VCL-Xcöde: IEC 60870-5-104, DNP and MODBUS Data Encryptor (-104 Protocol Encryptor)

Cyber Security Suite
Enigmatron Xcöde

VCL Products > Cyber Security Suite > Enigmatron Xcöde
UNMS Supported
Enigmatron Xcöde
Enigmatron Xcöde
Enigmatron Xcöde
Enigmatron Xcöde

VCL-2142 Enigmatron Xcöde:
IEC 60870-5-104, DNP and MODBUS Data Encryption

Get Data Sheet

VCL-2142 Enigmatron Xcöde is low data rate encryption equipment with extremely advanced features that may be installed to secure and protect RTU data in critical infrastructure such as Sub-Stations, Smart Grid Distribution Systems, Oil and Gas Infrastructure and Railway Signalling Networks from being compromised or accessed by hostile elements.

The VCL-2142 Enigmatron Xcöde may be installed in point-to-point, as well as in point-to-multi-point applications in centrally managed networks consisting of multiple edge locations to provide secure communications between multiple RTU Terminals and their corresponding IEC 60870-5-104, MODBUS-TCP and DNP central server(s) located in Load Dispatch Centre(s) / SCADA Management Centre(s) and Rail Traffic Control Room(s).

Xcöde DNP GR-815-CORE-2 RADIUS IEC 60870-5-104

Versions and Technology Deployment:

VCL-2142 Enigmatron Xcöde (Remote Unit)

  • High-Security Data Encryption Equipment
  • Encrypting RTU data between RTUs and SCADA Server.
  • Point-to-Point -104 and DNP RTU Data Encryptor. The VCL-2142 Enigmatron Xcöde can be used in “Point-to-Point” applications. The VCL-2142 Enigmatron Xcöde may also be used with VCL-5040 Enigmatron Equipment in “Point-to-Multi-Point” applications.

VCL-5040 (Central Unit)

  • High-Security Data Encryption Equipment with integrated Firewall
  • Designed to work in high data throughput, point-to-multi-point applications
  • Supports a maximum of up to 500 x Enigmatron-X-Code (remote) units with a maximum combined data throughput of up to 1Gbps
  • Encrypting data between multiple RTU Terminals and the IEC 60870-5-104, MODBUS-TCP and DNP server(s) located in Load Dispatch

Interfaces - Terminal:

  • Total Number of Ethernet Interfaces : 5
    • Four 10/100 RJ45 equipment interfaces in the local (trusted) LAN interfaces
    • One 10/100/1000 RJ45 network interface to the WAN (untrusted) network interface
  • Integrated four-port Ethernet switch
  • Auto MDI/X (straight or crossover Ethernet cable correction)
  • USB serial port for local access and configuration.

Supported Security Protocols:

  • IPSec, OpenVPN

Supported Data Encryption Algorithms:

  • AES128, AES192, AES256

Form Factor and Maximum Encrypted data throughput per VCL-2142 Enigmatron Xcöde terminal:

  • Compact, DIN-Rail Remote Data Encryption Terminal
  • Maximum Encrypted Data Rate = 10Mbps with AES256 data encryption

Network Support:

  • IPv4 and IPv6 Routing
  • Ethernet
  • VLAN tag preservation
  • IPv4

Monitoring and Access Control:

  • Password Strength Monitor
  • Device Management and Alarm Monitoring
  • Command Line Interface – Telnet, SSH with clear text disable option (default)
  • SNMPv2; SNMPv3 Alarm Monitoring
  • Alarm condition detection and reporting (traps and SNMP alarm table)
  • Syslog

Power:

  • 15V DC ~ 60V DC (DIN Rail Mounting Version)
  • 85V DC ~ 250V DC (External Adapter Option).
  • 100~240V AC, 50/60Hz, (External Adapter Option).
  • Power Consumption: 9W at maximum load (DC)
  • Power Consumption: 15W at maximum load (AC, with external AC to DC adapters)

Firewall - Features and Capabilities:

  • Deep Packet Inspection
  • Per-frame/packet authentication
  • Firewall
    • Port (Soft) - based
    • MAC - based
    • IP Address - based
    • IP Domain - based
  • White List and Black List options
    • White List Exception allowed and blocks all other traffic by default (system default mode)
    • Black List Exception blocked and allows all other traffic by default
  • Seamless scalability
  • Infrastructure neutral
  • Transparent to network and applications
  • Easy installation and management

Application:

  • Utilities: Electric generation, transmission and distribution
  • Smart Grid Distribution Systems
  • Oil & Gas production, pipelines
  • Remote nodes in SCADA multi-drop networks
  • Railway Signalling Infrastructure: Rail Traffic Control Room(s)
  • All distributed data networks consisting of a central server and multiple edge locations.

Application Diagram:


Enigmatron
Mechanical Drawing (PDF)

UNMS (Unified Network Management System)

  • Secure (supports TLS/SSL for encrypting connections between devices)
  • Permission-based security
  • Uses Software Defined Perimeter (SDP), the username/password login are replaced with Single-Packet Authorization (SPA) and the receiving device cannot be seen by hackers. This introduces an additional layer of security and is beneficial with or without SSL/TLS.
  • Guaranteed message delivery (no data loss or duplication of data)
Read More...

Valiant Communications is an ISO 9001:2015, ISO 10001:2018, ISO 14001:2015, ISO 27001:2013 and ISO 45001:2018 certified equipment manufacturer.

© Valiant Communications.