Crossbow

CrossBow™ is a proven Secure Access Management solution designed to provide NERC CIP compliant access to Intelligent Electronic Devices. The CrossBow solution focuses on delivering productivity gains for administrators and users while achieving full NERC compliance in managing, securing and reporting on remote access. When used in combination, CrossBow and the new CrossBow Station Access Controller for local substation access, form an integrated, comprehensive solution with a seamless configuration environment.

 

Crossbow - Image 1.jpg

 

CrossBow™ Station Access Controller


The CrossBow Station Access Controller complements the product family by providing a solution at the substation for managing local IED access, while maintaining stringent security methodologies in line with NERC CIP compliance and industry best practices. This allows the CrossBow product to further enhance productivity gains for administrators and users while achieving full NERC compliance in managing, securing and reporting on remote access.

System Architecture


CrossBow™ allows an IED maintenance application to remotely communicate with its associated IEDs, as if the user were directly connected to the IED with a serial cable or network connection. The Station Access Controller expands the solution by positioning a hardened controller directly in the substation for managing users who are physically present in the substation. Users can now log into the CrossBow™ central authority from within the substation, maintaining consistent security administration in adherence with NERC CIP. Alternately, the Station Access Controller provides for a secure, “Emergency Mode”, where the network connection to the enterprise has been lost. In this mode, security is still maintained in adherence with NERC CIP, while providing the local user full functionality, and complete logging of activity

Benefits


  • Remote, transparent access to IEDs, from any software application
  • Preserves investment in legacy gateway devices and communication infrastructure
  • Meets NERC CIP-002-1 through CIP-009-1 requirements for security:
  • Strong (2-factor) authentication
  • Active Directory support
  • Individual user accounts
  • Comprehensive NERC CIP compliance reports
  • Audit log
  • WAN or Dial-up access
  • Administration interface allows management of thousands of IEDs and hundreds of users