OPC Server Transfer Service (OSTS) Product Advisory – Microsoft has released a security update that changes how the Windows OS enforces DCOM security due to a discovered vulnerability (DCOM is a component that allows the OSTS product to communicate with OPC servers). Owl customers should rest assured that the one-way design of the core Owl data diode technology prevents bad actors from using this identified vulnerability to create exploits that can threaten your protected facilities, however Owl strongly recommends that customers upgrade to OSTS v2.2.3.0.

OSTS™

OPC Server Transfer Service

Created by the OPC Foundation, OPC is the interoperability standard for the secure and reliable exchange of data in the industrial automation space. Owl’s OSTS application provides a mechanism where data (real-time data, monitoring of alarms and events, historical data) can be accessed within an OT network using the OPC standard interface. An Owl data diode solution then transfers the data across the network security boundary to business users on the IT networks. This provides external users with access to plant data without jeopardizing the cybersecurity of the OT network.

Function

The OPC Server Transfer Service (OSTS) application operates as an OPC client and retrieves “point” data from one or more OPC servers in the network.  The point data is then securely transferred from the source side of the one-way data diode across to the destination side. On the destination side an OPC server makes the point data available to OPC clients operating on the IT networks. OSTS has received OPC Foundation Laboratory Certification and supports both OPC Data Access (DA) and OPC Alarms and Events (A&E) specifications.