Marc,
Thanks for the consideration.
We are a sneakernet/USB sort of place, and we are trying to get to a better way of doing things.
What we really want is something that out-modes sneakernet, but prevents access to the control system.
Devices like those made by Waterfall achieve this, but they cost a whole lot.
Waterfall unidirectional gateways:
waterfall-security.com/products/unidirec...al-security-gateways
Those systems may be more cost effective now (we haven't asked to look at their pricing for several years), but I doubt it.
A fiber tap will absolutely prevent return data, as it is a two way mirror that splits the beam and only provides outputs on the tap side. It is physically impossible to feed data back into the system in this case.
If we can leverage this with duplication, then we get the ability to to feed any data we choose to the replicated data set, with no possibility of accidental or surreptitious control system access. This would give our students and researchers access to the data they would like in near-real-time while preserving the security of the facility.
To answer your question, yes, the lower-security areas may only look at(copy, read, etc.) the data. They may not alter or adjust anything in the database.
Again, I really appreciate the discussion.
-Matt