The Sunhillo Data Diode is designed to protect the integrity of a secure surveillance network by strictly enforcing a one-way-only flow of data from a secure network to a public network. The Data Diode accomplishes this by implementing a 100% hardware-enforced security protocol that cannot be disabled or bypassed.
The Data Diode connects multiple networks with different security classifications which is a critical element for the Defense and Industrial sectors.
Features:
Gigabit Ethernet port to secure (High) network. The Data Diode receives IP data from the secure network for forwarding to the public network. The secure network communicates with a fully compliant IP proxy that in turn forwards one-way UDP packets to the public side of the Data Diode. With no logical or electrical receive path on the High side UDP interface, malicious packets can’t make their way to the secure network.
Dual Gigabit Ethernet ports to public (Low) network. The Data Diode can forward IP data from the secure network to the public network(s). In a mirror configuration of the High side, the public network communicates with a fully compliant IP proxy that receives one-way UDP packets from the secure side of the Data Diode. There is no logical or electrical transmit path on the Low side UDP interface, so malicious packets can’t make their way through the Diode to the secure network.
Hardware:
Sunhillo’s Data Diode features a compact 1U enclosure based on the FAA deployed Sunhillo RICI 5000 and Margate II ADS-B Receiver.
The front panel provides dual RJ45 Ethernet ports. These connections support Category 5e 10/100/1000 Ethernet cables, which provides an interface to a LAN’s switch, router, or hub. In most applications, the Low-Side LAN connections are to the public LAN(s).
The high side Ethernet port connection is located in the center of the Data Diode rear panel. This connection supports a Category 5e 10/100/1000 Ethernet cable, which provides an interface to a LAN’s switch, router, or hub. In most applications, the High-Side LAN connection is to the user’s private LAN.