Security Gateway
Safeguarding Critical Rail Systems & Operations
Enforcing secure segregation and separation of critical rail networks minimising your vulnerability to cyber attacks.
Overview
Acting as a barrier between key areas of your networks, Security Gateway (SGW) is designed to simplify the implementation and control of advanced digital network segregation across your trains. It supports robust rail cyber security measures and can be used for both new and refurbished fleets offering a turnkey solution for the projection and monitoring of on-board networks.
Using a Layer 7 firewall with specialist rail protocol support, it delivers a seamless solution for safeguarding and monitoring your onboard networks, filtering traffic and minimising the risk of cyber attacks.
Plus, when SGW is deployed with network zones, wider network activity is also monitored to detect and alert you to threats, anomalies, and changes in network configuration throughout the train.
Key Benefits
Protect The Integrity Of On-Board Systems
Reduce your cyber attack surface and eliminate vulnerabilities with advanced segregation, protecting rail critical operational systems.
Detect Network Threats
Gain real time alerts to unauthorised traffic and visibility of emerging threats targeting your network as they happen.
Cyber Compliance For New & Legacy Fleets
Easily integrated into your existing networks as software or as an appliance without modifying existing routing, supporting compliance with IEC62443 and TS50701.
Evolving Cyber Protection
Allows you to continuously address your train cyber security needs and meet evolving requirements, with log aggregation, access control, and authentication features.
Key Capabilities
Network Visibility & Monitoring
Gain visibility of unauthorised and anomalous traffic between security zones and pinpoint vulnerabilities in the network.
Deploy As Hardware Or Software
Deployable virtually, or as an EN50155 approved appliance, SGW is easily integrated with on-board networks without modifying existing routing.
Integrity Checking
Our operating system ensures any virtual machines are easily reset to an initial state limiting software vulnerabilities to spread.
Central Log Aggregation
An integrated syslog server collects and filters logs from SGW and other on-board systems, forwarding them to multiple destinations, including external SOC/SIEM systems.
Protection For The Life Of The Asset
Designed for limited connectivity, SGW ensures consistent security monitoring even for rail systems in operation for years.
Robust Configuration Management
SGW configuration is centrally managed with a configuration-as-code approach, enabling selective over-the-air updates and safeguarded rollbacks.
Digital Maintenance Gateway
Secure Remote Access Control Solution for Onboard Digital Maintenance
