DATA S H E E T
ReCon ™
SECURE BI-DIRECTIONAL DATA
DIODE COMMUNICATION, ABSOLUTE
NETWORK SEGMENTATION
Possible use case scenarios:
• Communication between client and server
• Remote access
• Remote command and control
• Remote monitoring
• Safety system isolation
• No direct pass through of TCP/IP traffic
BI-DIRECTIONAL-HARDWARE
ADVANTAGE
ReCon is a hardware-based cybersecurity
solution utilizing two independent data
diodes. Housed within a 1U standard rack-
mountable enclosure, each one-way path
within ReCon is completely independent
from the other. The separate paths each
enable only one direction (send or receive)
of the data transfer, together creating a
complete bi-directional pathway in one
device.
Call 203-894-9342 or email [email protected]
One Device. Two Way. Zero Risk.
Digital transformation creates both opportunity and risk for today’s data-driven
organizations. They are challenged with navigating the convergence of OT and IT
systems, the emergence of the IoT and IIoT, and limiting or reducing the attack
surfaces of their networks. As the evolution of this digital transformation unfolds
and more networks and devices are connected, security concerns will only
continue to grow.
To address this pressing need for security, hardware-enforced data diodes have
been proven time and again to protect the OT networks, however, in some cases,
organizations need to secure bidirectional communications that cannot be
one-way.
The ReCon solution was designed to combine the same proven security benefits of
a hardware-enforced data diode cybersecurity solution with the ability to provide
secure round trip, bidirectional communication. ReCon enables organizations to
maintain secure two-way connections between networks, while reducing their
attack surface with much higher security assurance than traditional firewalls.
Defense-in-Depth security at multiple capacities
ReCon follows the Department of Homeland Security's (DHS) guidance for securing
applications that cannot be one-way. Housed within a 1U standard rack-mountable
enclosure, the solution is available in mid and high capacity models to better align
with customer's security and budgetary requirements.
• Fixed destination IP address
++ Ensures that communication can only be directed to a single destination IP address
• Secure remote command and control
++ Enables secure remote command and control with less risk than firewall-based
security
• Restricted session initiation
++ TCP/IP connection can only be initiated from the trusted source side network.
Destination side cannot initiate communication into the device.
Our team is always available to meet your cybersecurity needs
USE CASE

PROTOCOL SUPPORT
Technical Specifications
ReCon provides basic protocol support for
secure bi-directional communication: OPERATING CONDITIONS APPROVALS
• 32°F to +110°F / 0°C to 43.33°C • FCC Class B compliance
• FTPS • IEC-104
• 20% to 85% humidity non-condensing CE Mark
• TCP/IP • ICCP POWER SUPPLY
CB Certificate: 72130592
UL 60950-1:2007 R12.11
• DNP3 • MS SQL Database • Input: 100-240V AC auto-ranging, min. 30W per side
CAN/CSA-C22.2 No.60950-1-07+A1:2011
(fused at 1A at IEC connector)
Replication • International Common Criteria Certification -
• Ethernet/IP • Output: 5V at 5A - EU & UK power cables on request
EAL Certified
STORAGE • VCCI
ADMINISTRATIVE SUPPORT • -40°F to 158°F / -40°C to 70°C
ISO
• 5% to 90% humidity non-condensing
• Separate administration for source and • Manufactured using ISO 9001:2015 certified quality
VIBRATION program
destination sides • Vibration: (IEC 60255-21-1)
CHASSIS SIZE
• Vibration 1g(10-500Hz) (operational)
• Supports up to 5 simultaneous • 16.5” W x 1.75” H x 13” D
• Vibration 2g(10-500Hz) (operational and non-
data streams operational)
• 41.91 cm x 4.5 cm x 33 cm

UNIT WEIGHT
• Port mapping allows the admin to control MOUNTING SIZE
• 8.720 lbs./ 3.96 Kg
destination address for connection • (1U) Rack mount, tabletop
MEAN TIME BETWEEN FAILURE (MTBF)
- no entity outside of the destination NETWORK CONNECTIVITY
• 14+ years
• Ethernet connections for network traffic and remote
network can access information about
administration LOCAL ADMINISTRATION
that network. This prevents malicious • Physical connectors: 8P8C (RJ45) • VGA connector for monitor
users from using a port scanner to find SHOCK
• USB connectors for keyboard and mouse
vulnerabilities in the network. • (IEC 60255-21-2) / Shock 10g 11ms (operational)
• Shock 30g 11ms (operational and non-operational)
• Menu-driven user interface
COOLING SYSTEM
++ Restricts command line access
• Conductive cooling through enclosure side walls with
high life expectancy/low noise fans

Owl Cyber Defense Solutions, LLC leads the world in data diode and cross domain network cybersecurity.
With a constant focus on customers in the military, government, critical infrastructure, and commercial
communities, Owl develops market-first, one-way data transfer products to meet a variety of operational
needs, from entry level to enterprise.

For more information on Owl, or to schedule a demo, visit www.owlcyberdefense.com

@OwlCyberDefense 203-894-9342 | [email protected]

D026 | V3 | 8-5-19