Академический Документы
Профессиональный Документы
Культура Документы
Overview
Cyber-Security Codes, Standards, and Regulatory Requirements Previous Work Scope of Current DC Cook Modification Level 3 Level 2 Communication Waterfall Data-Diode Architecture Waterfall Proprietary Transfer Protocol Software Configuration
Previous Work
A previous DC Cook modification installed HP ProLiant DL360 (G6) servers in the Plant Process Computer Rooms (Defensive Levels 2, 3, and 4). Data-diodes were installed between (a) Level 4 (Control & Safety System Network) & Level 3 (Data Acquisition Network) and (b) Level 3 (Data Acquisition Network) and Level 2 (Local Area Network). No data was directed through those data-diodes as part of this design package. This task was reserved for subsequent modifications.
BEFORE
Data Diode
AFTER
Data Diode
Level 4
Firewall
RMS Switch
RMS Switch
PPC Switch
Firewall
Level 3
RDR Server
PPC Switch
Firewall
Data Diode
Other L 2 Devices
RDR Server
Level 2
This mod configures the data-diode setup (consisting of a transmitter and a receiver server) to ensure such unidirectional data flow. This task is achieved through a Waterfall data-diode architecture.
Waterfall TX Software Agent Waterfall TX Appliance (i.e. Transmitter Server) Waterfall RX Appliance (i.e. Receiver Server) Waterfall RX Software Agent Single Fiber Optic Cable
L3 Transmitter Server
Unidirectional Data Flow
Fiber Optic Cable
L2 Receiver Server
Questions / Comments