Diode Software
Standalone diode software that ensures reliable file transfer through data diodes. Works with any hardware diode regardless of brand. Optimized to handle extremely large files as well as repositories with extensive file catalogues.
PIONEERS IN DIODE SOFTWARE
Swedish link22 has developed standalone diode software since 2016 and are experts in the field. Our software is used by numerous customers to protect classified information as well as to secure critical infrastructure (OT).
HARDWARE INDEPENDENT
Our standalone diode software is compatible with any data diode, regardless of brand. This provides you with maximum flexibility to build a solution that meets your requirements and scales over time.
ONE-WAY FILE TRANSFER
Transfer of files into secure offline domains.
CRITICAL INFRASTRUCTURE
Secure unidirectional export from OT and critical industrial control systems.
WSUS UPDATES
Transfer WSUS and other critical updates through data diodes.
MAXIMIZING THE USE OF DATA DIODES
A physical data diode is limited to basic one-way UDP traffic. Most systems on the other hand will contain services that operate on a higher level, e.g. file, TCP or two-way UDP based. By adding diode software on each side of the data diode, more complex protocols can be supported. The software on the sending side converts the complex protocol to UDP for transfer over the diode and do reconstruction on the receiving side.
LINK22 DIODE TRANSFER
link22’s software product Diode Transfer was created to enable reliable, high-performance file transfer over diodes. Run it on a physical or virtual host in combination with any data diode on the market.
By calculating and then comparing hash checksums, the software can reliably determine that files have been correctly transferred across the unidirectional hardware diode. The number of retransmissions is configurable and there is bandwidth control to create optimal conditions for successful file transfer.
The product supports locally as well as externally mounted shares both on the sending and the receiving side.
TRANSFER MODE AND MIRROR MODE
There is support for both transfer mode and mirror mode. In transfer mode single files or folder structures are transferred as soon as they are dropped in the share to quickly appear on the corresponding share in the other system. In mirror mode folder structures containing files are mirrored to an identical file structure on the destination network. The mirrored share on the destination network is continuously traversed and processed to stay identical to the source share.
PROVEN DESIGN FOR DEMANDING USE CASES
link22 Diode Transfer has been optimized to handle both really large files as well as repositories with thousands of files. This makes it an ideal product for many different use cases with hardware diodes:
- Import of classified files into offline domains.
- Import of large software updates (e.g. WSUS) into offline domains.
- Mirroring of software repositories into offline domains.
- Unidirectional export of logs and analytics data from critical infrastructure (electrical power generating facilities, power plants, oil & gas platforms, water treatment plants).
- Unidirectional export from critical industrial control systems (ICS).
- Network segmentation for banking/financial sector. Secure transfer of analytics data and backup between data vault and production network.
- Air-gapped backup of files.
STANDALONE SOFTWARE
Diode Transfer is delivered as RMP packages, one for Diode Transfer upstream, another for Diode Transfer downstream. There is also support for SELinux.
The software runs on RHEL 8 or RHEL 9 based Linux distribution. Can be installed on any physical or virtual computer.