This project will demonstrate Veridify’s DOME cybersecurity platform as a Zero Trust solution to secure Facility Related Control Systems (FRCS), including microgrid and building automation systems, from cyber threats that can disrupt energy and water operations. This project addresses a critical Department of Defense (DoD) need: enhancing the cyber resilience of existing energy and water infrastructure against internal and external threats that can degrade mission readiness, operational continuity, and installation resilience. Technical objectives include deploying DOME on representative DoD control system networks, integrating with operational FRCS, and measuring improvements in cybersecurity posture, system availability, and compliance with DoD Zero Trust architecture guidelines.

This project will demonstrate multi-protocol interoperability, device authentication, data encryption, post-quantum methods, and continuous system awareness. The pilot will demonstrate ability to create a secure enclave, manage multiple protocols over an operational technology (OT) network, provide a comprehensive dashboard to the OT system, and stop cyberattacks within a network segment. Success will be demonstrated by installing a system and exposing it to unauthorized communication, attempts to retrieve sensitive operating data and system disruptions. Success will validate that protected devices are shielded from unauthorized access and commands, anomalies are logged and reported, post-quantum security methods are implemented, and that DOME interoperates across various industrial protocols such as Modbus, DNP3, and SNMP.

DOME is a comprehensive and mature cybersecurity solution that protects existing industrial control systems at the device level. It includes several core components, including a server function for system/credential management and system-wide information; analytics and alerts that can be hosted in the Cloud or locally; the DOME Interface Appliance for onsite system management, credential/token authentication, and logging; the DOME Sentry™ a gateway appliance that can be installed in existing systems and immediately provide protection to installed devices, along with site preparation and installation tools.

DOME introduces several innovative capabilities, including a root of trust for each device secured in a blockchain that supports a secure supply chain and lifetime device management functions, mutual authentication between all DOME-protected devices, and data packet-level authentication and encryption to prevent cyberattacks. DOME supports National Institute of Standards and Technology post-quantum cryptographic standards now and includes a low-cost migration path to installed systems, and all components adhere to a Zero Trust security framework.

The DOME platform is expected to deliver key cost and performance improvements by adding zero trust security to DoD’s FRCS networks. It is usually cost-prohibitive or impractical to replace existing controllers or to completely redesign a controls network to improve security. By adding a DOME cyber-secure appliance to the existing systems, the solution provides negligible operational disruption, no changes to existing networks, and costs less than 25% of the alternative: replacing and recommissioning existing devices. Current operational technology security tools monitor network traffic to look for anomalies, which can be too numerous to address in a timely fashion. In the event of an actual cyber-attack, alerts from network traffic monitoring are already too late. The zero trust solution stops attacks in real-time for each device that is protected. (Anticipated Project Completion - 2028)