U

Start » Cross Domain Solutions » Datadioder » Data Diode DD1G

Advenica DD1G – the next generation data diode

Protecting the most valuable digital information

  • Physically enforced one-way data flow
  • Power over Ethernet (PoE)
  • Hardware only
  • Protecting companies, countries and critical infrastructure

The next generation data diode

The new generation DD1G is a hardware only data diode series that helps companies, countries and critical infrastructure to protect the most valuable digital information.

This robust hardware has physically enforced one-way data flow, Power over Ethernet and no configuration options, meaning that the risk of exposing vulnerabilities is fully mitigated. All network data on the upstream network will be automatically transferred to the downstream network, regardless of overlaying network protocol.

The data diode requires unidirectional network protocols (UDP) to function correctly. If an application requires any other protocol support, the interfacing systems must act as proxy services and convert these protocols into a unidirectional flow.

 The DD1G series can be combined with the Advenica Data Diode Engine, a standalone proxy software solution that manages data transfer through Ethernet-based diodes, read more here.

The core of robust cybersecurity solutions

 

Engineered for enforced unidirectional data flow, the DD1G serve as an impenetrable barrier against cyber threats. Ensuring that data can transfer securely between intended networks without the risk of external attacks.

The DD1G is a data diode with Gigabit performance, including a purpose-built optical fibre connection that secures the separation of the two connected networks. It has no configuration options and therefore the risk of faulty configuration or outdated software that exposes vulnerabilities is fully mitigated.

Extended functionality with proxy services

For use cases requiring bidirectional communication, the DD1G series can be combined with the Advenica Data Diode Engine, a standalone proxy software solution that manages data transfer through Ethernet-based diodes.

The Data Diode Engine is optimised for efficient and secure data transfer and supports a range of application specific software services for use cases such as file transfer or sensor data export.

Key features

  • Guaranteed one-way data flow based on optical fiber.
  • Pure hardware device, no risk of misconfiguration.
  • Combine with Advenica Data Diode Engine for versatile and scalable data diode solutions.
  • Flexible installation with three-way mounting options (standalone, rack mounted, DIN-rail).

 

 

Technical brief

  • 1Gbps interfaces
  • PoE-enabled power supply (Power over Ethernet)
  • Works on Ethernet Layer 2
  • Native support for unidirectional protocols
  • Tamper-evident casing

 

Technical data

Applications and protocols supported

  • Log export (e.g. Syslog over UDP)
  • AIS (Automatic Identification System) over UDP
  • Media streaming (RTP)
  • CCTV monitoring

 

Performance

Network interfaces

Gbit Ethernet

 

Ports

Network data (Upstream + Downstream)

2x Gbit Ethernet (RJ45)

 

Physical characteristics

Mounting

  • Standalone
  • Rack-mounted (1U in 19’’)
  • DIN-rail

Security

  • Tamper evident casing

Device Size

  • 100x32x138 (WxHxD)

Device Weight

  • 0.5 kg

 

Electrical characteristics

Input voltage

  • 1x or 2x 24VDC (Redundant power inlets)

Power consumption

  • 6W

Power supply options

  • 1x 100-240VAC / 24VDC (Power supply rating 18W), included
  • 1x or 2x 24VDC 6W (Terminal screw plint), included
  • Power over Ethernet (PoE)

 

Environmental characteristics

Storage

-20° – +60°C, 5% – 95% RH non-condensing IEC 60721-3-1 (1K3/1B1/1C2/1S2/1M2)

Transport

-20°- +60°C, 5% – 95% RH non-condensing IEC 60721-3-2 (2K2/2B1/2C1/2S1/2M2)

Stationary use

0° – +50°C, 20% – 90% RH non-condensing IEC 60721-3-3 (3K3/3Z1/3B1/3C1/3S1/3M2)

 

Supported standards

Compliance

CE

Network data ports

IEEE 802.3ab,1000Base-T

Some security challenges where datadiodes are a good solution

Traceability and security logging

Centralised logging in security-sensitive systems involves an enhanced risk of attacks. To reduce the risks, a solution is needed that protects both log data and all connected systems. Read more about traceability and security logging.

Secure transfer of SCADA information

To transmit critical information, e.g. from a SCADA system to an administrative office network means potential security risks. But there are solutions that take care of security problems and at the same time enables an exchange of information. Read more about secure transfer of SCADA information.

Secure updates

Updates for Windows and Linux systems are an important part of maintaining the security of the digital information in these systems. However, the updates themselves may be a security risk – to avoid these risks and to maintain the integrity and availability of the systems and be able to make secure updates, special solutions are required. Read more about secure updates.

Certifieringar och godkännanden

Advenicas lösningar har erhållit flera prestigefyllda godkännanden av EU, nationella certifieringsorgan och internationella certifieringsorgan för IT-säkerhet. Vi har också beviljats amerikanskt patent för vår VPN-teknologi, Three Domain Separation.

Warranty

Advenica garanterar att denna produkt kommer att vara fri från defekter i material och utförande under ett (1) år från inköpsdatum.