Secure cross domain data transfer for fast, high assurance, guaranteed one-way data flow.
Where security requirements or commercial sensitivities necessitate physical separation between networks, seemingly simple tasks such as applying application updates and patches can become manpower intensive.
Removable media (DVDs, USB drives) are often used to move data from one system to another which, in addition to being time consuming, can also prove difficult to audit. Moreover, near real-time data transfer, for example in support of protective monitoring, is practically impossible with these media.
Our SyBard® Diodes provide a secure and easily accreditable means to alleviate the issues associated with air-gapped networks, and can be integrated simply into existing architectures. They have been successfully deployed both in data import scenarios (providing data leakage protection), and in data export scenarios (protecting the exporting system from attack).
To suit a range of deployment scenarios, SyBard® Diode is available in four distinct configurations: Standard Diode; Multiheaded Diode; Multi-tailed Diode; and Highly Available Diode.
- Standard Diode provides a simple solution to move data from a single source network to a single destination network.
- Multi-headed Diodes are designed for data aggregation from multiple source networks into a single destination network, for example to monitor the status of a number of networks by consolidating log information into a single domain.
- Multi-tailed Diodes are used to push data from a single source network to multiple destination networks. A typical use case for this is rolling out anti-virus updates to a number of separate networks.
- Highly Available Diodes are suitable where the highest levels of resilience and performance are required, and ensure continuous service even in the event of system component failure.
All SyBard® Diode options are listed in the NATO Information Assurance Product Catalogue
SyBard® Diode has been used for:
- Importing anti-virus or operating system updates – creating an automated and secure process to deliver patches into one or more networks
- Transferring files using NFS/Samba
- One-way forwarding of SMTP email
- Streaming video
- One-way time synchronisation via NTP
- Transfer of print jobs to a protected network printer
- One-way synchronisation of training simulations using DIS message format
For more information and white papers outlining how SyBard® Diode can be used in the above scenarios, contact us at sybardsales@QinetiQ.com