Today, communication technology facilitates the exchange of information between devices and networks. Cyber security for systems is really a matter of top concern because it can lead to serious consequences, affecting operational processes as well as causing damage to businesses. Cyber attacks do not stop happening, especially attacks also target industrial control systems (ICS) through OT networks. Currently, there are many solutions that combine cyber attack prevention such as firewalls (Firewall), Advanced Persistent Threat prevention (APT) and one-way firewalls (Data diodes).
Industry 4.0 and the development of IoT technology are the driving force for organizations towards the convergence of computer networks and enhanced connectivity between network systems. However, when connecting multiple networks together will arise, a lot of network security risks. Therefore, a solution is needed to maintain a "safe distance" between networks by regulating the flow of data properly to solve the above challenges.
A Data Diode is a one-way data port and communication that allows data to be transmitted securely over physically isolated networks to minimize the risk of data leakage. Data diode device or technology is a solution with high performance, compact design that can be easily integrated into the operating environment of the organization. Securely designed to prevent data leaks and eliminate network threats by enforcing one-way data transmission at both the physical and protocol layers.
The main functions of Data Diode:
- Ensure information according to the design.
- High throughput and powerful performance.
- Easy system integration and customization.
- Built-in Depth Defense.
- Compact design, allowing for encapsulation of all functions, convenient for quick deployment.
Realizing the main advantages of the Data Diode system, EVNHCMC has deployed and put into operation this system to ensure security between the IT network and the OT network since October 2019. Since implementing the Data Diode solution, the system has operated well, ensuring the data exchange between the OT network and the IT network is faster, more convenient and safer than previous solutions.