Skip to main content

Data Diodes

Data Diode security products offer one-way communications, allowing secure transfers from a "low security" network to a "high security" network without allowing a path for information to travel back. The most common form of a data diode (unidirectional network) is a simple modified fiber optic cable, with send and receive transceivers removed for one direction. Most commercial products add other software functionality.

 

The benefit of this type of network connection is it allows networks with sensitive information stored to have access to the Internet as well. There are some drawbacks to this design, unless the vendor builds in software to overcome the drawbacks. TCP/IP communications that require acknowledgements can't flow successfully over a purely hardware data diode, and there is no way for the "low" network to ensure a successful data transfer occurred. Also, this does not prevent viruses or other malicious programs from travelling to the "high" network through the connection.

 

These products tend to focus on the defense and infrastructure environments where security is critical.