The MatrikonOPC Security Gateway Server can be configured to be placed between Classic OPC client(s)
and Classic OPC server(s) to which the user is trying to connect, as well as between OPC UA Client(s) and
Classic OPC Server(s). The figure shows the system overview.

The MatrikonOPC Security Gateway Server can be used in many situations. For example, MatrikonOPC
Security Gateway:

• Can be used to manage restrictions, where the OPC server performs best when a certain number of
  groups and items are allowed per group.
• Can be used to connect to multiple OPC servers. This way the OPC client is only expected to create a single connection to the MatrikonOPC Security Gateway Server, to connect to multiple OPC servers.
• Controls access rights for the user to OPC items in the OPC server to which the MatrikonOPC Security Gateway Server is connected. This way security functionality becomes available for OPC servers

Supporting all vendor compliant OPC DA servers, MatrikonOPC Security Gateway fills security gaps in real-time OPC architectures. 
Easily transform any real-time OPC architecture from a security liability to an effective component of a successful defense strategy.

OPC Security Gateway now supports HDA enabling customers to secure all HDA OPC Servers. OPC Security Gateway with HDA support also provides:

HDA operations supported (Read Raw, Read Processed, Insert, and Insert and Replace)
Provides secure OPC DA data from HDA OPC Servers.
Ability to process raw data from the OPC Server and provide the data as processed data.
Ability to perform multiple requests to fulfill a single large request from the OPC Client, to throttle requests to low performance HDA OPC Servers.
Ability to throttle based on maximum number of items and maximum values per request.
Reconnect and retry mechanism to seamlessly handle request failures.