Physical Data Networks and SecurLAN™ Overview

Protected Distribution Systems and Physical Networks

The protection of information technology networks is a priority both within the private sector and branches of the U.S. Military at the Department of Defense (DOD). Ensuring that national security information is never compromised forms the basis for all network communications security initiatives. It is widely known that the fiber-optic or copper cables that form network backbone raceways are vulnerable to intruders that might physically tap into their data streams.

When deployed in parallel within a network conduit, embedded in a carrier, or used to physically protect passive optical networks (PON), the Fiber SenSys Alarm Processor Unit (APU) is the core component used to alarm the network conduit or the raceway. The APU, as the integral part of the SecurLAN™ network protection model, enables a network carrier system to meet the DOD requirements for Protected Distribution Systems (PDS), a government requirement for physical protection of classified network data.

It has been demonstrated and verified that SecurLAN™ solutions are offered at the lowest cost per zone in the industry. The products have also been approved and certified for the protection of the PDS, and are compatible with all varieties of network architectures, including secure passive optical networks (PON).

The SecurLAN™ System

SecurLAN™ is compliant for use in network Protected Distribution Systems (PDS) at US Government installations built in accordance with the following guidelines:

  • Committee on National Security Systems CNSSI No.7003 (Sept. 2015 Protected Distribution Systems) Air Force Instruction AFSSI 7703US Navy Protected Distribution Systems Guidebook NAVSO P-5239-22 US ARMY Regulation AR25-2
  • Provides instant notification of unauthorized access, tapping attempts, and accidental intrusions
  • Provides multiple alarm notification options and can provide positive network shutdown of the affected protection zone when combined with FSI optical cutoff switches
  • Makes protecting DOD networks cost-effective
  • Enhances security through multiple annunciation and network communications capabilities
  • Eliminates the need for visible inspection requirements when securing a PDS. Network raceways can be concealed above the ceiling or below the floor.

In the context of classified DOD networks, Protected Distribution Systems (PDS) is a system of carriers (conduits, ducts, etc.) that are used to distribute Military and National Security Information (NSI) between two or more controlled areas or from a controlled area through an area of lesser classification (i.e. outside the SCIF or other similar area).

Fiber SenSys SecurLAN™ Product Line

SL352™

Designed for remote deployment, this dual-channel SecurLAN APU can be located (up to 20km) from the protected zone.

SL358R

Rack-mounted single-zone Alarm Processor Unit (APU) is equipped with TCP/IP (native XML messaging) and supports a sensing cable length of up to 5km; with insensitive lead-in cable up to 20km. The RK-348 rack housing holds up to eight SL358R APUs.

SL504™ / SL508™

The SL504 monitors up to four different sensing fibers (zones), and the SL508 can support up to eight. Each sensing fiber can be up to 5km in length for maximum perimeter protection. Remote APU deployment with insensitive lead-in cable capability.

SL352-SM™

Unit has the ability to utilize single-mode cable, allowing your new or existing single-mode cable to be the sensor. This product does NOT support insensitive lead-in cables.

SL358R-SM

The SL358R-SM comes with all the of the features of our SL358R and the added feature of allowing your new or existing single-mode cable to operate as the sensor. This product does NOT support insensitive lead-in cables.

SecurCommander™

A command and control interface that when combined with SecurLAN optical sensors and data cut-off switches forms a Protected Distribution System (PDS).

Optical Cutoff Switches

SecurLAN™ has two functions; to detect an intruder, and to deny access to data. The cutoff switch is responsible for denying access to an intruder. Once the system detects an intrusion attempt, the cutoff switch physically turns off the data in the area of concern, ensuring that the breach in security does not result in stolen data.

    • Works with multimode or single-mode data lines
    • Creates an absolute data shut-off
    • Integrates with the SecurCommander command and control system

About SecurCommander™

A command and control interface that when combined with SecureLAN optical sensors and data cutoff switches form a Protected Distribution System (PDS) capable of shielding sensitive networks from physical attacks, tapping, or accidental damage.

    • Meets US military guidelines for PDS systems
    • Interactively monitors and controls system sensor solutions
    • Enforces organizations’ Standard Operating Procedures (SOP) via a customizable case management workflow and communication settings
    • Microsoft SQL Server database and reporting functionality
    • Client-server functionality