Plants and machinery are increasingly connected to the Internet due to the compelling advantages: operational and sensor data from machines and plants is constantly available and can be centrally monitored. This allows you to, e.g., perform predictive maintenance: you can respond to small changes and carry out the necessary maintenance before damages or even breakdowns occur.
- More reliable than fiber optic diodes, more convenient than air gaps and more secure than firewalls
- Data transmission with confirmation bit – minimalistic feedback about the delivery status of the data packets allows reliable conclusions to be drawn on the completeness of the transfer
- One-way function cannot be preconfigured; security by design eliminates the possibility of incorrect configuration and backdoors
Support of OPC UA, FTP, SMTP, TCP, UDP and Syslog
Complete package of hardware and adapters (protocol converters); no hidden costs
Multiple benefits of the genucenter when used with other products from the genua ecosystem
Online configuration possible
Space-saving DIN-rail mounting (rack mounting with additional kit)
All plants and machinery that send data over the Internet are, in principle, vulnerable as a result. This means that digitally networked systems have to be protected from infection by malicious software and other forms of unauthorized access. Subject to a particularly high protection requirement are, of course, systems that control critical infrastructure or other plants where incorrect functioning could lead to extensive damage or loss of life, e.g., power station turbines, chemical production plants and industrial robots on production lines.
The risks associated with the digital networking of highly critical control systems can be minimized with the cyber-diode. This solution monitors network connections and only allows one-way data transfer – information flow in the opposite direction is completely blocked. Once protected by our data diode, plants, machinery and IT systems can send data over public networks without risking their integrity.
The cyber-diode has a minimal feedback channel for status messages. This allows a signal to be sent back to the sender at the end of each transmission to confirm that all data has been completely and correctly received. The feedback is minimal: it consists only of a single status bit (OK / not OK) per connection.
Conventional glass fiber data diodes without a physical feedback channel are unable to transport this feedback. This means that the sender never knows whether the transfer was successful or if it needs to be repeated again. With this type of data diode, one can never be sure that all data has been transfered – data loss must always be considered a possibility. Using the feedback, the cyber-diode can also always transfer data at the optimal speed: it detects the maximum transfer rate that the receiver can process. The cyber-diode supports protocols TCP and UDP, e.g., for Syslog, and FTP for file transfers and SMTP for e-mail via built-in adapters.
With the feedback channel, it must, of course, be ensured that only status messages flow back and not any other data. This aspect is regulated by the diode function that uses state-of-the-art technology: its programming has been kept to a minimum – it only has a few hundred lines of program code – and runs on a microkernel operating system that has also been reduced to an absolute minimum. Due to the low complexity, the central filter process is easy to analize; the code can be examined line by line to exclude errors.
This compact construction of the cyber-diode guarantees absolutely reliable one-way data transfer. The degree of security this solution provides can be seen with the vs-diode from genua, which uses the same technology and is approved for use up to the SECRET security level by the German Federal Office for Information Security (BSI).
We supply the cyber-diode as a complete solution that is preconfigured and easy to integrate into your network. The solution’s security by design guarantees the correct functioning of the diode – this cannot be disabled, even through incorrect administration. We will be happy to assist you with the installation – service is provided directly from the manufacturer genua.