Cambridge Cyber InternationalCambridge CyberInternati
nal

Hardware

Domain Separation for Finance

No lateral movement. By construction.

Request a demo

The problem

Breaches move sideways

Every major financial-sector breach of the past decade involved lateral movement. The only reliable way to stop it between two domains is to make them physically incapable of sharing memory, storage or execution state.

Lateral movement between domains

What it does

Two domains, physically separated

A single chassis holds two physically isolated domains, a regulated one and a general-purpose one, that share no memory bus, storage or network path. Switching is a hardware action, not a software context switch, so a compromise of the general-purpose side cannot reach the regulated side by construction.

Hardware-separated domains

Financial sector use cases

The primary use case is the SWIFT operator workstation: the station used to authorise SWIFT payment instructions must be isolated from the general-purpose endpoint used for email and web browsing. SWIFT CSP Mandatory Control 1.1 requires this separation; most implementations achieve it through software virtualisation, which satisfies the letter but not the spirit of the control. Hardware separation satisfies both.

Secondary use cases include trading terminal isolation (separating the order management system from general-purpose computing), and privileged access workstations for network and system administration in regulated environments.

Certification and compliance

The hardware separation architecture is documented to satisfy SWIFT CSP Mandatory Control 1.1 (separation of critical operator environment), DORA Article 9 ICT security requirements for high-impact systems, and NIS 2 Article 21 technical measures for essential entities. Documentation for ISO 27001 Annex A.8.22 (segregation of networks) is available on request.

Frameworks addressed

DORA SWIFT CSP ISO 27001 NIS 2

Related products

Visibility

NetDiagramer

Models the architecture produced by domain separation — Business and Technology strata with no cross-domain dependency lines where the separation holds.

Finance resilience

DORA-MAST

DORA-MAST models the resilience impact of domain separation — quantifying how the air gap changes your loss exceedance curve.

Every product is field-tested

← All products