賜鴻科技 - 資安工具
Solutions
Protect your information
資安工具
OTGuard工控自動化與關鍵基礎設施的終極安全防護方案
Challenges|面臨的挑戰
當今的工業控制自動化系統與關鍵基礎設施(如電力、交通、水資源與石化產業)正在迅速導入數位技術,以提升效率與智慧化程度。然而,這些系統所依賴的網路環境也因此變得越來越複雜,IT(資訊科技)與 OT(營運技術)之間的界線日益模糊,導致原本封閉的控制系統暴露於更大的資安風險之中。
這些混合型環境不僅需面對來自傳統 IT 的惡意攻擊(如勒索病毒、零日漏洞等),也必須考量 OT 設備的長期使用、設備異質性高與缺乏更新能力等挑戰。特別是這些關鍵設施一旦遭受攻擊,往往會對民生、經濟與公共安全造成嚴重影響。因此,現今的工控與基礎設施網路正面臨前所未有的資安威脅,亟需導入具備即時性、可視性與整合能力的資安管理解決方案,以確保營運持續性與系統可用性。
Highlights|獨特亮點
OTGuard 具備高即時性、高可視性,無需變更現有網路環境,亦無須安裝端點常駐程式,即可快速導入防護,並即時呈現 L1–L3 設備行為與資料流,協助快速掌握異常來源與風險脈絡。
OTGuard 同時具備高完整性,可完整覆蓋工控資料流監控,並整合事件管理與聯防機制;亦可結合 Goldilock FireBreak™,在兼顧營運持續性與系統可用性的前提下,強化整體 OT 防護能力。
Features|核心特色
'%3e%3cpath%20d='M36.7167%2013.3191V33.821H41.2866V13.3191C43.9466%2012.3759%2045.8564%209.83584%2045.8564%206.85593C45.8564%203.07635%2042.78%200%2039.0005%200C35.2209%200%2032.1445%203.07635%2032.1445%206.85593C32.1445%209.83584%2034.0543%2012.3759%2036.7144%2013.3191H36.7167Z'%20fill='%230AA6E6'/%3e%3cpath%20d='M18.4355%2023.9172C18.4355%2024.9003%2019.0658%2025.7729%2019.9972%2026.0857L27.5751%2028.6117V33.8189H32.145V26.9629C32.145%2025.9798%2031.5147%2025.1073%2030.5833%2024.7944L23.0053%2022.2685V18.1902C25.6654%2017.247%2027.5751%2014.7069%2027.5751%2011.727C27.5751%207.94744%2024.4988%204.87109%2020.7192%204.87109C16.9396%204.87109%2013.8633%207.94744%2013.8633%2011.727C13.8633%2014.7069%2015.7731%2017.247%2018.4331%2018.1902V23.9148L18.4355%2023.9172Z'%20fill='%230AA6E6'/%3e%3cpath%20d='M57.2812%204.87549C53.5016%204.87549%2050.4253%207.95184%2050.4253%2011.7314C50.4253%2014.7113%2052.3351%2017.2514%2054.9951%2018.1946V22.2728L47.4172%2024.7988C46.4834%2025.1093%2045.8555%2025.9842%2045.8555%2026.9673V33.8233H50.4253V28.6161L58.0033%2026.0901C58.937%2025.7796%2059.565%2024.9047%2059.565%2023.9216V18.1969C62.225%2017.2538%2064.1348%2014.7137%2064.1348%2011.7338C64.1348%207.95419%2061.0585%204.87784%2057.2789%204.87784L57.2812%204.87549Z'%20fill='%230AA6E6'/%3e%3cpath%20d='M13.7119%2025.4409C13.7119%2021.6613%2010.6355%2018.585%206.85593%2018.585C3.07635%2018.585%200%2021.6613%200%2025.4409C0%2028.4208%201.90978%2030.9609%204.56983%2031.904V45.2466C4.56983%2046.5096%205.59293%2047.5327%206.85593%2047.5327H12.3407V42.9629H9.14202V31.9064C11.8021%2030.9633%2013.7119%2028.4232%2013.7119%2025.4432V25.4409Z'%20fill='%230AA6E6'/%3e%3cpath%20d='M71.145%2018.5849C67.3654%2018.5849%2064.2891%2021.6612%2064.2891%2025.4408C64.2891%2028.4207%2066.1988%2030.9608%2068.8589%2031.9039V42.9605H65.6603V47.5303H71.145C72.408%2047.5303%2073.4311%2046.5072%2073.4311%2045.2442V31.9016C76.0911%2030.9585%2078.0009%2028.4184%2078.0009%2025.4384C78.0009%2021.6589%2074.9246%2018.5825%2071.145%2018.5825V18.5849Z'%20fill='%230AA6E6'/%3e%3cpath%20d='M58.803%2038.3906H19.1962C17.9337%2038.3906%2016.9102%2039.4141%2016.9102%2040.6767V62.0042C16.9102%2063.2668%2017.9337%2064.2903%2019.1962%2064.2903H58.803C60.0656%2064.2903%2061.0891%2063.2668%2061.0891%2062.0042V40.6767C61.0891%2039.4141%2060.0656%2038.3906%2058.803%2038.3906Z'%20fill='%230A467B'/%3e%3cpath%20d='M48.7907%2068.8604H29.2083L26.2919%2074.6932C25.9368%2075.4011%2025.9768%2076.2431%2026.3931%2076.9158C26.8094%2077.5884%2027.5455%2078%2028.3381%2078H49.6656C50.4582%2078%2051.192%2077.5908%2051.6106%2076.9158C52.0269%2076.2431%2052.0646%2075.4011%2051.7118%2074.6932L48.7954%2068.8604H48.7907Z'%20fill='%230A467B'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='clip0_1878_1680'%3e%3crect%20width='78'%20height='78'%20fill='white'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e)
工控網路自動偵測
OTGuard 源自資策會資安所核心技術,具備深度 OT 協定解析與異常行為偵測能力,可自動建立設備行為與通訊關聯,協助企業快速掌握工控網路中的設備互動與風險輪廓。
'%3e%3cpath%20d='M67.3626%200H10.6374C4.76195%200%200%204.76195%200%2010.6374V17.729C0%2023.6045%204.76195%2028.3664%2010.6374%2028.3664H67.3626C73.238%2028.3664%2078%2023.6045%2078%2017.729V10.6374C78%204.76195%2073.238%200%2067.3626%200ZM35.4529%2017.7265H17.7265C15.7688%2017.7265%2014.1807%2016.1383%2014.1807%2014.1807C14.1807%2012.223%2015.7688%2010.6348%2017.7265%2010.6348H35.4529C37.4105%2010.6348%2038.9987%2012.223%2038.9987%2014.1807C38.9987%2016.1383%2037.4105%2017.7265%2035.4529%2017.7265ZM60.271%2017.7265C58.3133%2017.7265%2056.7252%2016.1383%2056.7252%2014.1807C56.7252%2012.223%2058.3133%2010.6348%2060.271%2010.6348C62.2286%2010.6348%2063.8168%2012.223%2063.8168%2014.1807C63.8168%2016.1383%2062.2286%2017.7265%2060.271%2017.7265Z'%20fill='%230AA6E6'/%3e%3cpath%20d='M67.3626%2035.4531H10.6374C4.76195%2035.4531%200%2040.2151%200%2046.0905V53.1821C0%2059.0576%204.76195%2063.8196%2010.6374%2063.8196H35.4555V70.9112H14.1807C12.223%2070.9112%2010.6348%2072.4993%2010.6348%2074.457C10.6348%2076.4146%2012.223%2078.0028%2014.1807%2078.0028H63.8168C65.7744%2078.0028%2067.3626%2076.4146%2067.3626%2074.457C67.3626%2072.4993%2065.7744%2070.9112%2063.8168%2070.9112H42.5445V63.8196H67.3626C73.238%2063.8196%2078%2059.0576%2078%2053.1821V46.0905C78%2040.2151%2073.238%2035.4531%2067.3626%2035.4531ZM35.4529%2053.1796H17.7265C15.7688%2053.1796%2014.1807%2051.5914%2014.1807%2049.6338C14.1807%2047.6761%2015.7688%2046.088%2017.7265%2046.088H35.4529C37.4105%2046.088%2038.9987%2047.6761%2038.9987%2049.6338C38.9987%2051.5914%2037.4105%2053.1796%2035.4529%2053.1796ZM60.271%2053.1796C58.3133%2053.1796%2056.7252%2051.5914%2056.7252%2049.6338C56.7252%2047.6761%2058.3133%2046.088%2060.271%2046.088C62.2286%2046.088%2063.8168%2047.6761%2063.8168%2049.6338C63.8168%2051.5914%2062.2286%2053.1796%2060.271%2053.1796Z'%20fill='%230A467B'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='clip0_1878_1699'%3e%3crect%20width='78'%20height='78'%20fill='white'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e)
威脅行為識別
OTGuard 可偵測非標準通訊行為,並進一步呈現攻擊來源、受害設備與攻擊方向,協助使用者建立攻擊事件脈絡,強化對跨層威脅與異常行為的辨識能力。
'%3e%3cpath%20d='M72.0552%200C69.0395%200%2066.4644%201.95875%2065.5092%204.68701H59.5945C58.9799%204.68701%2058.3915%204.93306%2057.958%205.3745L50.5163%2012.9104C47.7983%2011.7718%2044.8731%2011.0409%2041.8145%2010.7948V28.0256C47.3552%2029.1207%2051.5501%2034.0731%2051.5501%2040C51.5501%2042.5184%2050.7926%2044.8607%2049.4943%2046.8074L61.5192%2058.9844C65.8284%2053.868%2068.4321%2047.2368%2068.4321%2040C68.4321%2029.5453%2062.9937%2020.3522%2054.835%2015.1658L60.5544%209.37402H65.5116C66.4668%2012.1023%2069.0395%2014.061%2072.0576%2014.061C75.8856%2014.061%2079.0014%2010.9058%2079.0014%207.02931C79.0014%203.15282%2075.8833%200%2072.0552%200Z'%20fill='%230AA6E6'/%3e%3cpath%20d='M21.0411%205.3745C20.6076%204.93547%2020.0192%204.68701%2019.4046%204.68701H13.4898C12.5322%201.95875%209.95956%200%206.94382%200C3.11579%200%200%203.15523%200%207.03172C0%2010.9082%203.11579%2014.0634%206.94382%2014.0634C9.95956%2014.0634%2012.5346%2012.1047%2013.4898%209.37643H18.447L24.1664%2015.1683C16.6223%2019.9638%2011.4055%2028.1824%2010.6599%2037.6577H27.6752C28.6114%2032.8066%2032.3942%2028.9736%2037.187%2028.0256V10.7948C34.1284%2011.0409%2031.2031%2011.7718%2028.4852%2012.9104L21.0435%205.3745H21.0411Z'%20fill='%230A467B'/%3e%3cpath%20d='M41.8145%2051.9742V69.2049C48.0556%2068.7032%2053.744%2066.1872%2058.2462%2062.2986L46.2213%2050.1216C44.9112%2051.0189%2043.42%2051.6582%2041.8145%2051.9766V51.9742Z'%20fill='%230A467B'/%3e%3cpath%20d='M27.6752%2042.3447H10.6599C11.4031%2051.8201%2016.6199%2060.0386%2024.1664%2064.8342L18.447%2070.626H13.4898C12.5346%2067.8977%209.96194%2065.939%206.94382%2065.939C3.11579%2065.939%200%2069.0942%200%2072.9707C0%2076.8472%203.11579%2080.0024%206.94382%2080.0024C9.95956%2080.0024%2012.5346%2078.0437%2013.4898%2075.3154H19.4046C20.0192%2075.3154%2020.6076%2075.0694%2021.0411%2074.6279L28.4828%2067.092C31.2008%2068.2306%2034.126%2068.9615%2037.1846%2069.2076V51.9769C32.3942%2051.0288%2028.609%2047.1982%2027.6729%2042.3447H27.6752Z'%20fill='%230A467B'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='clip0_1878_1694'%3e%3crect%20width='79'%20height='80'%20fill='white'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e)
場域可視化架構
OTGuard 可呈現普渡架構下的設備分布、行為模式與通訊方向,協助工程師快速判讀通訊是否合理,進一步提升對場域整體安全狀態與設備互動關係的理解。
'%3e%3cpath%20d='M43.6656%2032.6291L38.9077%2035.068C36.8283%2036.1065%2035.2681%2037.8664%2034.5492%2039.9857H26.4313C26.3114%2038.3856%2026.2715%2036.7057%2026.2715%2034.9881C26.2715%2032.2696%2026.3913%2029.7109%2026.631%2027.3096H43.3461C43.5059%2028.9895%2043.6257%2030.7893%2043.6656%2032.6267V32.6291Z'%20fill='%230A467B'/%3e%3cpath%20d='M34.9878%200C20.54%200%208.11291%208.80634%202.7793%2021.3251H21.3483C23.3078%209.44543%2027.906%200%2034.9878%200Z'%20fill='%230A467B'/%3e%3cpath%20d='M48.6278%2021.3251H67.1967C61.8678%208.80164%2049.4407%200%2034.9883%200C42.0653%200%2046.6635%209.45013%2048.6278%2021.3251Z'%20fill='%230A467B'/%3e%3cpath%20d='M20.2607%2034.9882C20.2607%2032.4177%2020.3852%2029.8449%2020.6037%2027.3237H0.871705C0.314848%2029.7955%200%2032.3542%200%2034.9882C0%2036.6869%200.164473%2038.3504%200.399434%2039.9858H20.4134C20.3218%2038.327%2020.2583%2036.6587%2020.2583%2034.9882H20.263H20.2607Z'%20fill='%230A467B'/%3e%3cpath%20d='M34.9919%205.99854C32.5365%205.99854%2029.1977%2011.7927%2027.4473%2021.325H42.5341C40.7837%2011.788%2037.4449%205.99854%2034.9895%205.99854H34.9942H34.9919Z'%20fill='%230A467B'/%3e%3cpath%20d='M33.9943%2045.9843H27.0371C28.5973%2057.1003%2032.3143%2063.9776%2034.9952%2063.9776C35.195%2063.9776%2035.4346%2063.9377%2035.7142%2063.7779C34.5935%2060.5378%2033.9943%2057.1003%2033.9943%2053.5406V45.9819V45.9843Z'%20fill='%230A467B'/%3e%3cpath%20d='M49.5484%2030.1503C50.0278%2030.0705%2050.5071%2030.0305%2050.9888%2030.0305H66.9825C67.9012%2030.0305%2068.8223%2030.1503%2069.6611%2030.4699C69.5413%2029.3891%2069.3416%2028.3505%2069.1019%2027.312H49.3887C49.4686%2028.2307%2049.5085%2029.1917%2049.5484%2030.1503Z'%20fill='%230A467B'/%3e%3cpath%20d='M20.9654%2045.9844H1.79492C6.4166%2059.9011%2019.5368%2069.9762%2034.9879%2069.9762C27.3869%2069.9762%2022.6477%2059.0834%2020.9607%2045.9844H20.9654Z'%20fill='%230A467B'/%3e%3cpath%20d='M76.3391%2040.3991L68.341%2036.3413C67.9181%2036.1299%2067.4529%2036.0171%2066.9806%2036.0171H50.9868C50.5145%2036.0171%2050.047%2036.1299%2049.6264%2036.3413L41.6283%2040.3991C40.6203%2040.9113%2039.9883%2041.9475%2039.9883%2043.0753V53.5452C39.9883%2064.1654%2046.6259%2073.8153%2056.5201%2077.5535C57.312%2077.8495%2058.1484%2078.0023%2058.9825%2078.0023C59.8166%2078.0023%2060.6578%2077.8495%2061.4567%2077.5511C71.3368%2073.8153%2077.9744%2064.1678%2077.9744%2053.5428V43.0777C77.9744%2041.9499%2077.3424%2040.9137%2076.3344%2040.4038L76.3391%2040.3991ZM67.2179%2052.9601L60.0211%2061.0169C59.4501%2061.6537%2058.6371%2062.0155%2057.7819%2062.0155C56.9266%2062.0155%2056.1137%2061.656%2055.5427%2061.0169L50.7448%2055.6457C49.6452%2054.4098%2049.7486%2052.5137%2050.9845%2051.4117C52.225%2050.3074%2054.1188%2050.4132%2055.2232%2051.6514L57.7866%2054.5179L62.7443%2048.9634C63.8509%2047.7275%2065.7423%2047.6242%2066.9829%2048.7238H66.9782C68.2141%2049.8281%2068.3175%2051.7219%2067.2179%2052.9578V52.9601Z'%20fill='%230AA6E6'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='clip0_1878_1715'%3e%3crect%20width='77.9789'%20height='78'%20fill='white'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e)
行為與事件分析
OTGuard 可針對跨層行為進行判讀,呈現行為分類、控制流程與資料流向,並從事件中推估可能風險與操作目的,提供更完整的事件分析與追溯能力。
網路狀態監控
OTGuard 可透過封包分析呈現七大行為與事件,並以趨勢變化與異常峰值協助管理者掌握整體風險狀態,同時支援多場域、多產線的統一管理視角與 OT 風險健診。
'%3e%3cpath%20d='M55.0592%2022.9412V0H27.5298V27.5294C35.0202%2027.5294%2041.6811%2031.1364%2045.8705%2036.7059H68.8239V41.2941H48.5525C49.1912%2042.7526%2049.683%2044.2869%2050.0085%2045.8824H68.8239V50.4706H50.471C50.471%2052.0416%2050.3119%2053.5759%2050.0085%2055.0588H68.8239V59.6471H48.5525C45.0042%2067.7419%2036.9167%2073.4118%2027.5273%2073.4118V78H77.9979V22.9412H55.0568H55.0592ZM68.8239%2068.8235H50.471V64.2353H68.8239V68.8235ZM34.4134%2022.9412V9.17647H48.1781V22.9412H34.4134ZM68.8264%2032.1176H48.1781V27.5294H68.8264V32.1176Z'%20fill='%230A467B'/%3e%3cpath%20d='M39.002%2013.7646H43.5902V18.3529H39.002V13.7646Z'%20fill='%230A467B'/%3e%3cpath%20d='M59.6465%201.34326V18.3528H76.656L59.6465%201.34326Z'%20fill='%230A467B'/%3e%3cpath%20d='M8.36649%2063.0679L1.34344%2070.0518C-0.447812%2071.843%20-0.447812%2074.7477%201.34344%2076.5414C3.13468%2078.3326%206.03934%2078.3326%207.83303%2076.5414L14.8414%2069.5722C12.272%2067.8592%2010.0672%2065.6446%208.36894%2063.0679H8.36649Z'%20fill='%230AA6E6'/%3e%3cpath%20d='M27.5287%2068.8236C37.6644%2068.8236%2045.8817%2060.6063%2045.8817%2050.4706C45.8817%2040.3349%2037.6644%2032.1177%2027.5287%2032.1177C17.393%2032.1177%209.17578%2040.3349%209.17578%2050.4706C9.17578%2060.6063%2017.393%2068.8236%2027.5287%2068.8236ZM25.2334%2038.9988H29.8216V52.7635H25.2334V38.9988ZM25.2334%2057.3517H29.8216V61.94H25.2334V57.3517Z'%20fill='%230AA6E6'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='clip0_1878_1688'%3e%3crect%20width='78'%20height='78'%20fill='white'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e)
日誌/報告/警報
OTGuard 可完整保存封包摘要與事件紀錄,並提供威脅、異常與統計報告,同時支援告警視窗與 Email 通知,協助企業符合 IEC 62443 對稽核與紀錄保存的相關要求。
Goldilock FireBreak™|物理層隔離原理
當關鍵基礎設施、工控場域或高敏感網路面臨異常行為、未授權連線或潛在攻擊時,單靠邏輯層防護往往不足以即時阻止風險擴散。尤其在 OT 環境中,系統間的連動性高,一旦發生入侵或異常操作,可能快速影響控制設備、通訊流程與整體營運可用性,因此更需要具備可立即切斷風險的防護機制。
Goldilock FireBreak™ 採用物理層隔離原理,可在必要時直接中斷網路連線,從根本阻斷未授權存取、橫向移動與攻擊擴散風險。相較於傳統僅依賴軟體或邏輯控管的方式,Goldilock FireBreak™ 提供更直觀且可控的實體隔離能力,特別適用於關鍵基礎設施、工控環境及高安全需求場域,協助企業在兼顧安全性與營運持續性的前提下,建立更高等級的防護架構。
核心技術 × 七種網路攻擊行為偵測
偵測擴散行為
Remote System Discovery
連線協定監控
Non-Standard Protocol Monitoring
檔案下載上傳行為
File Download & Upload Detection
網路封閉性健檢
Network Segmentation Validation
特定通訊協定
Protocol Safety Violation
封包細篩
Common Port Exploitation
疑似中間人攻擊
Adversary-in-the-Middle Attack
Application|應用範圍
能源產業
Energy
適用於電力、水力、再生能源與天然氣等關鍵系統,強化 OT 通訊可視性與風險偵測能力,協助維持基礎設施穩定運作。
交通與運輸
Transportation
適用於高鐵、捷運、航空、航運等依賴 SCADA 與工控通訊的環境,可提升異常事件辨識能力,降低運輸中斷與控制風險。
石化與重工業
Oil, Gas & Heavy Industry
適用於高風險、設備異質性高且依賴感測器、DCS 與遠端操作介面的場域,協助企業強化工控資料流監控與安全防護。
公共事業
Utilities
適用於水資源、污水處理、垃圾焚化與城市基礎建設等系統,協助掌握老舊 OT 設備的風險狀況,提升整體營運韌性。
醫療機構與智慧建築
Healthcare & Smart Buildings
適用於醫療設備、樓宇自動控制、智慧電網與智慧城市等環境,強化對關鍵設備與通訊行為的可視化與異常偵測能力。
Operational Value|防護效益
快速發現,立即應變
當 OT 場域出現異常通訊、可疑連線或高風險事件時,真正關鍵的不只是看見警報,而是能否在第一時間完成判斷與處置。OTGuard 協助企業從威脅偵測、事件分析到決策應變,快速掌握來源、目標與受影響資產,讓資安事件不再停留在「發現問題」,而是能真正推進到後續行動。
OTGuard 可進一步結合 Goldilock FireBreak™,在必要時啟動實體隔離,協助企業將威脅控制在最小範圍。透過從偵測、分析到隔離的快速應變流程,讓企業在不影響整體產線運作的前提下,降低停機風險與營運衝擊。
從防護走向營運效益
OT 資安不只是技術問題,更直接關係到停機損失、稽核壓力與營運效率。OTGuard 協助企業以單一平台掌握整體 OT 狀態,對應 MITRE ATT&CK ICS 框架,並提供稽核所需的事件紀錄、報表與處置軌跡,讓資安防護同時成為管理決策與合規準備的基礎。
透過排程式隔離與自動化管理,OTGuard 也能有效縮短非工作時段的暴露時間,降低人工作業負擔,提升整體營運韌性。導入 OTGuard,不只是建立防線,而是讓企業更有能力面對未來的 OT 風險與合規要求。