Secure Data Access - Profitap

Secure Data Access

Organizations such as governments, financial institutions, hospitals, and industrial complexes rely heavily on their networks. This means network security is at the top of the list for SecOps and NetOps teams working on the architecture. An integral part of network security is supplying your monitoring tools with the highest quality data possible. Security won’t be up to par if the data source can’t be relied upon. Network TAPs are a preferred solution for reliable and secure network data access as purpose-built, dedicated tools.

TAPs deliver access to an unaltered copy of the network traffic, including layer 1 & 2 errors, bad CRC, VLAN tagged frames, short frames, jumbo frames, etc., allowing for an accurate analysis of the network data.

Under the Common Criteria for Information Technology Security Evaluation, certification schemes have been set up globally to evaluate and certify the security properties of IT products, such as network TAPs.

Designed in line with the recommendations from the National Cybersecurity Agency of France (ANSSI), recognized by the BSI, Profitap’s hardened network TAPs are manufactured to meet the highest security standards and the expectations of Critical Infrastructures within the framework of the French Military Programming Law of 2005.

The following measures have been taken to secure Profitap network TAPs:

• Physical isolation from the operational network on Copper TAPs, which acts as a data diode
• Optical data diode for Fiber TAPs prevents light insertion from the monitor ports
• Secured firmware implemented on active TAPs
• Security seals prevent opening and tampering with the devices
• Randomized patterns used on seals and packaging to ensure secured logistics

profitap-sda-secured-firmware-1000x1000px

Secured firmware

Secured firmware implemented on active TAPs cannot be read or altered by 3rd parties, ensuring safe operation of the devices.

profitap-sda-diode-1000x1000px

Data diode

All Secure TAPs act as data diodes. For copper TAPs, this means they are physically isolated from the operational network.

For Fiber TAPs, an optical data diode prevents light insertion from the monitor ports into the operational network.

profitap-sda-security-seals-1000x1000px

Security seals with randomized pattern

Tamper-evident security seals prevent unnoticed opening and tampering with the devices they are installed on.

A randomized pattern on the seals helps to verify and ensure that the seals have not been replaced.

profitap-sda-secured-packaging-1000x1000px

Secured packaging

Each package containing secured data access products is also provided with a security seal with a randomized pattern.

The ANSSI has signed European mutual recognition agreement SOG-IS with certificate bodies of the following countries:

• France – ANSSI (www.ssi.gouv.fr)
• Germany – BSI (www.bsi.bund.de)
• Austria – Federal Chancellery (www.digitales.oesterreich.gv.at)
• Spain – OCSTI (www.oc.ccn.cni.es)
• Finland – FICORA (www.ficora.fi)
• Italy – OCSI (www.ocsi.isticom.it)
• Norway – SERTIT (www.sertit.no)
• Netherlands – NLNCSA (www.tuv-nederland.nl)
• United Kingdom – NCSC (www.ncsc.gov.uk)
• Sweden – FMV/CSEC (www.csec.se)

Some of our TAPs for secure data access:

Diode Fiber TAP

Fiber TAP with diode feature preventing light injection from the monitor ports.

1-Link Gigabit Copper TAP

10M/100M/1G copper TAP with diode feature protecting the network from data injection from the monitor ports.

8-Link Gigabit Copper TAP

High density 10M/100M/1G copper TAP with diode feature protecting the network from data injection from the monitor ports.

F1D-MOD-S-SM-MM
C1R-1G-S
C8-1G-S

Some of our TAPs for secure data access:

Diode Fiber TAP

Fiber TAP with diode feature preventing light injection from the monitor ports.

F1D-MOD-S-SM-MM

1-Link Gigabit Copper TAP

10M/100M/1G copper TAP with diode feature protecting the network from data injection from the monitor ports.

C1R-1G-S

8-Link Gigabit Copper TAP

High density 10M/100M/1G copper TAP with diode feature protecting the network from data injection from the monitor ports.

C8-1G-S

Data Diode

The Data Diode function present in our Diode Fiber TAP and Copper TAPs prevents any accidental or malicious insertion of signal coming from the monitor ports from entering and disrupting the operational network. Data Diode adds an extra layer of security in deployments with security and monitoring tools.

Copper-Diode-Diagram

Copper TAP Data Diode

DiodeTAP-Diagram

Fiber TAP Data Diode

No Break Technology

Profitap Gigabit Ethernet TAPs feature dramatically reduced failover time, consequently reducing the chances of Spanning Tree reconvergence.

This makes them flawlessly designed to synthesize maximum performance and maximum security.

Product Portfolio

Profitap Product Portfolio

Download Portfolio

Free consultation with a Profitap engineer

Want to learn more about our secure data access solutions? We’re here to help. Fill in the form below for a free consultation with a Profitap Systems Engineer.