Data Diode Dual Server
The AGS-DataDiode is a 2U rack-mount computer with two completely independent servers flanking a BAE data diode. Designed to match perfectly with the BAE data diode it enables a point-to-point one-way transfer solution that supports file transfer, email and video streaming in one direction only.
A data diode (also referred to as a unidirectional security gateway or unidirectional network) is a network appliance or device allowing data to travel only in one direction, used in guaranteeing information security. They are most commonly found in high security environments such as defense, where they serve as connections between two or more networks of differing security classifications. This technology can now be found both in the military and at the industrial control level for such facilities as nuclear power plants, and electric power generation.
Theory of Operation
The Data Diode Solution is a controlled interface, strictly enforcing a unidirectional flow of data at the physical level. The absence of a return path ensures no possible data leakage and mitigates risks of malware, such as Advanced Persistent Threats, designed to covertly exfiltrate sensitive data. The Diode functions in conjunction with BAE Systems’ Data Pump Applications and content filtering software. The device typically sits between two servers attached to their respective security domains. The solution prohibits the separate enclaves from detecting each other. It supports unidirectional transfer of SMTP email, including attachments, and file-based and streaming data. By converting data into sequenced UDP packets, the data can then be transmitted across the Data Diode Device. Once received, the UDP packages are reconverted back to the original format. The solution includes automated acknowledgement for one way TCP support as well
For further information see Protecting Confidential Information using Data Diodes by Nexor.
Each computer in the AGS-DataDiode has it’s own power supply and is completely independent.
Connections to the networks are via Gigabit Ethernet connections, while the data that goes to the Data Diode travels through fiber connections. All the connectivity is visible from the front panel, and a friendly arrow indicates the direction that the information may flow.
CPU: Intel i5-3550S, 3.7GHz, 4-core, 65W
SSD: Innodisk SATADOM Industrial 128GB
LAN: 2 x Gigabit Ethernet ports
PSU: 450W independent power supplies
80+ Gold Certified
Data Diode PSU mounting bracket
Data diode mount for Enterprise & Tactical physical variants
Depth – 456mm or 18”
Width – 19” rack mount
Height – 2U – 3.5”
Weight – 20lb without data diode, 25lb with data diode
Three power cords required
Fiber connection from PC1 to Data-Diode to PC2
2U completely integrated form factor