Honeywell Selects Tofino Modbus Read-Only Firewall


Jan 12, 2011

Honeywell is expanding its use of Tofino technology with the release of its third Byres Security/MTL Instruments product -- the Honeywell Modbus Read-only Firewall. Designed to secure any Safety Integrated Systems (SIS) used in industrial processes, the firewall detects and blocks any network messages that might change data, programs or settings in critical systems.

The Honeywell Modbus Read-only Firewall uses Tofino’s “deep packet inspection” technology against the SCADA protocol, Modbus TCP. This technology scans every network message, only allowing a very limited set of valid Modbus “Read-only” commands through to the safety system. These are safe commands that cannot be used by malware to change the functionality of the safety system. The firewall’s fixed rule sets remove the possibility of tampering or mis-configuration and significantly reduces the effort required by the plant to maintain the firewall.

This new product is Plug-n-Protect and pre-configured so that the firewall is simply installed into live networks between the safety system and other control systems.

The Honeywell Modbus Read-only Firewall is not just for Honeywell safety systems. It can be used with any safety system product connected to Honeywell Experion systems via the Modbus TCP protocol. To date, Honeywell has tested and confirmed the firewall with three major vendor’s SIS products.

For more information, visit:

Show Comments
Hide Comments

Join the discussion

We welcome your thoughtful comments.
All comments will display your user name.

Want to participate in the discussion?

Register for free

Log in for complete access.


No one has commented on this page yet.

RSS feed for comments on this page | RSS feed for all comments