U

Start » Learning Centre » Use Case » Secure communication to or from a high security domain using data diodes and secure cloud

Secure communication to or from a high security domain using data diodes and secure cloud

Do you want to send data to a secure data-sharing platform from a network with a higher security classification without exposing it?

Do you need secure data collecting but also want to share collected data with a high security domain or network? Or do you want to send data to a secure data-sharing platform from a network with a higher security classification without exposing it? By using Synkzone’s secure cloud for data collection and sharing, along with Advenica’s data diode to protect your high security domain or network, you can ensure that communication is strictly one-way and secure.

Data protection

Synkzone offers a revolutionary layer of data protection that shifts the focus from mere prevention to comprehensive safeguarding of data across all fronts. Synkzone not only aims to block attacks but ensures that the data itself is fragmented, encrypted, and only accessible under strict compliance rules defined by the data owner. This method not only protects against external threats but also reduces risks posed by insider threats and accidental leaks.

Moreover, with Synkzone’s geo-legal compliance and advanced encryption protocols, organisations can guarantee that their data adheres to the latest regulations and remains shielded even if perimeter defences are breached. This approach not only enhances the security architecture but adapts to the changing regulatory landscape, adding an essential layer of legal protection.

But how do you protect your high security network or domain when you want to send data to or from your Synkzone?

One-way information flow

In some use cases you want to send data to or from your Synkzone while ensuring your domain remains protected in a secure way. If you for example want to export and send data from an OT environment, such as a factory, to your Synkzone, and you want to be absolutely confident that nothing can enter in and affect your OT environment in any way. By using a data diode between the Synkzone and the OT environment, you are guaranteed that nothing from IT, the Internet or Synkzone can affect your operations in the OT zone.

Data diode with Synzone source

If you want to collect data from your Synkzone to a network that has a higher security classification, you place the data diode between the network and your Synkzone to ensure there is no data leakage. With the help of Advenica’s data diodes and the “Advenica Data Diode Engine” software, unidirectional communication to or from Synkzone’s secure storage and distribution service is ensured.

Data diode with Synkzone destination

 

Secure communication and protected data

By placing a data diode between the classified network and the Synkzone it is ensured that the communication is strictly one-way and a secure transfer is made by using Synkzone encryption and authentication methods. The data diode contributes to an environment that meets very high security requirements and you can feel secure that your data and your domain are protected at the highest level. With this solution your network with a higher security classification will stay unexposed.

 

The solution is based on Advenica’s SecuriCDS Data Diode DD1000i, a data diode ensuring unidirectional data transfer with built-in support for several file transfer protocols.

Read more about our data diodes

SecuriCDS Data Diode prevents intrusion and leakage in addition to maintaining network integrity and confidentiality. This high assurance solution safeguards assets for operators within ICS/SCADA or the defence industry.


Front page

 


Download Use Case

Related articles