.

Date:
9.10.2025
Author:
Inventia Team

Growing cybersecurity requirements, new EU directives and increasingly sophisticated cyber threats mean that companies must focus on solutions that are not only efficient, but above all secure. The new version of MTDataProvider meets these needs by introducing a number of changes to the architecture and data protection mechanisms that comply with the requirements of the NIS2 Directive, providing data for SOC teams and SIEM systems.

Find out:

• Modular architecture – flexibility and scalability

• Communication security – a response to NIS2 requirements

• Encryption of OPC UA and device communication

• Three-layer encryption mechanism

• Significance for businesses in the context of NIS2 and CERT

• Learn how to perform the update step by step and take full advantage of the new architecture

• Frequently asked questions (Q&A) – MTDP 4

The biggest change in version 4 is the move away from a monolithic program structure in favour of a plugin-based architecture.

• The main server is now responsible for key functions – communication with devices, databases (ODBC) and CSV file generation.
• Plugins have become separate applications that communicate with the server via a TCP/IP-based API.

Thanks to this solution:

• the main application runs in a 64-bit architecture, which enables fast support for a significantly larger number of devices,
• compatibility with existing standards, including OPC DA, has been maintained,
• it is possible to run plug-ins on other machines and communicate remotely with the server, which provides great flexibility in large industrial installations.

The result? A scalable system that grows with the needs of the enterprise while meeting increasingly stringent requirements for OT system availability and reliability.

The introduction of the NIS2 Directive imposes an obligation on companies – particularly those in critical and essential sectors (energy, transport, health, supply chains) – to use advanced communication and data protection mechanisms. In practice, this means, among other things:

• the obligation to encrypt transmissions,
• protection against man-in-the-middle and replay attacks,
• ensuring the integrity and confidentiality of transmitted information.

The new MTDataProvider has been designed with these requirements in mind.

Version 4 introduces support for encryption in the OPC UA standard using advanced algorithms:

• Basic256Sha256
• A128Sha256RsaOaep
• Aes256Sha256RsaPss

In addition, encryption of communication between MTDataProvider and Inventia controllers, modules and communication gateways using AES-128 has been introduced.

Data security is ensured by a three-layer encryption system, which includes:

1. manufacturer key,
2. a unique key for the device,
3. a user-defined key.

Each communication session is additionally protected by a one-time token, which prevents unauthorised parties from eavesdropping or repeating the transmission. This approach means that communication is protected in real time, from the moment the data is sent by the device until it is received by the master system.

The implementation of MTDataProvider 4 helps companies to comply with regulatory requirements in practice:

• NIS2 compliance – encryption mechanisms, data integrity control and secure architecture support businesses in meeting new obligations for the protection of OT and IT systems.
• Support CERT – centralisation of logic in the main server and system modularity facilitate monitoring, event analysis and incident reporting, which in turn supports the reporting processes imposed by NIS2.
• Increased operational resilience – scalable architecture and three-layer encryption ensure security even in distributed infrastructures where plugins run on multiple machines simultaneously.

The new MTDataProvider is not just another software release – it is a tool designed with the future in mind. Its flexible, modular architecture facilitates development and integration, while advanced security mechanisms enable enterprises to meet the regulatory requirements imposed by NIS2 and national CERT systems.

For companies, this means not only higher performance and easier scaling, but above all a secure, compliant platform ready for the challenges of today’s industry.