NERC CIP Cyber Secure Gateway

The OrionLX or LXm can serve as a NERC CIP secure substation gateway. Orion connects to substation meters, event recorders, distributed I/O, protective relays and other substation IEDs using any combination of RS232, RS485, Fiber or Ethernet connections and over 30 available IED protocols. Access to Orion and to these IEDs is controlled with comprehensive Orion security features including strong password and centralized user authentication using LDAP, encrypted protocols, key management, stateful firewall, and NERC-compliant alarm and event logging. These features provide a cyber secure connection for remote SCADA and engineering clients, and are designed to operate with open, industry-standard IT infrastructure and practices to ensure compatibility. In addition, OrionLX can present data to a local touchscreen HMI using a VGA output, eliminating the need for a substation PC and its maintenance and security requirements. The OrionLX serves as a secure California ISO remote integration gateway (RIG) in generation sites.

Software for this Application

Security

Includes strong passwords, user privileges, firewall, key cryptography and security logging.

Protocols for this Application

SFTP, HTTPs, LDAP, OpenVPN, SSH, SSL / TLS, syslog, SNMP, DNP3 SA V5

OrionLX Hardware Features for this Application

1.33GHz High Performance CPU

OrionLXm Hardware Features for this Application

720MHz CPU

Cyber Security Threats
Security Threat Method of Mitigation
Unauthorized Remote Clients Encryption, Secure Protocols, Firewall, Deep packet Inspection, Port Scanning
Hackers and Sophisticated 'Bots Encryption, Secure Protocols, Firewall, Deep packet Inspection, Port Scanning
Disgruntled Employees with 'Keys to the Kingdom' Configuration Change Monitoring, Security Event Monitoring, Two-Factor Authentication, Password Management
Vendor Employees with Design Information Background Checks, Configuration Change Monitoring, Security Event Monitoring, Two-Factor Authentication, Password Management
System 'Back Doors' No back door in OrionLX
Insecure Modems Remote hang-up, monitoring
Viruses or Other Malware OS only allows signed files
Infected USBs Lock out or remove unused Ports
Physical Security Define Electronic Security Perimeter
  • TechTalk Summer 2017  

    Orion I/O Upgrade Assemblies for D20 I/O Modules
    South African Partnerships
    Split-Core CT Option in M872

    August 2, 2017

  • TechTalk Fall 2017  

    Bitronics Pole Top Power Monitor
    Orion Active-Standby Redundancy
    Orion I/O Update (new Model # Generator, and new video)
    NCD v3.31

    November 15, 2017

  • Orion Products Overview Brochure  

    The Orion Family of Substation Automation Platforms and I/O perform an expanding array of automation and security applications in electric utility substations, with minimal setup and maintenance. A single Orion can replace multiple legacy boxes in a substation, reducing hardware, design, wiring, and panel costs.

    December 6, 2017

  • NovaTech Orion I/O  

    NovaTech Orion I/O™ is an extension of the family of OrionLX™ Automation Platforms for substation automation and incorporates the same security features, software tools and “NCD” configuration as the OrionLX. It is a rack-mountable I/O assembly with four slots—A, B, C, and D—that can be filled with any combination of I/O cards: currently 16-Point Discrete Input Card,

    August 16, 2017

  • TechTalk Winter 2017  

    DistribuTECH 2017 Edition
    Orion I/O Advertisement Spotlight
    PRC-002 Compliance Literature

    January 10, 2017

  • TechTalk Fall 2016  

    Product Update: Configuration Backup Manager
    New Pre-Drawn Image Library
    Quickly Add Automation to an Older E/M Relay Substation
    IEC 61850: More Than Just a Protocol

    November 3, 2016

  • Additional Datasheets, Application Notes, Customer Success Stories and other documents in our documentation library

  • NERC CIP Cyber Security Solutions

    Tripwire and NovaTech jointly present on security solution to meet the latest NERC CIP requirements including Access Management, Security Monitoring, Configuration Management, and Event Analysis.

    March 18, 2016

  • NovaTech Utility Systems and Services

    Almost half of NovaTech’s business is in Systems and Services including web page design, panel design, math and logic development, Orion configuration, and onsite installation and commissioning. Mark Matassa explains how our engineers can work with you to reduce project execution time at the 2016 DistribuTECH Conference and Exhibition in Orlando, Florida.

    March 18, 2016

  • NERC CIP Identity and Password Management Software

    This video describes the key features of the NovaTech Identity Manager (NIM) and NovaTech Connection Manager (NCM) products. NovaTech Identity Manager is a Linux LDAP/IPA application for managing users and passwords for OrionLXs and Schweitzer relays to the latest NERC CIP Version 5 requirements. NovaTech Connection Manager establishes a secure connection to OrionLXs and Schweitzer relays in the substation.

    April 29, 2015

  • Review of the New NERC CIP-10 and CIP-11 Webinar

    Within the next two to three years, it is likely that two new NERC CIP requirements will go into effect:
    1. CIP-010-1: Cyber Security – Configuration Change Management and Vulnerability Assessments
    2. CIP-011-1: Cyber Security – Information Protection
    This webinar was held on August 22, 2013. The presentation focuses on learning more about why these were created, where they will be required in the BES, and the latest solutions to address them.The webinar is hosted by Jeremy Anderson, Senior System Engineer. Prior to joining NovaTech, Jeremy designed and implemented a complete NERC CIP compliance system at a southwest US IOU.

    April 6, 2015

Your browser is out-of-date!

Update your browser to view this website correctly.Update my browser now

×