NERC CIP COMPLIANT SECURE HIGH SPEED SECURITY OVERLAY DEVICE
NO MONTHLY SUBSCRIPTION IS REQUIRED FOR THIS DEVICE
3eTI’s EtherGuard® L3 (3e-636L3) is a Layer 3 industrial Information Assurance (IA) appliance designed to protect critical infrastructure facilities from internal or external cyber attacks. Its versatile security platform delivers 180 Mbps IPSec/VPN performance, while it’s optimized system size, weight, and power (SWaP) design makes it the ideal solution for industrial installations.
EtherGuard L3 is more than a traffic encryption device; it also provides protections such as port authentication, access-control, and application level packet inspection. Unlike competitors, designed for general enterprise applications, EtherGuard L3 is specifically designed to provide strong cryptographic defense-in-depth protection for IP connected PLC (Program Logic Controller) devices to connect to IP networks.
Machine-to-Machine (M2M) Network Authentication EtherGuard L3 supports certificate based 802.1X port authentication protocol, simplifying the device authentication inherent in an industrial network’s M2M communications. When installed together with a PLC, authentication of each PLC can be managed in the same way as a personal computer in a Federal or DoD network. Additionally, the utility network authentication service can be conveniently integrated with the DoD’s PKI authentication infrastructure.
Deep Packet Inspection (DPI) Advanced Cyber Security Generic firewall devices only filter industrial protocols based on TCP or UDP ports. Many virus and cyber attacks use the same open ports for industrial protocol to penetrate a network. The application level DPI in EtherGuard L3 can stop this “ride-on” traffic through the open ports while only allowing intended industrial protocols to pass through. In addition to filtering industrial protocols, EtherGuard L3 can filter specific commands within an industrial protocol. This DPI function offers addition layer of protection to isolate vulnerability contamination on one PC and prevent it from affecting the industrial control functions.
Powered by DarkNode Technology Utilizing 3eTI’s proprietary DarkNode® technology, EtherGuard prevents an attacker from sweeping the network and discovering any devices and services present, their quantities and type, and hides the architecture of DCS or SCADA controllers from view. DarkNode creates an invisible layer on EtherGuard’s WAN network port to any active attacks or scans. By creating a secure ‘information-dark’ protective barrier that obfuscates any devices or services behind it, it makes it ideal for sensitive or critical device applications where leakage could weaken security
3eTI Hardware Device Specifications
‐ 4 Ethernet 10/100/1000 BASE-T ports:
» Encrypted Black Port
» 2 Unencrypted Red Ports
» Local management Port
‐ IPSec/VPN throughput up to 180 Mbps
TOOLS & UTILITIES
‐ Application-based firewall with DPI license
Global Data Specialists
11257 Red Bluff Lane
Fort Myers, Florida 33912
Like us on Facebook and be registerd for our montly giveaway!