Secure & Reliable Smart Manufacturing Operations

The Smart Way To IIOT Starts With Secure Cloud Connectivity
Secure & Reliable Smart Manufacturing Operations
Customer/ Partner:

Smart Manufacturing Enterprise.

Customer Requirement:

Enable secure Industry 4.0 and industrial Internet cloud connectivity for manufacturing floor systems, while eliminating the risk of remote attacks impairing manufacturing operations.

Waterfall’s Unidirectional Solution:

Unidirectional CloudConnect secures the smart manufacturing network perimeter from external threats with hardware-enforced protections, and converts data into unified cloud-friendly formats, enabling vendor monitoring, industrial could services and real-time visibility into operations.

Industrial Connectivity Challenges

The IIoT promises enormous value to manufacturing operations but faces significant challenges. Industrial communications protocols and data formats are not good fits for big-data and cloud analysis needs, and increased Internet connectivity to edge devices on industrial networks dramatically increase attack opportunities and security risks.

Waterfall’s Unidirectional CloudConnect provides strong, physical protection from Internet-based and other remote attacks for industrial control systems and edge devices. In addition to strong cyber protections, CloudConnect routinely carries out all necessary industrial-to-cloud communications as well as data format and object format conversions. Unidirectional CloudConnect makes industrial cloud connectivity easy and robust.

 

The Challenge icon
The challenge

To secure the production network from IP theft and cyber-sabotage from threats emanating from cloud networks, yet still provide the enterprise network with real-time access to live operations data and visibility into manufacturing operations. Modern industrial attacks routinely defeat firewalls, encryption, intrusion detection and other software protections. The smart manufacturing site needs to enable cloud connectivity for edge devices in control system networks, while reliably defeating modern attacks.

Waterfall solution - icon
Waterfall solution

Waterfall Unidirectional CloudConnect was installed between the manufacturing production network and the enterprise network. Unidirectional CloudConnect collects data from IIoT edge devices as well as from conventional industrial data sources such as PLCs, OPC servers and production historians. Unidirectional CloudConnect converts this data into web sockets and other cloud-friendly formats and publishes the data to cloud platforms while physically preventing any Internet-based attacks from reaching manufacturing networks.

Results and benefits - icon
Results & benefits

100% Security: The production network is now physically protected from any cloud-based threats.


100% Visibility: Waterfall Unidirectional CloudConnect provides safe visibility into industrial operations for enterprise users, vendors and cloud-based service providers.


100% Compatible: ICS, enterprise and cloud systems continue to operate normally. Unidirectional CloudConnect provides to each participant with the protocols and services they expect of connected devices and networks.

vertical red line
Theory of Operation
Click to enlarge

Waterfall Unidirectional CloudConnect is a secure cloud gateway based on Waterfall’s industry-leading Unidirectional Security Gateway technology. CloudConnect uses both hardware and software components. Unidirectional Gateway hardware can transmit information from a control system network to an external network but is physically incapable of propagating any cyber attack back into the protected network. Unidirectional Gateway hardware includes a Transmit (TX) Module with a fiber-optic transmitter, but no receiver, and a Receive (RX) Module, with an optical receiver, but no transmitter. The gateway hardware can transmit information from a manufacturing network to an external network, but is physically incapable of propagating any virus, DOS attack, human error or any other cyber attack back into the protected network.

Unidirectional CloudConnect builds on this one way protection hardware by gathering data from Industrial Internet (IIoT) and Industrie 4.0 edge devices, translating that data into Internet-friendly and cloud-friendly formats and protocols, and transmitting the information securely to cloud systems. Unidirectional CloudConnect both translates industrial data into big-data and cloud-friendly formats and provides Internet connectivity for manufacturing operations without risk to those operations.

vertical red line
Unidirectional Security Gateways Benefits:

arrow red rightSafe Cloud integration physically preventing remote attacks from infecting the production network

arrow red rightEnables big-data, cross-site and cross-application analysis and correlations

arrow red rightSafely enables outsourced and cloud services such as predictive maintenance, big-data optimization and outsourced cloud security monitoring 

arrow red rightCompliance with even the most demanding cyber-security regulations, standards, and best-practice guidance

vertical red line
Security And Compliance

Certification: Common Criteria EAL 4+, ANSSI CSPN, NITES Singapore, CCC China 

Assessments: US DHS SCADA Security Test Bed & Japanese Control Systems Security Center Bed, Idaho National Labs, Digital Bond Labs, GE Bently Nevada Systems Labs, and NISA Israel 

Complies with: Global ICS Standards & Regulations, NERC CIP, IEC 62443, NRC 5.71, NIST 800-82r2, CFATS, ISO, IIC SF, ANSSI, and many more

Share

Stay up to date

Subscribe to our blog and receive insights straight to your inbox