| CPC H04L 63/1425 (2013.01) [H04L 63/1416 (2013.01)] | 14 Claims |
|
1. An apparatus for monitoring a protected network using unidirectional communication, the apparatus comprising:
a sending unit coupled to one or more devices of the protected network, wherein the sending unit obtains network data related to protected network status;
an eavesdropping unit comprising an interceptor configured to intercept the network data within the sending unit via a loop connection between input and output interfaces of the sending unit, wherein the interceptor and the loop connection are inductively coupled, and the network data is duplicated without interfering with transmissions of the network data within the protected network; and
a receiving unit coupled to the eavesdropping unit for receiving the duplicated data and forwarding the duplicated data as forwarded traffic to an evaluation system located in a public network, the receiving unit comprising:
a reconfigurable application layer including at least one modular application configured to operate security related functions that support intrusion detection, wherein the at least one modular application includes functions for connectivity and interoperability with the evaluation system, wherein analytics and evaluation of the network data is divided between the reconfiguration application layer that is defined by the receiving unit of the apparatus, and the evaluation system that is defined by the public network in communication with the at least one modular application of the reconfigurable application layer;
wherein the inductive coupling of the interceptor and the loop connection is configured for unidirectional communication from the sending unit to the receiving unit.
|