February 01, 2026
Why Isidore Quantum® One-Way-Data-Diode:
Affordable: 70% faster to implement and 60% lower total cost of ownership
| True One-Way Security: Physically and logically enforces unidirectional data flow—no return path, no compromise
| Quantum-Grade Encryption: Integrates NIST approved PQC and QRNG-based keying for future-proof, post-quantum data protection
| Zero-Trust Isolation: Hardware-enforced Red/Black separation eliminates cross-domain cyber infiltration.
|
Product Description:
Traditional one-way data diodes isolate networks to block inbound attacks but still expose outbound data to interception, harvest-now-decrypt-later exploitation, and future quantum decryption risks. Forward Edge-AI’s Isidore Quantum® One-Way Diode enhances this approach through unidirectional encryption driven by quantum-grade entropy, removing the need for return-path key exchanges.
Operating in compliance with NSA CNSA 2.0 and FIPS 140-3 standards, the system combines ML-KEM post-quantum key encapsulation with AES-256-GCM symmetric encryption to ensure that data leaving a secure operational network remains protected even against future quantum-computing threats. The solution enforces strict galvanic and logical isolation to guarantee a true one-way data flow while maintaining full protocol independence and hardware flexibility, enabling seamless integration across SCADA, OT, and other critical infrastructure networks.
At the core of the diode is a Quantum Random Number Generator (QRNG) subsystem that produces fully unbiased, high-entropy randomness derived from fundamental quantum noise. The QRNG continuously monitors its entropy source through real-time health checks, automatically suspending output if anomalies are detected and resuming only after verification of trusted entropy.
By uniting unidirectional data control, quantum-resistant encryption, and autonomous key generation, the Isidore Quantum® One-Way Diode secures mission-critical data for long-term protection against quantum attacks, side-channel exploits, and entropy depletion while maintaining low size, weight, and power efficiency for seamless deployment across defense and critical infrastructure networks.
Product Specifications:
Size, Weight, and Power | ~140 x 89 x 39 mm (5.5 x 3.5 x 1.5 in); 450 g (16 oz); ~7 W |
Architecture | Unidirectional quantum-resistant data diode: hardware-enforced one-way data transfer from Red (secure/OT) to Black (untrusted/IT) domains; no physical or logical return path |
Compliance & Certifications | CNSA 2.0, FIPS 140-3 (Level 3), NIST SP 800-90 A/B/C, BSI AIS-31, ECCN 5A002 (License Exception ENC) |
Cryptographic Algorithms | NSA CNSA 2.0–compliant AES-256-GCM and ML-KEM post-quantum key encapsulation |
Quantum Entropy Source | Integrated QRNG subsystem; NIST SP 800-90 A/B/C and BSI AIS-31 validated randomness |
Throughput | 480 Mb/s |
Latency | <90 µs (estimated) |
Interfaces | Ethernet (10/100/1000), Serial, SCADA-compatible fieldbus; supports IP, MPLS, and legacy industrial protocols |
Security Architecture | Copper, Fiberoptic, Wireless |
AI & Autonomy | Embedded AI-based anomaly detection and adaptive rate-control to protect against side-channel or timing-based exfiltration attempts |
Environmental Tolerance | Industrial-grade –40 °C to +85 °C operation; vibration and EMI-shielded enclosure; optional radiation-tolerant variant for space/defense use |
Management System | Cassian™ for fleet orchestration, remote policy enforcement, monitoring, and firmware lifecycle management |
Price (USD): | $3,675 |
Pricing: Does not include taxes, shipping and handling. Reseller prices may vary.
Prices listed are subject to change without prior notice. While we strive to maintain accurate and current pricing, adjustments may occur due to market conditions or other factors. Customers will be notified of any changes before final purchase confirmation
Features
CNSA 2.0 and FIPS 140-3 Compliance:
Implements NSA-approved post-quantum algorithms and validated cryptographic modules, ensuring long-term regulatory compliance and readiness for emerging government security mandates
Hardware-Enforced Red/Black Separation:
Physically isolates trusted and untrusted domains with strict boundary controls, preventing side channel and power-based attacks in demanding national security environments
Ephemeral One-Time Key Architecture:
Creates single-use, rapidly discarded session keys for every connection, eliminating persistent secrets and ensuring forward secrecy in hostile or compromised environments
Drop-in PQC Integration:
Seamlessly installs into existing complex networks without configuration changes, providing immediate post-quantum protection while simplifying modernization across legacy infrastructure systems
AI-Driven Cyber Resilience:
Continuously analyzes network behavior using trained AI models to detect anomalies, self-heal disruptions, and maintain secure operation during sophisticated, evolving cyberattacks
Remote Monitoring and Control
Designed for simple installation and management with no special skills needed, operating automatically on “power-on” after initial configuration. Administered and monitored by the CASSIAN™ management and control plane via secure in-band and out-band channels
Copyright 2026 Forward Edge-AI, Inc.