Encryption & Firewall solutions

Encryption, Firewall, 104 Protocol Encryptor, Network Intrusion Detection

Enigmätron-C, Data Encryption, Router and Firewall Equipment

Description

Valiant’s Enigmätron-C is an integrated router, firewall and data encryption equipment with extremely advanced features that may be installed to secure critical infrastructure such as Sub-Stations, Smart Grid Distribution Systems, Airport and Railway IT Networks as well as Financial Infrastructure such as Banks and Payment Processing Gateways.

Data Sheet Enigmatron

Power Point Presentation (PPS)

The Enigmätron-C may also be installed in centrally managed networks consisting of multiple branch offices and edge locations to provide secure communications between ATMs, Point-Of-Sale Terminals and their corresponding back-end Central Servers.

Encryption

Access to Enigmätron-C is password protected with advanced firewall capabilities that meet and exceed NERC as well as all mandatory requirements of Password Protection and Control as provided in the GR-815-CORE-2 specifications. Enigmätron-C can optionally be managed centrally from a RADIUS Server to provide enhanced levels of access security and centralized password management and control.

Enigmätron-C provides Comprehensive Protection for:

  • IP Networks, including all types of Data, Voice and Video over IP applications
  • MPLS meshed networks
  • Metro Ethernet and VPLS networks

Interfaces:

  • Total Number of Interfaces : 5
    • Four 10/100 RJ45 locally switched network interfaces to the local (trusted) network
    • One 10/100/1000 RJ45 network interface to the WAN (untrusted) network
  • Integrated four-port Ethernet switch
  • Auto MDI/X (straight or crossover Ethernet cable correction)
  • USB serial port for local access and configuration.

Related Links

Firewall - Features and Capabilities:

  • Deep Packet Inspection
  • Per-frame/packet authentication
  • Firewall
    • Port (Soft) based
    • MAC based
    • IP Address based
    • IP Domain based
  • White List and Black List options
    • White List Exception allowed and Blocks all other traffic by default (system default mode)
    • Black List Exception blocked and Allows all other traffic by default
  • Seamless scalability
  • Infrastructure neutral
  • Transparent to network and applications
  • Easy installation and management

Applications

  • Utilities: Electric generation, transmission and distribution
  • Smart Grid Distribution Systems
  • Oil & Gas production, pipelines
  • Remote nodes in SCADA multi-drop networks
  • Railway and Airport Infrastructure
  • Financial Infrastructure such as Banks and Payment Processing Gateways
  • Law Enforcement
  • Distributed networks consisting of multiple edge locations such as ATMs, Point-Of-Sale Terminals and their corresponding back-end central Servers.

Firewall and Security:

  • Ruggedized, IEC-61850-3 compliant firewall
  • Fanless, High reliability hardware
  • Wide Operating Temperature Range: -4°F ~ 149°F (-20°C ~ 65°C)
  • Suitable for installation in sub-stations, SCADA and industrial networks / harsh environments
  • Wide range of power supply options which includes, 24VDC, 48VDC, 110VDC, 250VDC and 90~240VAC 50/60Hz
  • Secure Boot
  • Firewall Security:
    • Inclusion Policy - Access Control based upon White List IP addresses, MAC address and IP Domain
    • Exclusion Policy -Access Control based on Black List
  • Continuous monitoring of the TLS connection to nullify MitM attacks
  • Resistance to Denial of Service (DoS) Attack
  • Encrypted Firmware Updates
  • Non-volatile Access Log with capability to "fingerprint" all successful and failed log-in attempts and keep a log of the IP and MAC addresses of all successful and failed logins / login attempts
  • SNMP trap generation, along with LED and external alarm indication
  • Password Protection with password strength monitor
  • RADIUS Password Authentication
  • SSH (Secure Access Control) with encrypted Password Protection

Firewall / Router Throughput:

  • ≤ 90Mbps

Supported Data Encryption Algorithms:

  • 3DES, AES128, AES192, AES256 Encryption Algorithm

Maximum Encrypted Data Throughput:

  • ≤ 12Mbps with AES256 Encryption Algorithm

Network Support:

  • IPv4 and IPv6 Routing
  • Ethernet
  • VLAN tag preservation
  • MPLS tag preservation
  • IPv4
  • Secure NTP (Client).

Power:

  • Power: 1+0 and 1+1 Redundant Power Supply Options.
  • 100~240VAC, 50/60Hz
  • 18VDC ~ 60VDC
  • 85VDC ~ 140VDC
  • Power consumption: 9W at maximum load