Embed Size (px)
Citation preview
Apr 12, 2023 1
AROW – High Reliability Data
Diode By Simon Banks
Sales and Marketing DirectorSomerdata Ltd.
Apr 12, 2023 2
AROW separates high security networks from lower security networks.
AROW provides one-way connection with high speed data.
AROW absolute security, no path to a lower level network.
AROW high reliability redundant paths with automatic failover.
AROW dedicated hardware –no pcs, NICs or operating systems to maintain or protect.
Apr 12, 2023 3
• High security network protection
• Prevent data theft from phishing , trojans or man in the middle infections.
• Discrete Network monitoring or intercept.
• High server availability requirements
• Process Control protection (cf Stuxnet)
AROW - OperationProduct Range
4Apr 12, 2023
•Data are sent from the "dirty" network to the "clean" network.•Server on the dirty network connects a TCP socket to AROW's low side data port.• Messages sent over that socket arrive at the listening server on the clean network for processing
AROW
Server on “clean” network
Server on “dirty” network
Messages and protocol encapsulation
TCP/IP socket
Packetizing De-Packetizing
TCP/IP socket
Messages and protocol de-capsulation
AROW Operation Software
Redundant cross connected paths give failover safety
Automatic switchover between streams on failure.
5Apr 12, 2023
TCP socket server
TCP socket server
Control & status
Control & status
Control & status
Control & status
TCP socket server
TCP socket server
Dirty CleanHigh Bandwidth link
Live Low side packet driver
Backup Low side packet driver
Live high side
packet receiver
Backup high side packet receiver
Live high side server
Backup
high side server
Low side server
AROW Operation
2 Channel operation – provides 2 independent paths for two separated networks.
6Apr 12, 2023
TCP socket server
TCP socket server
Control & status
Control & status
Control & status
Control & status
TCP socket server
TCP socket server
Dirty
Clean
Live Low side packet driver
Backup Low side packet driver
Live high side
packet receiver
Backup high side packet receiver
High side Network 1
High side Network 2
Low side Network A
Clean
Dirty
Low side Network B
Apr 12, 2023 7
•Full Hardware implementation
•Data Interfaces Gigabit Ethernet/1000 Base-T, Optical or Copper Options
•High-speed one-way internal optical connections
•2 Gbit Deep packet buffer
• Independent Control Interfaces 10/100 Ethernet
•Redundant hot-swappable modules
•Redundant AC power module
•Remote Status monitoring
•1U Rack mount , half-depth
AROW Process Protection Custom Interface Converters
8Apr 12, 2023
Process ControlProcess Control
Manufacturing ManagementManufacturing Management
Corporate MISCorporate MIS
Corporate Engineering Tech
Corporate Engineering Tech
Local Engineering Tech
Local Engineering Tech
Local MISLocal MIS
Office NetworkOffice Network
Industrial NetworkIndustrial Network
Apr 12, 2023 9
AROW Process Protection Custom Interface Converters
Corporate MISCorporate MIS
Corporate Engineering Tech
Corporate Engineering Tech
Manufacturing Management: needs data for day-to day process
monitoring, Quality Control, Change monitoring
Manufacturing Management: needs data for day-to day process
monitoring, Quality Control, Change monitoring
Process ControlProcess Control
Local Engineering Tech: needs data for Engineering monitoring, new process development
Local Engineering Tech: needs data for Engineering monitoring, new process development
Local MIS: needs data for performance measurement, statistical analysis
Local MIS: needs data for performance measurement, statistical analysis
Office Network : needs data for administrative control, meetings,
discussions, billing, purchasing
Office Network : needs data for administrative control, meetings,
discussions, billing, purchasing
Industrial Network : 2-way data flow for control of the process
Industrial Network : 2-way data flow for control of the process
Network protected using AROW Data Diodes.
Apr 12, 2023 10
AROW Data Protection Custom Interface ConvertersCorporate
HQ/ MISCorporate HQ/ MIS
Online bankingOnline banking
Consumer and RetailConsumer and Retail
Account maintenance, credit check, fraud analysis
Account maintenance, credit check, fraud analysis
Local MIS: needs data for performance measurement, statistical analysis
Local MIS: needs data for performance measurement, statistical analysis
Office Network : needs data for administrative control, meetings,
discussions, billing, purchasing
Office Network : needs data for administrative control, meetings,
discussions, billing, purchasing
Branch networkBranch network
Sensitive Data protected using AROW Data Diodes.
Apr 12, 2023 11
AROW FAQ Custom Interface Converters
What does AROW do that my Firewall doesn’t?
AROW is not a substitute for a firewall – you still need to take normal network security precautions, including anti-virus, access control and application maintenance. With AROW you get the added protection that if any of these precautions is defeated, your protected data cannot be stolen.
Apr 12, 2023 12
AROW Data Diode Custom Interface Converters
AROW allows more users to see data while allowing fewer people to change it
AROW stops data theft
AROW simplifies maintenance and reduces costs
AROW protects your customers
www.somerdata.com
