When it comes to cybersecurity for electric power, all aspects of the electrical power industry are considered critical infrastructures. Any unplanned outages are not only costly, but potentially a threat to public safety.
Even worse, cyber sabotage has the potential to put worker safety at risk, trigger toxic discharges and damage long-lead-time turbines, high-voltage transformers and other equipment.
Waterfall protects OT systems for electric power generation, including conventional generation, nuclear generation, power transmission, power distribution, and control centers.
Power generating operations need to be secure from cyber attacks that can threaten the correct operation of the generating unit and its control systems, while still maintaining connectivity with outside vendors and employees to keep everything optimized and fine tuned. Waterfall's Unidirectional Gateways enable safe IT/OT integration, with safe visibility into operations.
Both worker safety and public safety are the absolute highest priorities at nuclear generators, with efficient and reliable operations as important secondary priorities. Waterfall's unbreachable Unidirectional Gateways enable the benefits of IT/OT integration, without the risks that always accompany firewalled communications.
Continuous operations and preventing damage to high-voltage transformers and other equipment are top priorities for transmission utilities. Waterfall's Unidirectional Gateways enable safe IT/OT integration, safe visibility into operations, and engineering-grade protection for protective relay networks.
Worker safety and quick diagnosis of and responses to outages are top priorities for power distribution systems. Waterfall's Unidirectional Gateways prevent even sophisticated attacks from reaching sensitive distribution control systems, while safely pushing critical SCADA data into Outage Management Systems.
The stability of the grid is a paramount priority, one that is is at risk when connecting TSO's and Balancing Authority Energy Management Systems to partner utilities , both large and small. Waterfall's Unidirectional Gateways enable safe ICCP and IEC 61850 MMS connectivity to third-party partners.
With Waterfall you get
Safe IT/OT Integration
Unidirectional Gateways provide business automation with access to OT / industrial data, without providing attackers or malware access to the industrial systems that are the sources of that data.
Safe Security Monitoring
Unidirectional Gateways provide enterprise and out-sourced Security Operations Centers (SOCs) with safe access to industrial network data,
so generating utilities can leverage specialized expertise and economies of scale.
Unidirectional Gateways allow people and automation to monitor the status of protective relays, without risk of tampering with those very important components.
OT IDS & SOC
The Waterfall for IDS product replicates mirror and SPAN ports to OT IDS sensors on IT networks. Unidirectional Gateways replicate Syslog, SNMP traps and other security monitoring information to enterprise and cloud SOCs. Waterfall makes security monitoring safe and transparent.
Undirectional Gateways replicate historians, databases, OPC servers and more to business networks. Business users and applications use the replicas normally – because all of the data that is allowed to be shared with IT networks is in the replica servers already.
Unidirectional Gateways forward DNP3, IEC 60870-104, IEC 61850 and other status and fault information promptly to SCADA systems and engineering teams, while providing unbreachable, engineering-grade protection for protective relay networks.
TSO's & Balancing Authorities
Unidirectional Gateways replicate grid authority Energy Management Systems (EMS’s) to partners, and partner EMS’s in to the protected EMS, providing stronger-than-firewall protection from the propagation of malware and other attacks
Unidirectional Gateways replicate Distribution Management System (DMS), OPC, historian and other SCADA system data to Outage Management System and business networks, enabling prompt outage diagnosis and other business efficiencies, without exposing sensitive DMS automation to external tampering.
Unidirectional Gateways safely replicate GE OSM, Siemens and other turbine vibration and status information to the turbine vendors, and those vendors can carry out occasional turbine adjustments using unidirectional Remote Screen View or Secure Bypass capabilites.
How it works
An industrial network safley to an IT network
The industrial network with hardware enforced technology
Real-time operational servers to the enterprise IT network