Update Management
Planned. Secure. Updated.
Enables precisely coordinated internet access for critical system and security patches in the OT infrastructure. The solution minimizes the attack surface through on-demand connectivity during defined maintenance windows while securing persistent communication channels for endpoint security applications.
Details
Update Management extends the ERIQ Gateway with an intelligent proxy function that strictly regulates access to external update sources (e.g., Windows Update). Connections are only opened within authorized maintenance windows and are automatically closed again after completion to keep the attack surface to a minimum. At the same time, the system ensures an isolated permanent connection for security software so that threat information and signatures always remain up to date without manual intervention, while network hardening remains in place.
This ensures that updates run in a controlled, secure manner and without any surprises that could affect production.
- Precise timing control of Internet access for system and application patches
- Minimization of attack surface through strict on-demand connectivity
- Automated disconnection after completion of the maintenance interval (zero trust)
- Permanently secured proxy communication for endpoint protection solutions
- Prevention of production interruptions through controlled orchestration of updates
- Audit-proof logging of all processes to meet the highest audit standards
- Active implementation of regulatory requirements in accordance with NIS2 and the Cyber Resilience Act
