Waterfall for IDS

 

Waterfall for Intrusion Detection Systems (IDS) enables IT networks to safely monitor OT systems to detect intrusion attempts by preventing the risk of anything going back into the OT networks via the IDS.

 Waterfall for IDS is a hardware-enforced, physical barrier that ensures data can only flow in one direction that prevents remote attacks, malware, DOS attacks, ransomware and human errors originating on external networks.

How it works

Group 1117

Connect

An OT network safely to IT-resident OT IDS sensors

Group 1117-1

Monitor

The OT network accurately through the unidirectional hardware

Group 1117-2

Manage

OT IDS sensors conveniently on IT network without risk to operations

Benefits

Safe intrusion detection

Enables monitoring of OT networks without introducing new connectivity risks to the monitored networks

No new hosts

All functions in gate array logic, with no hosts introduced to IT or OT network

Easy management

Network sensors can be deployed on IT networks for easy management by SOC analysts, without risk to OT networks

Eliminates bidirectional mirror port risks

Mirror ports are no longer a risk to OT networks when OT IDS sensors are deployed on IT networks

Seamless integration with SOCs

Supports stand-alone operations
and integration with industry-leading SIEM/SOC solutions

Unbreachable physical barrier

Hardware-enforced technology protects OT networks absolutely from cyber attacks pivoting through OT IDS sensors

Features

21

Simple hardware-only design with no CPUs to manage

1-2

1Gbps copper connectivity

23

Front panel cabinet connections for clear unidirectionality

24

Mirror port accurately emulated to IT-resident OT IDS sensors

25

Optional flow statistics reported to SIEM / SOC / NOC

Technical specifications

Dimensions

43.5(W), 52(D), 4.36(H) cm 1U standard rackmount

Power

110-240V AC, 50-60 Hz

Weight

5.3 kg

Network Interfaces

4 x 1Gbps

Temperature

Operating: +23° +113° F / -5° +45° C | Storage: -40° +158° F / -40° +70° C

Certification & Compliance

Certification

Common Criteria EAL4+, Singapore CSA

EMC

EN 55032, EN 55035, EN 61000-3-2, EN 61000-3-3, FCC Part 15 Subpart B

Safety

EN/IEC/UL 62368-1

Environmental

ETSI EN 300 019-2-2

Product Information

One way for data.
Zero entry for attackers.