Context: Remote Equipments Fail in Emergency

The maintenance team of a water utility switches between two workstations: an operational one for daily use and a maintenance one for critical interventions. The maintenance devices are stored offline at the treatment stations to ensure strict physical isolation between operational and maintenance environments.

While this setup guarantees a high level of security, it comes with a major drawback: the offline machines can’t receive updates remotely.

As a result, when maintenance teams need them on-site, they often face crashes or malfunctions caused by outdated systems.

These technicians are constantly on the move, traveling between multiple sites and their central office, often under time pressure. During urgent interventions, any workstation failure becomes more than a delay. It directly impacts their ability to act fast and safely. They need their maintenance environment to be reliable and ready, anytime and anywhere.

Why Kerys: Secure Isolation of Sensitive Data

KERYS technology enables maintenance teams to work with two strictly separated environments on a single machine: one dedicated to maintenance operations and another for everyday use.

This strong isolation allows sensitive OT configurations to be deployed without compromising security.

A key advantage of KERYS’ YS::Desktop is its readiness for large-scale deployment: the integrated fleet management console lets teams manage updates remotely, without physical access to each workstation.

The solution also includes features specifically designed for maintenance workflows. The Bridge option allows technicians to manually define the address of an automaton to connect their Maintenance Virtual Workstation directly to it. Meanwhile, the system can dedicate a computer’s Ethernet port exclusively to the Maintenance Virtual Machine, reinforcing network isolation and ensuring secure, controlled access to critical OT systems.

Deployment: Easy Adoption and Always-Ready Setup

During normal operations, maintenance employees use their daily environment without any interference or friction with the maintenance one. Yet, whenever an emergency call arises, the maintenance setup is fully up to date, operational, and immediately available. Each environment remains completely isolated from the other.

From both a security and flexibility standpoint, data is stored locally, ensuring access even when the network connection is unstable. A crucial advantage for teams often working in remote areas.

Finally, KERYS’ network management features give OT teams the autonomy and visibility they need, enabling smoother workflows and more responsive operations.

Benefits: Efficient Fleet and Faster Response

Having both environments on a single machine gives teams greater comfort and efficiency, while allowing the CIO to centralize update management. This approach reduces system crashes and enhances overall security.

As a result, deploying YS::Desktop has significantly improved the company’s responsiveness. In emergencies, technicians can now perform maintenance tasks on a workstation that is always reliable, updated, and ready to use