Advenica DD1G
The next generation data diode
Protecting the most valuable digital information
- Physically enforced one-way data flow
- Power over Ethernet (PoE)
- Hardware only
- Protecting companies, countries and critical infrastructure
The next generation data diode
The new generation DD1G is a hardware only data diode series that helps companies, countries and critical infrastructure to protect the most valuable digital information.
This robust hardware has physically enforced one-way data flow, Power over Ethernet and no configuration options, meaning that the risk of exposing vulnerabilities is fully mitigated. All network data on the upstream network will be automatically transferred to the downstream network, regardless of overlaying network protocol.
The data diode requires unidirectional network protocols (UDP) to function correctly. If an application requires any other protocol support, the interfacing systems must act as proxy services and convert these protocols into a unidirectional flow.
The DD1G series can be combined with the Advenica Data Diode Engine, a standalone proxy software solution that manages data transfer through Ethernet-based diodes, read more here.
The core of robust cybersecurity solutions
Engineered for enforced unidirectional data flow, the DD1G serve as an impenetrable barrier against cyber threats. Ensuring that data can transfer securely between intended networks without the risk of external attacks.
The DD1G is a data diode with Gigabit performance, including a purpose-built optical fibre connection that secures the separation of the two connected networks. It has no configuration options and therefore the risk of faulty configuration or outdated software that exposes vulnerabilities is fully mitigated.
Extended functionality with proxy services
For use cases requiring bidirectional communication, the DD1G series can be combined with the Advenica Data Diode Engine, a standalone proxy software solution that manages data transfer through Ethernet-based diodes.
The Data Diode Engine is optimised for efficient and secure data transfer and supports a range of application specific software services for use cases such as file transfer or sensor data export.
Key features
- Guaranteed one-way data flow based on optical fiber.
- Pure hardware device, no risk of misconfiguration.
- Combine with Advenica Data Diode Engine for versatile and scalable data diode solutions.
- Flexible installation with three-way mounting options (standalone, rack mounted, DIN-rail).
Technical brief
- 1Gbps interfaces
- PoE-enabled power supply (Power over Ethernet)
- Works on Ethernet Layer 2
- Native support for unidirectional protocols
- Tamper-evident casing
Technical data
Applications and protocols supported
- Log export (e.g. Syslog over UDP)
- AIS (Automatic Identification System) over UDP
- Media streaming (RTP)
- CCTV monitoring
Performance
Network interfaces
Gbit Ethernet
Ports
Network data (Upstream + Downstream)
2x Gbit Ethernet (RJ45)
Physical characteristics
Mounting
- Standalone
- Rack-mounted (1U in 19’’)
- DIN-rail
Security
- Tamper evident casing
Device Size
- 100x32x138 (WxHxD)
Device Weight
- 0.5 kg
Electrical characteristics
Input voltage
- 1x or 2x 24VDC (Redundant power inlets)
Power consumption
- 6W
Power supply options
- 1x 100-240VAC / 24VDC (Power supply rating 18W), included
- 1x or 2x 24VDC 6W (Terminal screw plint), included
- Power over Ethernet (PoE)
Environmental characteristics
Storage
-20° – +60°C, 5% – 95% RH non-condensing IEC 60721-3-1 (1K3/1B1/1C2/1S2/1M2)
Transport
-20°- +60°C, 5% – 95% RH non-condensing IEC 60721-3-2 (2K2/2B1/2C1/2S1/2M2)
Stationary use
0° – +50°C, 20% – 90% RH non-condensing IEC 60721-3-3 (3K3/3Z1/3B1/3C1/3S1/3M2)
Supported standards
Compliance
CE
Network data ports
IEEE 802.3ab,1000Base-T
Some security challenges where datadiodes are a good solution
Traceability and security logging
Centralised logging in security-sensitive systems involves an enhanced risk of attacks. To reduce the risks, a solution is needed that protects both log data and all connected systems. Read more about traceability and security logging.
Secure transfer of SCADA information
To transmit critical information, e.g. from a SCADA system to an administrative office network means potential security risks. But there are solutions that take care of security problems and at the same time enables an exchange of information. Read more about secure transfer of SCADA information.
Secure updates
Updates for Windows and Linux systems are an important part of maintaining the security of the digital information in these systems. However, the updates themselves may be a security risk – to avoid these risks and to maintain the integrity and availability of the systems and be able to make secure updates, special solutions are required. Read more about secure updates.