Products
Arbit offers a complete range of certified Cross Domain Solutions using data diode technology. The Arbit Data Diode and the Arbit TRUST Gateway solve the challenges of running high-security segmented/air-gapped networks efficiently within your organisation. Our product portfolio includes a full ruggedized hardware solution, applications for Multi-engine Virus Scanning, and Content Disarm and Reconstruction technologies.
The Arbit Data Diode 10 GbE
Recomended when IMPORTING data from LOW til HIGH
The Arbit Data Diode moves data from an open network to a closed network, using a secure one-way communication channel that ensures no data can flow back. The channel prevents the threat of remote data hacking by establishing a one-way connection with a single fiber-optic cable. The transmission is handled by two dedicated servers: the ‘pitcher’ and the ‘catcher’. It is physically impossible for data to be sent from the receiving network (the catcher) to the transmitting network (the pitcher). The Arbit Data Diode offers the safeguarding of manual data transfer with the convenience of a network connection.
100% secure hardware-based data diode
User-friendly web interface
Quick installation and configuration
Powerful add-ons to control content moving through the data diode
Proven reliability through 10 years of service
No daily maintenance
Integrates with Microsoft Server Solutions
Full integration with OPSWAT advanced anti-malware platform
Maximum file size limited only by available disk space
Supports up to 24 streaming channels
(video, radio, etc.)
Notifications by email, syslog and SNMP
Software based on hardened Linux
64 data channels per data diode
Data channel priority (on transaction basis)
Back Pressure in case of critical diskspace
1 GbE – Common Criteria EAL 5+ certified
Mail (SMTP)
Windows share mapping (SMB)
Time synchronization (NTP)
REST API Forwarder (HTTP/HTTPS)
Simple file transfer (FTP, SFTP)
Network File System share mapping (NFS)
Streaming (UDP/TCP)
Industrial/SCADA/104
- DataDiode-DataSheet.pdf
- DataDiode-Whitepaper.pdf
- CommonCriteria-Certification.pdf
The Arbit Trust Gateway 10 GbE
Recommended when Exporting Data from HIGH to LOW
The Arbit Trust Gateway eliminates the need to rely on manual processes which may circumvent security procedures due to busy operating hours, crisis or even malicious intent. By authenticating the source of all incoming data, the gateway prevents the receipt of data from rogue systems or even ‘piggyback’ information on approved transactions. The gateway performs as a secure platform with COTS and custom-checks functionality. The two inbuilt Arbit Data Diodes are connected in serial to create an isolated VOID network, only accessible from the high side through a diode. The VOID network stores all configuration and program code handling as read-only. It is impossible to attack or to change the system. System reboot restores the approved configuration and the Arbit certified program code.
Replaces non-secure manual data transfer using USB or similar devices
Proven transmission stability using data diode tehnology
Open API for building custom content verifiers
(C++ and Java)
Full integration with OPSWAT advanced anti-malware platform
Easy to deploy hardware (excluding additional checks and audit logs)
Integrates with existing company infrastructure
Supports ‘Releasing Officer’ function
(optional ‘two-key’ manual release verification)
Optional external content verifiers and AD–look up verifying sender or content type
Diskless system built on data diode technology
Divided into three zones: HIGH, VOID and LOW
Fiber or copper connectors to external networks
Low latency
Based on 1U rack-mountable units
All zones with galvanic separation
Low power consumption
File type check (content based)
S/MIME mail integration
Systematic SitaWare
Browse down functionality
Open API for sending transactions (C++ and Java)
Command line interface
Web access gateway
- Gateway-DataSheet.pdf
- Gateway-Whitepaper.pdf
- Gateway-Documentation.pdf
Ruggedized Cross Domain Solution
C4ISTAR Gateway
The Arbit C4ISTAR gateway supports and automates your data management as your trusted portal for import and export of data. Supporting automated and manual release and import of data, it’s built on hardware-based Data Diode technology which guarantees continued network separation with no possible backflow.
The gateway’s world-class software is available in two versions, adapting the hardware to meet the spectrum of environmental challenges: Server Room version and Ruggedized version. The Ruggedized version is built to operate in the battlefield under the most challenging conditions. All units are 1U 19”/2 and a full gateway is only 3U (UPS and power supply excluded) equipped with NATO standard connectors and designed for vehicle mount. The C4ISTAR Gateway is designed as a platform, enabling customisation of security profiles, filters and add-ons. The robust and open API of the Gateway allows you to program and build your own national security profile independent from any contractor support, offering paramount security.
Two factor authentications
Supports signing as standard + NATO Clearing house functions like Releasing and Clearing officer.
Verification of Data Signatures
The Gateway uses signing technology to securely identify the source of the released data. Only approved source systems or individuals can sign data which then is allowed to pass through the gateway.
Malware protection
As a OPSWAT partner the C4ISR Gateway integrates with OPSWAT Metadefender and – CDR.
API
Open API for building custom content filters (C++ and Java).
Power
Both Gateway and Data Diode will run on 12-24 Volt, Server
Logging
Full audit log and syslog.
Security certification
The Target of Evaluation (TOE) ensures NO backflow possible.
Supported protocols
S/MIME mail integration, SitaWare, MIPS, ASCA and SYSTEMATIC one-way communication.
Working climate / Tested Environments
Temperature shock, salt/fog, vibration, EMC/EMI Environment.
Size
Based on 1U, 19″/2 components. Data diode 1U 2×19″/2 units, Server 1U 1×19″/2, Full gateway 3U 19″.
Tested to operate in the battlefield
(temperature, shock, salt/fog, vibration)
Two factor authentications (supports NATO Releasing and Clearing Officer functionality)
Offers open API for building custom verifiers
(C++ and Java)
Size based on 1U, 19″/2 components
(12-24V Power Supply)
Verification of Data Signatures
(using signing technology to securely identify source)
Provides full audit log and syslog
Full integration with OPSWAT advanced anti-malware platform
Certified according to Common Criteria
Evaluation Assurance Level X.
Web services (HTTP/HTTPS)
SMTP with S/MIME integration
Open API for data transfer (C++ and Java)
ASCA
Remote Framebuffer (RFB)
Simple File Transfer
Sitaware one-way communication
SIP3/FFI
Multiscanning & data sanitisation (CDR)
OPSWAT MetaDefender
Arbit leverages advances in technology to maximise your security with the optional advantages of audit log, content checkers, manual release and multi-scanning functionality. The addition of external systems come with the guarantee of absolute control by the Arbit TRUST Gateway. As files enter your network, they are evaluated and verified to ensure file type and consistency.
Each file is analysed with more than 35+ anti-malware engines to identify known and unknown threats. Our solution supports sanitisation of more than 85 common file types, including PDF, Microsoft Office files, HTML as well as many image files. The files are dismantled and rebuilt in a rapid and secure process. File elements are separated into discrete components, malicious elements are removed, and metadata and all file characteristics are reconstructed. The new files are renamed and delivered, preserving file structure integrity to enable seamless usability.
Prevents zero-day attacks and evasive malware
Detects vulnerable software before installation
Analyses threat data from multiple sources in real-time
Provides highest threat detection with multiscanning
Detects sensitive data in files and emails (GDPR)
Offers sandbox for dynamic analysis
Deep Content Disarm and Reconstruction (CDR)
File-Based Vulnerability Assessment
100+ File Conversion Options
Archive Extraction
Multiscanning (30+ leading malware engines)
Proactive Data Loss Prevention (DLP)
Custom Workflows
File Type Verification
Email Gateway Security
Metadefender Email Gateway Security addresses all cybersecurity email threats and provides malware detection rates up to 99%. Our email security solution offers advanced threat prevention and the earliest protection against malware outbreaks. Sanitize attachments before they are delivered to prevent zero-day attacks, as well as use best-of-breed anti-spam and anti-phishing engines to prevent BEC attacks.
File Upload Security
Protect Against Malicious File Uploads with the MetaDefender Platform
Malware Analysis
MetaDefender Core’s multi-layer malware detection and analysis technologies help you to quickly and effectively triage and respond to security incidents, find the root cause of cyberattacks, and improve your defenses. It can be deployed on-premises, enabling offline analysis of malicious files to keep sensitive files private and scan results confidential
ICAP
MetaDefender ICAP Server protects your systems and users by inspecting every file traveling through your network. Every file is scanned for malware and vulnerabilities. With custom policies and workflows, suspicious files can be blocked or deeply sanitized. Sensitive information is blocked, removed or redacted before leaving your network. All files are remediated, before they are accessible to the end user.