Technology and products - Waterfall Security Solutions

Technology You Can Trust

Hardware-enforced protection for safe and reliable operations, paired with software-driven connectivity for effortless integration and unmatched ease of use.

Integrated hardware and software
protects operations in real-time

Prevent cyber attacks

One-way hardware makes sabotage attacks into your OT network impossible.

Efficient & smooth operations

Streamline operations with secure, seamless communication across critical boundaries.

All-in-one security solution

No extra software required – manage everything effortlessly through a powerful web interface.

Engineering-Grade Unidirectionality

One-way data flow, physically isolated networks, and dual power supplies for maximum uptime and peace of mind.

Easy Control from a Single Pane of Glass

Configure licenses, filters, alerts, and logs.
Monitor Waterfall devices securely from anywhere.
Securely manage your connectors, services, and licenses.
Troubleshoot connections, logs, hardware, and software.

Connector Library

Hardware platforms

The software connectors replicate servers and simulate devices, enabling enterprise users and applications to access OT data in both directions from the replicated servers. Waterfall’s security solutions support a wide variety of SCADA systems and industrial platforms, including:

SCADA Systems

ABB – 800xA (SymphonyPlus)

AspenTech – IP21

AVEVA – DataHub

AVEVA – eDNA

AVEVA – Enterprise SCADA (Oasys)

AVEVA – PI – Asset Framework

AVEVA – PI – History Backfill

AVEVA – PI Points

AVEVA – Wonderware

Bently Nevada – System1

Curtis Wright – Scientech R*Time

Emerson – AMS Machine Works / Device Manager

Emerson – EDS

Emerson – PlantWeb Insight

Emerson – PlantWeb Optics

GE – AEMS Reliance

GE – GridOS

GE – GSM

GE – iFix

GE – OSM

GE – Proficy Historian (iHistorian)

Hitachi-ABB – ADMS

Honeywell – AMS Dynamo

Honeywell – Experion

Honeywell – Forge

Honeywell – PHD

Leidos – Hold Baggage Screening (HBS) system

Rockwell – FactoryTalk

Schneider Electric – ADMS ESCADA

Schneider Electric – EcoStruxure

Schneider Electric – Invensys AIM

Schneider Electric – SCADA Expert ClearSCADA

Siemens – CFE

Siemens – OT Companion (SICAM GridEdge)

Siemens – S7

Siemens – WinTS

Siemens Energy – Gamesa

Siemens Energy – T2000

Siemens Energy – T3000

Yokogawa – CI Server

Yokogawa – ExaOPC

Yokogawa – Exaquantum

Monitoring Protocols

Broadcast stream

Ethernet Spoofing

IP Video and Audio

Multicast stream

Netflow

Remote Printing

Remote Screen View

SMTP

SNMP

Splunk

SYSLOG TCP

SYSLOG UDP

TCP Multi

TCP/IP

Time Sync

UDP

UDP Spoofing

Monitoring Systems

ArcSight

Elastic

FortiSIEM

Google Chronicle

Helix

IBM QRadar

LogRhythm

Microsoft Sentinel

SolarWinds

SolarWinds Orion

Splunk

Industrial Protocols

BACnet

Building Automation Protocol

DNP3

IEC 60870-5-104

IN/OUT ICCP

Modbus

OPC AE

OPC DA (Classic)

OPC Historical DA

OPC Protocols

OPC UA

OPC UA Historians

Unidirectional ICCP

Databases

Microsoft SQLServer MySQL Databases Oracle Databases

Waterfall Updater

AV updates

Nessus Security Center Updates

WSUS Updater

Files

Folder Mirroring

FTP and FTPS

Local Folder Transfer

Remote Folder Transfer

SFTP (SSH)

TFTP

Messaging

Active MQ

AMQP

HTTP(s) Requests

IBM MQ

Kafka

Microsoft MQ

MQTT

TIBCO EMS

The hardware provides an unbreachable physical barrier to online attacks targeting OT networks.

WF-600

Waterfall’s flagship WF-600 Unidirectional Security Gateway provides unbreachable protection for OT / industrial control system networks. The WF-600 gateway provides OT network perimeter protection with a hardware enforced, physical barrier preventing remote attacks, malware, DOS attacks, ransomware and human errors from entering the protected network.

WF-500

The WF-500 Unidirectional Security Gateway offers unbreachable industrial protection, enables safe IT/OT integration, secure remote access, and unlimited industrial network monitoring.

WF-500 DIN RAIL

The Waterfall WF-500 DIN Rail is a Unidirectional Security Gateway in a compact design that allows space-constrained sites to benefit from Waterfall’s unbreachable physical protection from cyber attacks on industrial networks.

Waterfall for IDS

Waterfall for Intrusion Detection Systems (IDS) enables IT networks to safely monitor OT systems to detect intrusion attempts by preventing the risk of anything going back into the OT networks via the IDS.

WF-Secure Bypass

The Waterfall Secure Bypass Module provides physical protection for emergency and other remote support mechanisms, while providing the industrial site with physical control over the frequency and duration of remote access. Secure Bypass provides secure remote access for trusted insiders.

WF-FLIP

The Waterfall FLIP is a type of Unidirectional Gateway whose orientation can be physically reversed, enabling safe scheduled updates to OT networks without the vulnerabilities firewalls always introduce.

WF-Blackbox

The Waterfall Blackbox provides a tamper-proof online repository that can survive a cyber attack, preventing attackers from hiding evidence of how they entered a network and their malicious actions within it.