Customer Success Stories for Smart Factory

• [CASE 1] CEITEC S.A. Connected threat defense for greater visibility and real-time protection

• [CASE 2] Yokogawa Solution Service Corporation Comprehensive protection for industrial IoT platform

• [CASE 3] Alps Electric Co., Ltd. Security improvement to create a connected factory with IoT

Keep operations running

CUSTOMER SUCCESS STORY

OVERVIEWFounded in 2008, CEITEC S.A. (National Center for Advanced Electronics Technology) is a Brazilian public company linked to the Ministry of Science, Technology and Innovation (MCTI). CEITEC develops solutions for automatic identification (RFID and smartcards) and designs, manufactures, and sells application-specific integrated circuits (ASICs) aimed at identifying animals, medications, blood products, people and vehicles. Based in Porto Alegre, Rio Grande do Sul, CEITEC performs a strategic role in the Brazilian microelectronics industry.

As one of a few companies in the world certified to manufacture RFID chips for passports, maintaining the highest level of IT security is paramount for CEITEC. The company’s passport chip recently received Common Criteria Certification after rigorous assessment of CEITEC’s protection against cyberattacks. “Security is at the heart of everything we do. Our customers have to trust that we can protect their identification. We simply can’t afford to blemish our reputation,” said Ireneo Demanarig, Chief Information Officer, CEITEC S.A.

CHALLENGESMaintaining top-level security in a constantly changing threat environment is no easy task, especially with limited IT resources. For CEITEC, this meant securing its data center, client information, intellectual property, and SCADA environment that interfaces with its manufacturing processes.

With security solutions from several vendors, CEITEC had to monitor the effectiveness of each product and share information. “In today’s environment, it’s no longer enough to protect the north-south traffic coming in and going out of the data center. We also have to ensure that east-west traffic within the data center is also safe from exploits,” said Demanarig.

CEITEC was also impacted by poor technical support from some of its security vendors. What the company needed was a security vendor that could help them obtain connected security from a single console and allow them to fully optimize all their security solutions.

CEITEC S.A. Gains Connected Threat Defense for Greater Visibility and Real-Time Protection

Websitehttp://www.ceitec-sa.com

RegionBrazil, Latin America

IndustrySemiconductor/Manufacturing

Employees200

Products• TippingPoint• Deep Discovery Analyzer• Deep Discovery Inspector• Deep Discovery Email Inspector• Control Manager

IT EnvironmentOn-premises data center, Windows

Business Benefits • Protects IT environment from

ransomware and other attacks • Provides visibility across the entire

threat landscape• Integrates with other security

products to provide a connected threat defense

• Protects SCADA environment from attacks

• Improves security management efficiency, using automation to respond against new threats and risks

Page 2 of 2 • Customer Success Story • CEITEC S.A.

WHY TREND MICRODemanarig had worked with Trend Micro solutions in a past position, so he was aware of the company’s reputation for connected threat defense and great support. When Trend Micro purchased TippingPoint and began working with CEITEC in 2016, it was a welcome change for Demanarig and his team. “When Trend Micro purchased TippingPoint, it was a night and day difference. From that time on, we received product updates and a great deal of expert support,” said Demanarig.

To gain the needed visibility across its IT environment, CEITEC conducted proof of concepts (PoCs) with several leading vendors before choosing Trend Micro™ Deep Discovery™. “The other solutions couldn’t compare with Deep Discovery’s ease of use and granular visibility. Trend Micro also offered a true partnership that gave us the service and support we were looking for,” said Demanarig.

SOLUTIONWith Trend Micro™ TippingPoint®, CEITEC gains real-time detection, enforcement, and remediation of known, unknown, and undisclosed vulnerabilities without compromising performance. When Trend Micro conducted a TippingPoint health check, they found the solution had detected attacks that the security products from other security vendors were unable to identify.

To get an additional layer of protection against targeted attacks, CEITEC selected Trend Micro™ Deep Discovery™ Inspector and Trend Micro Deep Discovery Analyzer. “With Deep Discovery, we can get right to the root cause of an issue,” said Demanarig. “The solution is integrated, so threat information is shared with other Trend Micro solutions, including TippingPoint, and third party products to prevent attacks. “

With Trend Micro™ Control Manager™, CEITEC can see all the security reporting on one console, allowing them to gain maximum awareness with minimal staff. “The combination of TippingPoint, Deep Discovery, and Control Manager provide a connected threat defense with greater visibility and protection across our threat landscape, and efficient, centralized management,” said Demanarig.

RESULTSThe increased visibility provided by Trend Micro was quickly put to the test. When ransomware hit several municipalities in Brazil, CEITEC was well protected. Trend Micro™ TippingPoint™ stopped the WannaCry ransomware, and when suspicious traffic was detected in their SCADA environment, Trend Micro™ Deep Discovery™ identified the issue before any damage was done. “Trend Micro Network Security saves lives. If we hadn’t found the command and control malware in our SCADA environment, toxic gases could have been released and put human lives in danger,” said Demanarig. “Deep Discovery has also helped protect IoT assets in our production line.”

Thanks to Trend Micro network security solutions, CEITEC now has the visibility and automated alerts they need to spot threats their previous solutions failed to detect. Their integrated security solutions have simplified protection and improved the team’s productivity. Demanarig says, “Security must be at the core of our company. Trend Micro not only provides the best security solutions, but they are a great partner that makes our lives easier.”

WHAT’S NEXT?Looking ahead, CEITEC plans to utilize other Trend Micro solutions to further enhance its end-to-end security. “We’re upgrading to a newer version of Trend Micro TippingPoint and protecting our virtual desktop infrastructure (VDI) with Trend Micro Deep Security,” said Demanarig.

MORE INFORMATIONFor more information, please go to www.trendmicro.com

“Security must be at the core of our company. Trend Micro not only provides the best security solutions, but they are a great partner that makes our lives easier.” Ireneo Demanarig, Chief Information Officer, CEITEC S.A.

“If we hadn’t found the command and control malware in our SCADA environment, toxic gases could have been released and put human lives in danger.” Ireneo Demanarig, Chief Information Officer, CEITEC S.A.

“With Deep Discovery, we can get right to the root cause of an issue. The solution is integrated, so threat information is shared with other products to prevent attacks.” Ireneo Demanarig, Chief Information Officer, CEITEC S.A

“The combination of TippingPoint, Deep Discovery, and Control Manager provide a connected threat defense with greater visibility and protection across our threat landscape, and efficient, centralized management.” Ireneo Demanarig, Chief Information Officer, CEITEC S.A

©2018 by Trend Micro Incorporated. All rights reserved. Trend Micro, and the Trend Micro t-ball logo, OfficeScan and Trend Micro Control Manager are trademarks or registered trademarks of Trend Micro Incorporated. All other company and/or product names may be trademarks or registered trademarks of their owners. Information contained in this document is subject to change without notice. [CS-SuccessStory-CEITEC-180530US]

Yokogawa Solution Service Corporation

Websitewww.yokogawa.com

RegionTokyo, Japan

IndustryElectrical Engineering

Employees2,400+

Products• Trend Micro™ Deep Security as a Service™

IT Environment• Google Cloud Platform™

Business Benefits• Provided a secure industrial

IoT platform for customers and established a resource-intensive environment that focused on the creation of new value

• Delivered comprehensive protection for the cloud-based GRANDSIGHT shared infrastructure

• Enabled secure sharing of highly confidential data gathered through compact industrial IoT-focused Sushi Sensors

CUSTOMER SUCCESS STORY

OVERVIEW Yokogawa Solution Service provides a variety of solutions and services, from consulting and systems integration to maintenance and management information systems engineering. Established in 2013 as part of the Yokogawa Group, the company maintains, repairs, and constructs measurement and control equipment and devices, aerospace equipment, ships, cars, computers and data processing equipment, medical and offi ce equipment, semiconductor manufacturing equipment, and other systems.

One of the pillars of the Yokogawa Group’s business structure is “process co-innovation.” Working with its customers, they co-create solutions that generate added value and accelerate business outcomes through innovations. In 2017, Yokogawa Solution Service unveiled GRANDSIGHT, a cloud-based value co-creation environment, with compact Industrial Internet of Things (IIoT) wireless Sushi Sensors that gather a variety of data, such as vibration and temperature, and store it in GRANDSIGHT. “By providing Sushi Sensors together with GRANDSIGHT, we support our customers’ use of IIoT while supporting their mission-critical systems,” said Tomohiro Sakita, General Manager at Yokogawa Solution Service.

CHALLENGES Yokogawa’s GRANDSIGHT is a cloud-focused environment using platforms such as Google Cloud Platform™ service. Along with the analysis of data gathered by IIoT Sushi Sensors, GRANDSIGHT provides a range of tools including modeling, simulation, and artifi cial intelligence for the development of new systems. These tools also enable rapid proposal development and decision-making through fi le sharing and a range of communication methods including chat and video conferencing.

However, customers often use GRANDSIGHT to handle vital information, such as plant operational status and parameters, which made ensuring security in a multi-tenant environment a very important issue. “Even though Google protects the security of the infrastructure, it is our responsibility to control access to the networks that run on it and to protect applications. We felt it was essential for us to implement security measures,”

Yokogawa gains comprehensive protection for industrial IoT platform from Trend Micro

Page 2 of 2 • Customer Success Story • Yokogawa Solution Service Corporation

“By providing a secure platform and sensors, we will support our customers’ innovation that leverages industrial IoT.” Tomohiro Sakita General Manager Yokogawa Solution Service Corporation

“Deep Security as a Service has a rich track record on Google Cloud Platform and other cloud services. We are able to provide it to our customers with peace of mind.” Tomoji Tateno MIS Group Yokogawa Solution Service Corporation

“Data from industrial IoT devices and other such information is vital to our customers. With its multiple security functions, Deep Security as a Service is a reassuring ally.” Atsushi Sugitachi Section Manager Yokogawa Solution Service Corporation

Copyright ©2018 by Trend Micro Incorporated. All rights reserved. Trend Micro, the Trend Micro t-ball logo, OfficeScan and Trend Micro Control Manager are trademarks or registered trademarks of Trend Micro Incorporated. All other company and/or product names may be trademarks or registered trademarks of their owners. Information contained in this document is subject to change without notice. The details of this document are current as of June 2018, but are subject to change without prior notification.This is a catalogue originally written in Japanese and translated into English. Descriptions and specifications of products/solutions on this catalogue are for Japan, and there might be some differences in other countries.[Item No. BR-CASE-219]

said Tomoji Tateno, MIS Group at Yokogawa Solution Service.

WHY TREND MICRO When Yokogawa began exploring the top security solutions for cloud infrastructures, it discovered Trend Micro™ Deep Security as a Service™ had a proven track record of running on Google Cloud Platform. “When we asked IT departments at other companies in the Yokogawa Group, they told us Deep Security as a Service had a strong track record of use in the cloud and they recommended it,” said Tateno.

In addition, it was essential that the solution provided more than antivirus protection—Yokagawa wanted a solution that could deliver comprehensive security functions across the IIoT environment. “To protect cloud environments, we believe that you absolutely need mechanisms like intrusion detection and prevention systems and web application firewalls to ensure security,” said Tateno. Atsushi Sugitachi, section manager for Yokogawa adds, “You now have to take even more care against attacks and intrusions from external sources.” Deep Security as a Service met the company’s needs.

SOLUTIONS Yokogawa’s GRANDSIGHT uses all of the Deep Security as a Service functions, including antivirus capabilities, intrusion detection and prevention systems (IDS/IPS), web application firewalls (WAF), tampering detection, and vulnerability countermeasures. These capabilities are also provided to GRANDSIGHT customers as a service, which allows them to establish an environment that ensures safety in system development and communication.

In addition, with centralized visibility, the service reduces workloads across the organization, freeing Yokogawa’s teams to focus on co-creation projects with their customers. “Data from industrial IoT devices and other such information is vital to our customers. With its multiple security functions, Deep Security as a Service is a reassuring ally.” Said Sugitachi.

RESULTS The results were positive right from the start.

To block unauthorized access from external sources, Deep Security as a Service is essential in the GRANDSIGHT environment. If an alert occurs, a framework is in place. Yokogawa Solution Service first responds with its operational maintenance service, then escalates to Trend Micro as necessary. “The fact that nothing has gone wrong so far is a good sign which gives us relief and peace of mind,” said Tateno.

The installation of Deep Security as a Service went smoothly and without any negative impact on existing systems. Although it’s been a while since the solution was implemented, the company has not received any alerts. By using Deep Security as a Service to implement security, Yokogawa Solution Service and their customers have been able to focus on their core business goals—the analysis of data and development of innovative solutions that deliver positive outcomes.

WHAT’S NEXT? Yokogawa Solution Service plans to expand GRANDSIGHT and roll out services also in the Platform as a Service (PaaS) and Software as a Service (SaaS) layers. “In this process, we plan to keep using Trend Micro Deep Security as a Service, and we are confident that it will deliver the same positive results in these areas,” said Sakita.

The Yokogawa Group is more than a mere vendor for its customers—it considers their relationship a partnership. “If our customers don’t trust Yokogawa, then we can’t co-create value with them. We are confident we can meet our responsibilities to our customers with Deep Security as a Service as our watchman. Its performance gives us all peace of mind,” says Mr. Sakita.

MORE INFORMATIONFor more information, please go to www.trendmicro.com

CUSTOMER SUCCESS STORY

Alps Electric Improves Security to Create a Connected Factory with IoT

OVERVIEW Alps Electric Co., Ltd. develops and offers small, low-profile, lightweight, and robust electronic products featuring high-quality essential functions, while also mindful of energy and resource conservation. Many electronics manufacturers across the globe use Alps Electric’s sensors, switches, and data communication modules which incorporate the company’s philosophy of “Perfecting the Art of Electronics.”

In recent years, many manufacturers have turned to the Internet of Things (IoT) for business innovation. Alps Electric is among the companies creating a vision for “connected factories” in which a variety of production equipment, systems, devices, and even factories themselves are networked. “IoT can be useful in monitoring and analyzing the running status of equipment to detect faults and improve productivity and quality. Furthermore, providing precise information to customers by comprehensive traceability which ties production, logistics, and sales together can also increase the level of trust those customers have in our products,” said Hiroyuki Jinbo, Nagaoka Manufacturing Dept., Alps Electric.

CHALLENGES Before launching IoT applications, Alps Electric needed to ensure its IoT environment was secure. Connected factories increase the risk of being exposed to threats, and if any threats infiltrate the network, there is a risk that they can spread. “We really felt the necessity to implement security countermeasures for the offline control terminals, which are used for production equipment,” said Koji Kazama, Manufacturing Technology Group, Alps Electric.

In general, there are many cases of virus infections in factories with offline environments, which are caused by media such as USB memory devices. In addition to pattern file updates of offline terminals being difficult, certain terminals use an OS which is no longer supported. Situations also occur where antiviruses employing pattern files cannot be installed due to the effect on system performance, making countermeasures problematic.

There have been incidents in the manufacturing industry in which virus infiltration resulted in production equipment shutting down, leading to the halt of factory operations and wide-scale damage. “We received strong requests from management levels to minimize risk, and enable appropriate response and quick recovery,” said Asao Tsukui, IT Infrastructure Group, Alps Electric.

Alps Electric increased security

for terminals, minimized security

operation burdens, and is considering

enhancements for IoT usage

Before AfterFocused on IoT usage, Alps Electric

needed to improve factory security,

especially for production equipment

control terminals

Alps Electric Co., Ltd.

Web sitehttp://www.alps.com /e/

RegionTokyo, Japan

SectorManufacturing

Employees39,443 (consolidated, as of March 2016)

Trend Micro solutions• Trend Micro Portable Security 2™• Trend Micro Safe Lock™

IT environment• Production equipment control terminals, etc.

Business Benefits • Improves factory security through virus

scanning and removal on control terminals • Simplifies virus checks by inserting a USB

memory device• Created an important foundation for

future IoT usage

>>

IoT usage also carries risks. Security enhancement is a huge prerequisite for advancing the use of IoT.

W h i l e t h e r e a r e restrictions, regular checks are indispensable for improving safety. TMPS2 is a tool which is easy to implement thoroughly, and it creates little burden for the factory.

E n h a n c i n g f a c t o r y security is an issue shared throughout Alps Electric. We plan a global horizontal rollout of the Nagaoka factory success model.

Hiroyuki Jinbo No. 1 Manufacturing Group, Nagaoka Manufacturing Dept.

Alps Electric Co., Ltd.

Koji Kazama Manufacturing Technology Group, Nagaoka Manufacturing Dept.

Production Head Office

Alps Electric Co., Ltd.

Asao Tsukui IT Infrastructure Group, Information Systems Dept.

Administration Head Office

Alps Electric Co., Ltd.

Page 2 of 2 • Customer Success Story • Alps Electric Co., Ltd.

WHY TREND MICRO To solve this problem, Alps Electric deployed Trend Micro™ Portable Security 2™ (TMPS2), a Trend Micro USB memory device-type virus scan and removal tool, in its Nagaoka factory. “Before the deployment, we used Trend Micro’s Factory Assessment Service to analyze our circumstances. Once we experienced the user-friendliness of TMPS2, which can easily scan and remove viruses even on offline terminals, we decided to adopt it,” said Tsukui.

SOLUTION Trend Micro™ Portable Security 2™ scans for and removes viruses on terminals in standalone and closed environments, and on terminals where software installation is prohibited. Virus checks can easily be carried out by simply inserting the TMPS2 device into the USB port of the relevant terminal.

Because TMPS2 does not install software on the terminal,*1 it can also be used on terminals which have restrictions on software installation. Virus checks based on the latest pattern files can be carried out even on offline terminals.*2

RESULTS Alps Electric’s Nagaoka factory formulated operating guidelines for security, and currently uses TMPS2 to perform regular virus scans on control terminals. “Using TMPS2 makes it immediately obvious if the terminal is safe or not. Even if there is an infection, it can accurately remove the virus, which gives us great peace of mind,” said Jinbo.

Although the Nagaoka factory has around 100 control terminals to check, TMPS2 allows the factory to perform a check just by inserting it into the USB port, making the operating burden extremely light, according to Kazama.

WHAT’S NEXT To move IoT usage forward, as well as the security enhancement to support it, Alps Electric is strengthening its countermeasures even further. One example is the adoption of lockdown antivirus software, Trend Micro™ Safe Lock™ (TMSL).

By specifying the usage available to a system (lockdown), TMSL can prevent the intrusion and execution of malware. TMSL allows only applications which have been permitted beforehand to be executed. Therefore, because it limits the effect on system performance and does not require pattern files,*3 TMSL can also be deployed on control terminals, which prioritize availability.

“For terminals which are offline or which software cannot be installed on, we use TMPS2. We use TMSL to lock down terminals that we can install software on, and carry out regular virus checks with TMPS2 to tighten factory security even further,” said Tsukui.

Alps Electric is also considering network security solutions like Trend Micro™ Deep Discovery™ Inspector (DDI). Because DDI can detect network threats in the early stage, you can take action before negative effects spread throughout the entire factory. In addition, DDI makes it easy to specify terminals that have been infected with a worm (malware which infects via the network), which can reduce downtime. DDI can be used to connect to the mirror port of a network switch, which enables production equipment monitoring without affecting network communication.

Furthermore, Alps Electric is considering the future selection of devices from a security viewpoint. “I think it would be great to select devices which allow us to install antivirus software such as TMSL, and have equipment manufacturers implement security measures in advance,” said Kazama.

Future growth of the manufacturing industry depends on how IoT is applied. Alps Electric has endeavored to build an important security foundation geared toward the application of IoT, and is ready to further accelerate its initiatives for connected factories using this foundation.

Alps Electric Security Measures for Nagaoka Factory Offline Terminals

TREND MICRO, Trend Micro Portable Security, Trend Micro Safe Lock, Deep Discovery, and Deep Discovery Inspector are registered trademarks of Trend Micro Incorporated. All company names, product names, and services names that appear in the text here are a trademark or registered trademark of the relevant company. The details of this document are current as of November 2016, but are subject to change without prior notification.This is a catalog originally written in Japanese and translated into English. Descriptions and specifications of products/solutions on this catalog are for Japan, and there might be some differences in other countries.[Item No. BR-CASE-178]

Trend Micro Incorporatedwww. trendmicro.com

HMI/EWS HMI/EWS/Historian

Standalone/closed environment

Trend MicroPortable

Security 2™

PLCPLC

Deep Discovery™Inspector(under review)

Deep Discovery™Inspector(under review)

Trend MicroSafe Lock™

Nagaoka factory networkTo Nagaokafactory officenetwork

*1 : During virus scanning, although drivers are created on the terminals being scanned and files are temporarily created on the local storage, they are removed when the scan is finished. (When you run a USB boot scan, you can select whether or not to create a logon to the local storage of the terminal being scanned). For a pattern file update and virus scan to run automatically when TMPS2 is inserted into the terminal, you must install a scanning tool agent.

*2 : TMPS2 performs virus checks with the latest pattern files at the time pattern files are updated with an update terminal or scanning tool.

*3 : Pattern files to run an antivirus solution are not required. However, pattern files are required when using agent pre-scans and management console proxy virus scans. Scan engines and pattern files used for pre-scanning are deleted after the agent is installed.