In this era of digital transformation, with the proliferation of smart factories and smart cities, security threats in smart network environments have become an inevitable element. With the imperative to establish robust network security systems, Handreamnet offers a variety of industry-specific smart network security hardware and software solutions. Handreamnet is the world's first company to commercialize switch-based malicious traffic detection and blocking technology. It has maintained steady growth both domestically and internationally, leveraging its network security switch, "SubGate." This magazine met with Handreamnet CEO Seo Hyun-won to learn more about Handreamnet's diverse network security solutions.


■ Please give a brief introduction to Handreamnet.

Handreamnet is a network security specialist company that was first incorporated in 2000 and developed the concept of a security switch in 2007. We are the world's first to launch a network switch equipped with security features, providing network service stabilization and operational convenience by blocking and preventing the spread of harmful traffic such as DDoS and ransomware.

Initially focused on QoS (Quality of Service), the company gradually expanded its scope to include UTM (Unified Threat Management). Currently, awareness of security switches has spread widely, and the company is upgrading its functionality in response to customer requests.

■ Please introduce the solution lineup of Handreamnet security switches, including the 1st, 2nd, and 3rd generations.

The concept of a network switch originated from the switch hubs primarily used in PCs and laptops. Since then, Handreamnet has sequentially released industrial switches, whitelist-based products, and integrated monitoring devices, all equipped with its proprietary MDS security engine. Recently, we have been focusing on development related to cloud security.

△1st generation: Provides malicious traffic detection, blocking, and monitoring functions △2nd generation: Integrated network management including VIPM linkage, terminal control through authentication, IP management, and security switch control △3rd generation: Intelligent abnormal traffic detection and blocking through linkage with various solutions such as APT, IP switch, and UTM △4th generation: Response to diverse and new network environments such as cloud, IoT, smart factory, and city, and reflects industry-specific environments such as cloud security switches

■ How the Handreamnet security switch detects and blocks internal network security threats

Handreamnet's security switch selectively blocks harmful traffic through a behavior-based engine.

We analyze the occurrence type by applying multidimensional spatial analysis technology and behavior-based traffic analysis technology to traffic movements by protocol, such as terminals that cause network attacks and destination IPs and ports.

It selectively blocks only malicious traffic without signature and pattern updates, and performs security functions without slowing down the network speed with a separate security engine, enabling stable network services.

■ Things to consider when introducing security switches into industrial infrastructure

When implementing a security solution for a smart network, the top priority is visibility. It must support industrial protocols, integrate with existing human-machine interfaces (HMIs) without requiring additional equipment, or be compatible with existing systems to enable device identification and monitoring.

It also identifies possible attack paths and controls communication paths. Minimize information leaks and security threats from internal users by limiting permissible services and communication paths based on authority and purpose.

Finally, operational stability must be guaranteed. No matter how good a solution is, it's meaningless if it's not stable. Handreamnet's security switch selectively filters out only malicious traffic, preventing the spread of security threats without network blockade.

In particular, the Whitelist Security Switch enables even field workers to quickly identify whether an incident is a network failure, security incident, or equipment failure, preventing the incident from escalating and taking initial action. Furthermore, the ISG Industrial Security Switch ensures service continuity by providing stable network services even in extreme external environments, such as extreme temperatures, humidity, strong vibration, and multiple electromagnetic waves.

■ If there are any domestic or international cases introduced

ISG industrial security switches have been deployed in numerous local government CCTV integrated networks. They protect network terminals such as IoT devices and sensors, and block exposure of CCTV, NVRs, and manufacturing equipment sensors.

The Whitelist Security Switch was jointly developed with K-water (Korea Water Resources Corporation) and implemented in actual industrial settings. As a successful example of OT/ICS security, it secured network visibility within water purification plants.

■ What is VNM (Visual Node Manager) and how is VIPM (Visual IP Manager) different from it?

'VNM (Visual Node Manager)' provides real-time IP device status monitoring along with integrated management of network security switches. It can identify the usage status and location of internal terminals and provides log reports to help with efficient maintenance and rapid response to failures.

'VIPM (Visual IP Manager)' is a separately purchased product that configures the optimal internal security infrastructure, and is an integrated solution with control functions added to VNM functions.

■ What are Handreamnet's future plans?

Handreamnet provides a highly reliable, high-quality network environment by establishing network security systems optimized for each industry, such as △control facility failures that may occur in smart city environments, △public social infrastructure operation organizations, △private companies operating industrial automation facilities, etc., △blocking the spread of security threats, and △effectively protecting networks regardless of device type.

We plan to continuously upgrade our platform by introducing concepts like cloud computing and AI, and we will provide a safe and reliable network environment that reflects customer needs across various industries.

thank you