U

Home » Applications

Applications

In this section we have collected information about some of our applications and how they can help you with different security challenges.

E-mail Application

The E-mail Application provides the means to send e-mail communication between separated security domains in a controlled manner, using the Advenica ZoneGuard or DD1000i. When using the ZoneGuard, it enables a way of sending e-mails while complying to a certain policy.

For ZoneGuard, a policy with a configurable e-mail filter is included.

Included application functionality:

  • Compliance message to filtered e-mails
  • Allowlisting and blocklisting of attributes for example senders and recipients
  • Attachment restrictions such as attachment removal
  • Attachment transformations (ZoneGuard only)
  • Downstream mail server authentication (SMTP auth)
  • Downstream e-mail encryption with TLS

File Transfer Application

The File Transfer Application provides the means to transfer files between separated security domains in a controlled manner, using the Advenica ZoneGuard or DD1000i.

The application makes ZoneGuard and DD1000i compatible with the most common file transfer protocols:

  • FTP
  • SFTP
  • NFS
  • SMB

The application consists of two clients for each protocol, one for the Upstream side and one for the Downstream side. Included is also an SFTP server and an FTP server that can be used on the Upstream side, i.e., where one can use a client to upload files directly to the ZoneGuard or DD1000i.

Syslog Application

The Syslog Application provides the means to forward Syslog messages over the UCP or TCP protocol between separated security domains in a controlled manner, using ZoneGuard or DD1000i devices.

The application is compliant with syslog standards RFC3164 and RFC5424. It consists of one server and one client. The server listens for syslog messages and tries to normalize them into a structure that follows the RFC5424 standard. The application supports multiple simultaneous sessions.

Integration Application

The Integration Application provides the means to filter information sent between separated security domains in a controlled manner, using Advenica ZoneGuard.

The application consists of the following services:

  • HTTP(S) – a service suited for use with ordinary HTTP web services
  • SOAP – an XML based protocol used for exchanging structured information
  • MySQL – a relational database management system (RDBMS)
  • Oracle TNS – a proprietary Oracle computer-networking technology

RDP Application

The RDP Application enables secure remote access to resources in security domains in a controlled manner, using Advenica ZoneGuard. The application safeguards both confidentiality and integrity of the interfaced systems by:

  • Transforming the RDP (Remote Desktop Protocol) stream into single bitmap images, keystrokes, and mouse movements at the cross-domain point
  • Validating bitmap images, keystrokes, and mouse movements to ensure correct information
  • Applying flexible filters, e.g., noise on bitmap images, adding variables to mouse movement or restricting valid keystroke codes

ICS Application

The ICS Application provides the means to filter information sent using ICS/OT (Industrial Control Systems/Operational technology) specific protocols between separated security domains in a controlled manner, using Advenica ZoneGuard.

The application consists of the following service:

  • ICCP/TASE.2 – Inter-Control Center Communications Protocol as defined in IEC 60870-6 that provide data exchange between electrical power control centres

UDP/TCP Application

The UDP/TCP Application provides the means to carry data, with unspecified type and structure, between separated security domains in a controlled manner, using ZoneGuard or DD1000i devices.

The UDP/TCP Application includes two services, one for the server side of the ZoneGuard or DD1000i device and one for the client side.

The application can be configured to support only UDP, only TCP or both. One-way traffic is supported, from server service to client service.