Access my OT networks, safely
Traditional remote access is high risk for OT networks. Vendors don’t always have sufficient background checks, some of the existing passwords may be weak or already stolen, and always-on remote access systems often have known and zero-day vulnerabilities that can be compromised at an attacker’s convenience.
Waterfall’s Unidirectional Security Gateways deliver secure access to OT networks, while remaining unbreachable to cyber attackers.
With Waterfall you get
Vendor Access
Insider Access
Continuous Vendor Monitoring
Vendor Access
Unidirectional Remote Screen View (RSV) sends a video feed of engineering workstation and other industrial screens through Unidirectional Gateway hardware to a web server for use by remote 3rd parties, such as vendors. 3rd parties can see mouse movements and screen activity and can provide real time analysis and advice via phone to site engineers and technicians. Site engineers ask questions and take notes before accepting any advice from vendors. Unidirectional hardware means no stolen passwords or two-factor vulnerabilities can put operations at risk.
Insider Access
Waterfall's Secure Bypass (SBP) unit can be installed in parallel with a Unidirectional Gateway. When the SBP unit is activated by a key, it creates a temporary 1Gbps bi-directional connection into the protected network. After a pre-programmed period, typically 30-90 minutes, the unit physically disconnects the remote access connection, and no remote commands or attack information can enter the protected network anymore. SBP gives industrial sites physical control over remote access by trusted insiders.
Continuous Vendor Monitoring
Waterfall's Unidirectional Gateways make copies of equipment monitoring and diagnostic servers for use by equipment vendors. The vendors use the IT copies of their servers to diagnose problems and recommend maintenance. All this while no ransomware or stolen password or other attack can penetrate the Unidirectional Gateway hardware to put physical operations, workers or equipment at risk.
Vendor Access
Unidirectional Remote Screen View (RSV) sends a video feed of engineering workstation and other industrial screens through Unidirectional Gateway hardware to a web server for use by remote 3rd parties, such as vendors. 3rd parties can see mouse movements and screen activity and can provide real time analysis and advice via phone to site engineers and technicians. Site engineers ask questions and take notes before accepting any advice from vendors. Unidirectional hardware means no stolen passwords or two-factor vulnerabilities can put operations at risk.
Insider Access
Waterfall's Secure Bypass (SBP) unit can be installed in parallel with a Unidirectional Gateway. When the SBP unit is activated by a key, it creates a temporary 1Gbps bi-directional connection into the protected network. After a pre-programmed period, typically 30-90 minutes, the unit physically disconnects the remote access connection, and no remote commands or attack information can enter the protected network anymore. SBP gives industrial sites physical control over remote access by trusted insiders.
Continuous Vendor Monitoring
Waterfall's Unidirectional Gateways make copies of equipment monitoring and diagnostic servers for use by equipment vendors. The vendors use the IT copies of their servers to diagnose problems and recommend maintenance. All this while no ransomware or stolen password or other attack can penetrate the Unidirectional Gateway hardware to put physical operations, workers or equipment at risk.
Remote Access Solutions
Waterfall provides a variety of remote access solutions designed to cater to different customer requirements and architectures, all while prioritizing safety and security.
Flip
The FLIP reverses a built-in Unidirectional Security Gateway allowing scheduled updates.
Secure Bypass
The Secure Bypass Module enables on-site, physical control over remote access connections.
Waterfall’s Industry-Specific Solutions
