Security Basics mailing list archives

Re: One computer two different networks

From: Steve <root () quicksilverscreen com>
Date: Wed, 11 Oct 2006 15:07:13 -0400

What does this thing actually do? The ad says it's a 'data diode'?!?!?That is not only impossible, it would be pointless. Is there an actualdescription of it on the website? That doesn't ramble on about opticallyisolating me from the bad scary data?

I don't care if your packets come in via an opticially isolatedcircuit, and electrically isolated circuit, or a positronic brain thepackets still have to leave your machine to initate either a get or postrequest, and both still have the ability to send data to the 'internet end'.

If it's a small IDS or IPS or both, I still don't see any need foroptical isolation.


I'm smelling snake oil.

Thanks,
Steve.

davidthomastuck () aol com wrote:

Tenix Datagate is an excellent product but provides a genuine one-way data path (simplex overflow only, no handshaking) 
by using an opto-isolator.  It is a specialised product that allows system A to broadcast data to system B but totally 
prevents the export of any information from B to A (hence its ITSEC E6 rating).
Browsing the internet from a computer that works at SECRET is a concept that will give any security specialist 
nightmares, be VERY careful and get approval for your solution FIRST.
The best solution might well be to provide additional PCs for those who NEED regular internet access and shared PCs for 
those who need it occasionally.

---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE

The NSA has designated Norwich University a center of Academic Excellencein Information Security. Our program offers unparalleled Infosec managementeducation and the case study affords you unmatched consulting experience.Using interactive e-Learning technology, you can earn this esteemed degree,without disrupting your career or home life.


http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------



---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE


http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------

Current thread:

Re: One computer two different networks, (continued)
- Re: One computer two different networks Ed (Oct 11)
  - RE: One computer two different networks Adnan Rafik (Oct 13)
- RE: One computer two different networks Beauford, Jason (Oct 10)
- Re: One computer two different networks chris (Oct 10)
- Re: One computer two different networks dtodosichuk (Oct 10)
- RE: One computer two different networks Chris Poulter (Oct 11)
- RE: One computer two different networks Hagen, Eric (Oct 11)
  - RE: One computer two different networks mn19522 (Oct 11)
  - RE: One computer two different networks evb (Oct 11)
- Re: Re: One computer two different networks davidthomastuck (Oct 11)
  - Re: One computer two different networks Steve (Oct 11)
- RE: One computer two different networks Hagen, Eric (Oct 11)
- Re: One computer two different networks krymson (Oct 11)
- Re: Re: One computer two different networks davidthomastuck (Oct 13)
- Re: Re: One computer two different networks anonymous (Oct 13)
- RE: One computer two different networks Hagen, Eric (Oct 13)
  - Re: One computer two different networks Ansgar -59cobalt- Wiechers (Oct 15)
- RE: One computer two different networks Laundrup, Jens (Oct 13)
- Re: RE: One computer two different networks nigel_barnes (Oct 15)
- RE: One computer two different networks Hagen, Eric (Oct 16)
  - Re: One computer two different networks Ansgar -59cobalt- Wiechers (Oct 16)