top of page
Unidirectional Security Gateways

Waterfall Unidirectional Security Gateways enable safe enterprise monitoring of operations for secure IT/OT integration. The gateways protect operational (OT) network perimeters and critical control processes in industrial network environments, providing absolute protection from remote cyber threats. Unidirectional Gateways enable vendor monitoring, disciplined remote access, IIoT and industrial cloud services, and real-time visibility into operations for modern enterprises. Unidirectional Gateways replace at least one layer of firewalls in industrial network environments and replicate servers, emulate industrial devices and translate and publish industrial data to cloud formats.

Waterfall Unidirectional Gateways contain both hardware and software components. Gateway hardware is physically capable of transmitting information in only one direction. The hardware components include a TX Module containing a fiber-optic transmitter/laser but no receiver, an RX Module containing an optical receiver/photocell but no laser and a short fiber-optic cable connecting the two Modules. The gateway hardware is thus able to transmit information encoded in an optical signal from a control system network to an external network but is physically incapable of propagating any remote control attack, malware, DOS attack, human error or any cyberattack at all back into the protected network.

The software component replicates servers from OT networks to external enterprise networks. Enterprise users and applications interact with the replica servers as if they were the original industrial servers. Application vendor support is essential to a successful deployment of Unidirectional Gateways. Waterfall supports commercial-off-the-shelf (COTS) connector software products for the widest array of industrial applications on the market.

Unidirectional Gateway Diagram
bottom of page