be used in a number of different use cases and applications
Ethernet-mode for Legacy
and Wired Devices
Client-mode to connect to a pre-existing Wi-Fi Network
Features & Benefits
TCP/IP compatible so no agent or software installation is required on the host device
Zero Touch Deployment
µGateways are automatically enrolled in fleet for immediate security and ease of setup
Reduced Attack Surface
µGateway has a crypto coprocessor, encrypted filesystem, signed binaries, and secure boot
Legacy OS Protection
Technology-agnostic, working with any device regardless of operating system, model, or age
Multi-layered protection with software security mechanisms across OSI Model layers 1-5
Reduced Field Service Time
Secure over-the-air updates to both µGateway and host device firmware and software
Suitable for both wired and wireless-connected IoT devices
Because of its plug and play nature and zero touch deployment, our technology is suitable across a multitude of industries. It helps to secure legacy IT infrastructure without needing to alter the legacy endpoint OS nor changing the local network configuration.
Oil & Gas
Food & Beverage
The Byos Secure Gateway Edge can be deployed with any endpoint that speaks TCP/IP, making it endpoint agnostic.
Key Feature: Byos Secure Lobby
Secure Lobby allows for secure remote access to IoT devices protected by the Byos µGateway. Conventional remote access tools require opening up the perimeter, which adds unnecessary exposure risk to entire corporate networks; Secure Lobby allows for monitoring, troubleshooting, updating, and patching remotely, without exposing internal endpoints to the internet.
The Secure Lobby creates a secure connection between the µGateway and the Byos Management Console using an outbound connection, originating from inside of the corporate network perimeter, as to not interfere with local network configurations. This saves both Network Administrators and Service Technicians time when servicing Byos-protected endpoints remotely.
Additional Challenges being solved with Byos
Securing devices on insecure public and private Wi-Fi networks
Reducing risk of 3rd-party access to endpoints in the network
Enforcing security and compliance for legacy and IoT devices
By leveraging endpoint microsegmentation through hardware-enforced isolation, Byos gives IT and security teams the confidence to protect devices against network threats by minimizing the attack surface and protecting against remote code execution exploits.
If an alternative attack vector compromises a device, the Byos µGateway provides threat containment within the compromised device, preventing lateral network infections from spreading, and preventing ransomware and Denial-of-Service attacks from rendering devices inoperable.
Robust Network Security Protection
The Byos µGateway protects against:
The µGateway detects changes in packet routing to the Internet and takes the necessary actions to prevent any data leakage.
The µGateway maintains direct and confidential communications with the network gateway without allowing the poisoning of routing tables.
The µGateway runs an internal security service to detect directed threats and block fingerprinting, enumeration, DoS and exploit attacks.
Byos runs a bi-directional firewall, offering incoming and outgoing access control based on country-based and protocol-based traffic, restricting specific domain names, IP addresses and ports.
The µGateway runs an in-device encrypted DNS server to prevent DNS hijacking and preserve the confidentiality of the user’s browsing data.
The µGateway detects exponential changes in network traffic volume often triggered by hidden malware running on the user’s device.