OAKDOOR™

GATEWAY

Two-way secure data transfers

OVERVIEW

The Oakdoor™ Gateway family of products provides advanced security functions for applications that require two-way secure data transfer. By implementing the UK National Cyber Security Centre (NCSC) safely importing and exporting data design patterns for Gateway platforms allow connections to even the most sensitive networks at data rates up to 1 Gbit/s.

Each Oakdoor™ Gateway platform includes a pair of data diodes to perform the ‘hardsec’ verification of messages passed across the boundary, and the necessary software (Safe Browse and Safe Data applications) to be effective in the most complex use-cases. It can be used on a desk or mounted in 1U of a 19’’ rack.

EXAMPLE WORKFLOW

Oakdoor™ Trust Gateway

Secure file import and internet browsing

Gives assured two-way transfer of arbitrarily sized files across a network trust boundary, for example between untrusted and trusted networks. It also enables secure internet browsing from trusted networks to a remote desktop server connected to the internet on the untrusted side (also known as ‘browse down’ from high-trust to low-trust networks).

Oakdoor™ Classification Gateway

Secure file import and internet browsing to lower classification networks

Implements assured cross-domain file transfer of arbitrarily sized files between networks running at different security classifications. It also enables secure internet browsing from classified networks to a remote desktop server connected to the internet on the low side (also known as ‘browse down’ from high to low networks).

Oakdoor™ Management Gateway

Secure systems management from classified networks

Provides the same features as the Classification Gateway but adds management of DMZ (demilitarised zone) networks without requiring external hardware. It allows safe software deployment, configuration and administration of systems in the DMZ from classified networks. The Gateway ensures safe export of files to the internal server running its low side. It allows ‘browse down’ to an internal desktop running on the low side, enabling web-based administration in addition to command prompts via the secure SSH protocol.

Oakdoor™ Document Gateway

Safely import business documents

Supports safe import of structured document formats using hardware-based syntax verification and industry-leading Content Disarm and Reconstruction (CDR) software from Glasswall Solutions Ltd. The Document Gateway enables safe cross-domain handling of PDFs, Microsoft Office documents (Word, Excel and PowerPoint) and image (JPG, PNG, GIF) file formats.

USE CASES