Deriving IP addresses Your specific security context determines the network structure and also the IP addresses. To assign the IP addresses that are suitable for you, you must derive them from your security context. The following is an example security context that you must adapt to your… Read More
Checking the integrity state If the Security Profile is activated, an integrity state check is performed after each boot and log-in to the WBM. The integrity state is displayed in the WBM in the page header line right to the Security Profile state field. Note: Every event… Read More
Integrity check of downloaded software or firmware files IEC 62443 requires mandatory integrity check of software or firmware downloaded via Internet against tampering attacks. After downloading a setup file for any application (Windows®/Linux), a firmware file for a controller from the Internet or a PLCnext Technology App from the PLCnext Store,… Read More
Generic security concept Defense-in-depth design of automation systems is an important IEC 62443 process measure to achieve reliable security. The result is a generic layered architecture that leads step-by-step to a fully segmented network layer structure that describes the PLCnext Technology security architecture and the security use cases in… Read More
Security measures – an overview To achieve security in an automation system, a holistic approach is necessary. An adequate security concept must be drawn up that covers technologies used, the defined processes, and the people involved. Both technological and organizational measures must be taken into account. Many… Read More
Secure disposal You must safely decommission the controller so that no sensitive, confidential and/or manufacturer-specific data and software remain on the device. Check the national GDPR (General Data Protection Regulations) to comply with and make sure that attackers can’t access confidential security information’s from the deinstalled or disposed… Read More
Configuring basic firewall settings For basic firewall configuration information, refer to the Firewall WBM topic in the main PLCnext Technology ‑ Info Center. Log in to the WBM. Return to topicHow do I get to the WBM again? Click here for more information… Establishing a connection to the Web-based… Read More
Security logging Log in to the WBM. Return to topicHow do I get to the WBM again? Click here for more information… Establishing a connection to the Web-based Management (WBM): Open a web browser on your computer. In the address field, enter the URL… Read More
Checking SD card settings Note: Make sure that the Security Profile is activated before you start encrypting the SD card. For BPC 9102S and RFC 4072S When using a BPC 9102S or RFC 4072S, the use of an external SD card is mandatory. In a security context, you must use encrypted SD cards. Make… Read More
Configuring TLS Log in to the WBM. Return to topicHow do I get to the WBM again? Click here for more information… Establishing a connection to the Web-based Management (WBM): Open a web browser on your computer. In the address field, enter the URL… Read More
