Software-only automatic OT asset discovery that scales

Identify and inventory your digital OT assets with unprecedented fidelity, but without installing a ton of hardware sensors

The first generation of ICS Detection products rely on “passive sniffing” to infer asset identity and configuration. Not only is that unreliable — think about guessing device make & model by MAC address. It is also costly because hardware appliances and discovery networks need to be installed all over the place. It simply doesn’t scale.

OTbase by Langner brings proven IT asset discovery technology (targeted and credentialed device queries) to OT, using OT’s dedicated protocols such as Ethernet/IP, Modbus, Profinet, and others.

Now you can discover OT devices just like IT asset management products used to for the IT side. All that using a small-footprint, software-only technology that supports routing and slashes deployment cost.

OTbase Discovery automatically discovers:

– Hardware make & model

– Installed operating system or firmware version

– Serial number

– Installed software applications & versions

– Installed security patches

– Network topology

– I/O modules installed on the PLC or RTU backplane

– Decentral field buses & peripherals “behind” PLCs

Secure de-central asset discovery with 24h update cycles

The unique discovery technology used by OTbase allows you to securely inventory thousands of networks with 24h accuracy. A swarm of autonomous discovery nodes (no appliances, no agents) that are embedded in your process network periodically probe your devices for configuration changes. Results are sent outbound to OTbase Inventory as an encrypted file. This way you don’t have to open firewalls for inbound traffic, and you can even discover behind data diodes and DMZs.

 

“Passive monitoring will not be used to create and maintain an asset inventory.

Approaches like Langner’s active communication with the devices, combined with manual entry and adjustment, is what will lead to the single source of truth asset inventory.”

Dale Peterson

Digital Bond, S4xEvents

  • NSecure de-centralized architecture
  • NNo hardware appliances
  • NSelective probing
  • NRemote discovery
  • NAutomatic 24h update cycle
  • NNo software agents necessary

OTbase Discovery platform variants

OTbase Discovery is available for different deployment scenarios. Pick the version(s) that suit you best.

Windows Non-Agent

The classic and often most economic way of discovering your OT devices. Runs as a service on a suitable Windows box such as an engineering system and can discover devices in all local networks, as well as in remote networks that you can route into.

Download >

Windows Agent

A limited version of Discovery that only discovers the configuration of the local Windows box it is running on. This variant is suitable for situations where it is difficult or impossible to reach your Windows endpoints via WinRM or WMI.

Windows USB based

A limited version of Discovery that only discovers the configuration of the Windows box it is running on but doesn’t need to be installed on the target computer. You run it from a USB stick, and discovery results are stored on that same USB stick for later upload to OTbase Inventory.

Linux

The standalone, network based version of OTbase Discovery for Linux hosts.

Docker

Containerized version of OTbase Discovery. Runs, for example, on contemporary IoT devices.

Raspberry Pi

The standalone, network based version of OTbase Discovery for Raspberry Pi.

Learn about OTbase Discovery from these videos:

Enterprise-grade OT asset management software