NERC CIP Cyber Secure Gateway

The OrionLX or LXm can serve as a NERC CIP secure substation gateway. Orion connects to substation meters, event recorders, distributed I/O, protective relays and other substation IEDs using any combination of RS232, RS485, Fiber or Ethernet connections and over 30 available IED protocols. Access to Orion and to these IEDs is controlled with comprehensive Orion security features including strong password and centralized user authentication using LDAP, encrypted protocols, key management, stateful firewall, and NERC-compliant alarm and event logging. These features provide a cyber secure connection for remote SCADA and engineering clients, and are designed to operate with open, industry-standard IT infrastructure and practices to ensure compatibility. In addition, OrionLX can present data to a local touchscreen HMI using a VGA output, eliminating the need for a substation PC and its maintenance and security requirements. The OrionLX serves as a secure California ISO remote integration gateway (RIG) in generation sites.

Software for this Application


Includes strong passwords, user privileges, firewall, key cryptography and security logging.

Protocols for this Application


OrionLX Hardware Features for this Application

1.33GHz High Performance CPU

OrionLXm Hardware Features for this Application

720MHz CPU

Cyber Security Threats
Security Threat Method of Mitigation
Unauthorized Remote Clients Encryption, Secure Protocols, Firewall, Deep packet Inspection, Port Scanning
Hackers and Sophisticated 'Bots Encryption, Secure Protocols, Firewall, Deep packet Inspection, Port Scanning
Disgruntled Employees with 'Keys to the Kingdom' Configuration Change Monitoring, Security Event Monitoring, Two-Factor Authentication, Password Management
Vendor Employees with Design Information Background Checks, Configuration Change Monitoring, Security Event Monitoring, Two-Factor Authentication, Password Management
System 'Back Doors' No back door in OrionLX
Insecure Modems Remote hang-up, monitoring
Viruses or Other Malware OS only allows signed files
Infected USBs Lock out or remove unused Ports
Physical Security Define Electronic Security Perimeter

    December 13, 2017 – December 14, 2017 Jeddah Hilton Hotel - Saudi Arabia

    Saudi Arabia Smart Grid Conference – Booth 56 – 58

    NovaTech will be represented at the Saudi Arabia Smart Grid Conference on Smart Grid and Renewable Energy (SASG 2017). The purpose of the event is to bring together researchers, designers, developers and practitioners interested in the advances and applications...

    January 23, 2018 – January 25, 2018 San Antonio, Texas

    DistribuTECH 2018 – Booth #2135

    NovaTech will exhibit at the 2018 DistribuTECH in San Antonio, Texas from January 23 - 25. Please come visit us in Booth #2135 to see our latest product offerings.

  • NERC CIP Cyber Security Solutions

    Tripwire and NovaTech jointly present on security solution to meet the latest NERC CIP requirements including Access Management, Security Monitoring, Configuration Management, and Event Analysis.

    March 18, 2016

  • NovaTech Utility Systems and Services

    Almost half of NovaTech’s business is in Systems and Services including web page design, panel design, math and logic development, Orion configuration, and onsite installation and commissioning. Mark Matassa explains how our engineers can work with you to reduce project execution time at the 2016 DistribuTECH Conference and Exhibition in Orlando, Florida.

    March 18, 2016

  • NERC CIP Identity and Password Management Software

    This video describes the key features of the NovaTech Identity Manager (NIM) and NovaTech Connection Manager (NCM) products. NovaTech Identity Manager is a Linux LDAP/IPA application for managing users and passwords for OrionLXs and Schweitzer relays to the latest NERC CIP Version 5 requirements. NovaTech Connection Manager establishes a secure connection to OrionLXs and Schweitzer relays in the substation.

    April 29, 2015

  • Review of the New NERC CIP-10 and CIP-11 Webinar

    Within the next two to three years, it is likely that two new NERC CIP requirements will go into effect:
    1. CIP-010-1: Cyber Security – Configuration Change Management and Vulnerability Assessments
    2. CIP-011-1: Cyber Security – Information Protection
    This webinar was held on August 22, 2013. The presentation focuses on learning more about why these were created, where they will be required in the BES, and the latest solutions to address them.The webinar is hosted by Jeremy Anderson, Senior System Engineer. Prior to joining NovaTech, Jeremy designed and implemented a complete NERC CIP compliance system at a southwest US IOU.

    April 6, 2015

Your browser is out-of-date!

Update your browser to view this website correctly.Update my browser now