(Part Number – GW-007-202T-01) BlackGate 202T – SECURE SCADA Gateway – Secure TCP to Serial Gateway – Switches – BABA Certified Switches – BABA Switches – Made in USA Switches – Made in America Switches – Engage

Description

Overview

SCADA Serial TCP Gateway with Integrated 202T Modem

The Black•Gate 202T is a secure TCP to Serial Gateway, with an integrated Bell 202T modem, that interconnects Ethernet TCP/IP SCADA Master Controllers to the serial SCADA interface of Remote Terminal Units that have 202T modems.

Pipeline operators and Utilities deploy the Black•Gate 202T to facilitate SCADA communications to PLC, RTU’s, Flow Computers, or Gas Analyzers over IP/MPLS Ethernet based wired or wireless networks. Modbus RTU/ASCII/ROC and DNP3 SCADA protocols are transparently supported.

Telecommunication Service providers have announced their plans to discontinue the leasing of the 4-wire analog circuits that are employed by SCADA systems to provide connectivity to remote facilities. The imminent termination of Telco service coupled with their significant price increases is motivating the transition to IP packetized technology.

The Black•Gate utilizes industrial grade hardware components and state of the art secure software.

Black•Gate Security

The Black in Black•Gate is derived from the nomenclature used by the NSA to indicate that classified information is secure. SCADA connnections control the elements that make up Critical Infrastructures and their messages must be secured.

The Black•Gate boots up secure, configured to establish an IPSEC AES encrypted VPN connection to the SCADA Controller network. Public Key Certificates provide Authentication of the VPN.

+

Black•Gate Multi-Drop

In order to minimize the number of telephone circuits required to connect Data Center Front End SCADA controllers to Remote Terminal Units, Multi-Drop communication protocol was implemented. The Multi-Drop feature allows a SCADA host connection to communicate with Remote Terminal Units that drop off of a common 4-Wire Circuit. The Black•Gate transparently supports Multi-Drop 202T. The Black•Gate connected to the addressed RTU sends the SCADA response back to the originating TCP/IP connection of the SCADA Controller’s polling port.+

Black•Gate NERC Redundancy

NERC -CIP mandates control center redundancy. RTUs must be accessible from, and be able to connect to, backup control centers. 

Black•Gate continuously monitors connectivity to the active control center and automatically switches to the active backup control center.

• NERC mandates for control center redundancy
  
• Preserves investment in RTU & Central ⁻⁻ SCADA
  
• Control Center redundancy with IP flexibility
  
• Supports up to four redundant control centers
  
• Redundant and diverse connectivity

+

Black•Gate Management

Black•Gate management access is limited to encrypted sessions via TLS, SSH, or SNMPv3, that employ AES 256 bit keys and sophisticated NIST approved passwords. These sessions may be established after authentication via TACACS+ or Radius. Administration and User Logs are available with Syslog. 

Secure Boot, a combination of hardware and firmware, is employed to ensure that the only code executing on the Black•Gate is trusted by Engage.Secure Boot, a combination of hardware and firmware, is employed to ensure that the only code executing on the Black•Gate is trusted by Engage.The signature of each piece of boot software, including firmware drivers, the operating system and applications is validated. Code Signing must be done for upgrades to be implemented.

NERC CIP Compliance

The Black•Gate installations achieve NERC CIP compliance with a combination of internal and external functions.

The Management interface has the sophistication to implement comprehensive policies and privileges for administrator and user accounts.

Administrator policy includes removal, disabling or renaming.Interoperability with external functions such as Syslog, Network Timing Protocol, TACACS+ and Radius with its support for RSA SecureID delivers trusted compliance.