SPPA Unidirectional Gateway
Data transfer and security without compromise
Increase security and protect your data
Industrial control system cyber security is more critical than ever before. Power plant networks are vulnerable and prime targets for cyber threats and attacks. Siemens is continuously engineering solutions to keep our customers systems secure. Among the results of these efforts is a brand-new innovation – a data diode that is unlike any other on the market, SPPA Unidirectional Gateway (UDG). With comprehensive connectivity and controlled monitoring for security-relevant networks, SPPA UDG is a one-of-a-kind data diode solution that provides extensive protection of your high-security systems against cyber threats, while allowing secure, real time access to your data.
Data diodes are an important complement to firewalls
Power plant networks are commonly protected by firewalls and/or so-called "air gaps", i.e. the systems are operated as completely isolated data islands. With air gaps, which are a common solution for power networks, no transmission of live data to a recipient outside of the network is possible, which limits the benefits to be gained from the abundance of data. A secure connection of such applications would allow plant operators to profit from advanced tools such as live monitoring, comprehensive data analysis, predictive maintenance and more.
Firewalls, on the other hand, are prone to misconfiguration and vulnerabilities. For this reason, experts recommend the use of data diodes as an additional security measure for, “especially vulnerable network segments” since data diodes only allow data to travel in a pre-defined direction.
Secure connection means safe power
In the power generation industry, the diode helps optimize the connected control, safety and security systems used in the plant. The new SPPA Unidirectional Gateway delivers a high level of system security and flexibility, while providing controlled access to the system from the outside. SPPA UDG is a passive network gateway that allows “live” data transmission, but only in one direction, i.e. from the hardware to the cloud. Connected by cable to the customer’s system, the UDG can “read” the entire full-duplex data exchange between two systems and then “pass” the data on to a storage medium for monitoring or analysis purposes, or make it available to users outside the security-critical network (depending on your configuration preferences).
A passive gateway providing freedom of interference
The new hardware network component ensures reliable physical separation that prevents interaction between the critical network and the open one. Data transmission is carried out by induction, with the additional advantage of minimal impact on the properties of the tapped signal. There is no direct wire connection between the two networks. This will effectively block any attempt to send data via the UDG into the critical network. Another decisive advantage: neither data communication nor the functionality of the critical network will be impacted or influenced by the UDG in any way, not even if the diode loses power or breaks down completely. At the same time, the integrity of the tapped data is failsafe.
Undetectable, robust and competitive
SPPA Unidirectional Gateway allows data to be transferred in only one direction; it has no IP address of its own and functions within the customer’s system as a so-called Ethernet TAP (terminal access point) that cannot be detected by third parties. Once installed, the UDG provides a fast, transparent, and easy way of implementing the required data transfer for a variety of monitoring applications and analysis purposes.
SPPA UDG scores not only with an excellent price-performance ratio, but also with its robust design. Its excellent protection against shock, vibration, temperature fluctuations, and electromagnetic interferences, makes it the solution of choice for any environment.
Successful Control System Upgrade in Saudi Arabia
Success starts in the control room. See how Siemens helped Shuaibah Water & Electricity Company (SWEC) maximize safety and security, while minimizing downtime. SWEC modernized their Distributed Control System (DCS) with Siemens SPPA-T3000, exceeding customer's expectations for reliability, availability and cyber security.
Delivering integrated software and hardware solutionsDecentralization and renewables are penetrating markets and pushing base loaded power plants to operate beyond original parameters for a fraction of the cost. Generate more power and return on invest with services and solutions to support your energy transition.
Roland Busch on the Charter of Trust on Cyber Security
Roland Busch, Member of the Managing Board and Chief Technology Officer of Siemens AG, appeals to join in on the Charter of Trust on Cyber Security. Initiated by Siemens, the Charter of Trust calls for binding rules and standards to build trust in cyber security and further advance digitalization and stands for the protection of data of individuals and businesses. Roland Busch hopes signing of the Charter leads to a lively public debate on Cyber Security as well as binding rules and standards.
At the Munich Security Conference, Siemens and eight partners from industry signed the first joint charter for greater cybersecurity. In addition to Siemens and the Munich Security Conference (MSC), the companies Airbus, Allianz, Daimler Group, IBM, NXP, SGS and Deutsche Telekom signed the Charter.
“Is your plant cyber secure?”
Critical infrastructure assets, power plants, and utilities are more vulnerable than ever to sophisticated attackers as a result of the dynamic and evolving threat landscape. Cyber attacks are becoming more frequent and more severe, complex and changing regulations pose challenges to the industry and business demand for increased connectivity increases potential attack surfaces. Most plants lack the expertise required to prepare, plan and respond to a cyber attack and are in desperate need of a comprehensive solution set to identify and remediate gaps.
In this insightful webinar, Jonathan Tubb, cyber security expert at Siemens Energy, Inc., will discuss strategies power plants can employ to mitigate security risks, assess readiness to meet future attacks and maximize security efforts. He will share insight about how he helps customers confront growing cyber threats with extensive protection, detection and monitoring solutions.
This webcast will provide actionable insight into:
- Why we need to address cyber security
- Power industry cyber security and NERC-CIP
- The latest innovations and technology in system security and protection
- How we partner with our customers to help them achieve success