{"id":59206,"date":"2025-09-26T10:44:35","date_gmt":"2025-09-26T10:44:35","guid":{"rendered":"https:\/\/becolve.com\/blog\/how-logitek-implements-critical-application-defense\/"},"modified":"2025-09-26T10:44:41","modified_gmt":"2025-09-26T10:44:41","slug":"how-logitek-implements-critical-application-defense","status":"publish","type":"blog","link":"https:\/\/becolve.com\/en\/blog\/how-logitek-implements-critical-application-defense\/","title":{"rendered":"How Logitek Implements Critical Application Defense"},"content":{"rendered":"

[et_pb_section fb_built=”1″ _builder_version=”3.22″][et_pb_row _builder_version=”3.25″ background_size=”initial” background_position=”top_left” background_repeat=”repeat”][et_pb_column type=”4_4″ _builder_version=”3.25″ custom_padding=”|||” custom_padding__hover=”|||”][et_pb_text _builder_version=”4.9.4″ background_size=”initial” background_position=”top_left” background_repeat=”repeat” hover_enabled=”0″ sticky_enabled=”0″]<\/p>\n

The defense-in-depth strategies<\/strong> proposes applying different protection mechanisms at different levels within an ICS OT installation. In this way, if one layer of protection fails, there will be other inner layers<\/strong> that will prevent the attack from materializing, thus decreasing the level of operational risk that industrial assets may have. <\/p>\n

In previous posts, we have discussed how to protect network perimeters<\/a>, how to increase the level of protection of the internal network<\/a>, and how to protect the equipment itself.<\/a><\/p>\n

However, there are threats and attack vectors<\/strong> that do not use the network to achieve their aims, for example, a phishing<\/i><\/a> campaign combined with the use of removable media (DVDs, USB drives, or other gadgets<\/i><\/a> that can be connected to a computer) can spread through the very human action of curiosity, causing malicious code to bypass network, perimeter, and even computer protections (lack of patching and\/or updates).<\/p>\n

The host protection<\/strong>, as we have seen, is mainly based on the use of technologies that rely on signatures to detect and block attacks or different types of Malware<\/strong>, which requires these technologies to be continuously updating their database of known attacks to be effective.<\/p>\n

These protections, while effective, do not guarantee 100% protection<\/strong>, or even in ICS OT environments, where we often find equipment that cannot have endpoint<\/i><\/a> protection installed, either due to obsolescence of the equipment itself or due to incompatibilities with the industrial control application.<\/p>\n

In these cases, the defense-in-depth strategy<\/strong> tells us to protect the applications that are running on these computers or, due to the application’s own criticality, to take specific protection measures.<\/p>\n

 <\/p>\n

\"virus<\/p>\n

 <\/p>\n

What Does Application Protection Mean?<\/b><\/h2>\n

An application, like any other software, is a program that executes a series of instructions<\/strong> to carry out a particular function. Every program can contain programming flaws that can be potentially exploited for malicious purposes. <\/p>\n

A demonstration of this is the constant news of the discovery of new vulnerabilities in applications<\/strong>, famous operating systems, etc.<\/p>\n

Another threat to applications is malware<\/i><\/a> that may have bypassed the computer’s protection and “infected” the application, modifying its executable files or libraries. With this action, the execution of the application chains the execution of “something else<\/b>” on the computer, and this “something else” can materialize certain threats that, depending on the environment of the process, can have serious consequences<\/strong> at an economic, physical, copyright, legal, and\/or legislative level. <\/p>\n

Therefore, for the protection of the application<\/strong> it is necessary:<\/p>\n