Data Diode System
Data Diode System for Enterprise Closed Networks
Securely Bridge Air-Gapped Networks
Air-Gapped Security Networks are a popular option for organizations that want strict separation between secure and insecure networks and devices.
The challenge is to safely move data between these open (insecure) networks and closed (secure) networks.
The SecureAge Data Diode System is up to the task.
How Simple it Can Be: 3 Core Components
File Transfer System (FTS)
Ensures file security when moving between open and closed networks.
Usability is front and center with single sign-on or dedicated authentication to a file upload console for the source PC and a download URL for the receiving PC.
Information Broker (IB)
Supports larger deployments across multiple closed networks and allows dedicated applications like ERP and HR software to communicate with closed networks without dedicated connections.
Smart interactions with Data-Diode devices allow for troubleshooting and secure integration across the security environment.
Universal Anti-Virus (UAV)
The multiple virus engines in the SecureAge Universal Anti-Virus monitor the entire open and closed environment for viruses and malware.
Features at a Glance
Dual Diode Transmit
Enables High Availability for Data Diode appliance
Increase reliability of file transfers through Data Diode appliance
Ensures confidentiality of files at rest and in motion via encryption
Supports DOD 3-Pass/7-Pass & Peter Gutmann algorithm
Content Disarm & Reconstruction
Removal of harmful elements of infected files while retaining usability
Authorized users can access pertinent file transfer logs for investigation
Upload/Download History Report
Users get complete information on the status of file transfers
Web Console User Interface
Comprehensive certificate, CRL and OCSP support
Data Diode System Basic Architecture
User on Unsecure Network opens the FTS Console to upload files to be sent and picks a destination network.
Universal AV scans uploaded files for threats. All file contents are disarmed and reconstructed by the Disarm and Reconstruction Server. Clean files are then sent to the Information Broker (IB).
The IB checks file content. Files are then encrypted and transferred to the outgoing file server.
The FTS Sender server sends the file over to the secure network via the Data Diode
The IB checks the Incoming Diode Proxy, decrypts the file and sends it to the FTS server for storage in the Download Folder.
The FTS Receiver server sends a download URL to the receiving PC via secure mail server.
After initial download, the sent file remains downloadable during a set interval. A one-way acknowledge message is sent back to the sending FTS server.
On interval expiry, the file is no longer accessible by the recipient and is moved from the Download Folder to the Archive Folder on the FTS server.
Data Diode System High Availability Architecture
Support for High Availability Architecture to provide optimal performance at times of high volume file transfers.
File Transfer System
SecureAge Management Server:
Access & Control
SecureAge Management Server provides central management of SecureAge software. An enterprise-wide software update can be an extremely challenging task for system administrators. Updating each and every single computer manually within a huge organization requires significant amount of time and effort.
SecureAge Management Server allows for blissful deployment of software updates from the server to any connected computer. Once a new software package is uploaded to the SecureAge Management Server, it will intelligently detect the user’s software version and perform the necessary software update on the user’s computer.
System administrators also get the flexibility to choose only a certain groups of users to receive the software update.
All users Upload/Download
Key & Cipher Management
Download File Upload/Download History
One Simple Solution
Software + Hardware
The SecureAge Data Diode System provides a complete solution that encompasses both hardware and software.
The File-Transfer System, Information Broker, and Universal AV form a complete security ecosystem optimized for Data-Diode hardware.
The SecureAge Data Diode System also supports Data-Diode devices from a wide range of hardware providers.
The File Transfer System, Information Broker, and Universal AV environment can easily work on any Diode-Proxy configuration.
SecureAge Data Diode System
Summary of Benefits
Includes support for Single Sign-On Authentication and Microsoft Active Directory (AD) that allow users to readily access secure file transfers
Protected Every Step of the Way
The SecureAge Data Diode System provides end-to-end encryption of your data at rest with full network encryption and the ability to wipe residue data
Power in Visibility
Get clear reports as to what, where, and when files are transferred over and between closed networks. Users have access to reports to confirm data delivery results
Hardware and Software Harmony
The SecureAge Data Diode System provides a turnkey solution for air gap networks that consists of a readily available setup of Data Diode device and file transfer system
Just as Flexible for Industry Standard Hardware
The powerful SecureAge Data Diode System works with all Data Diode appliances available in the market
Tighter Security where Less is Actually More
Get the most out of your Data Diode devices by greatly reducing the number needed to operate multiple air gap networks in your organization
Proven Technology & Trusted Support
Get trusted technology that has been deployed for more than a decade with a team of expert security engineers