1. Manuals
  2. Brands
  3. Siemens Manuals
  4. Control Panel
  5. Second Wind
  6. Function manual

Check List: Data Security - Siemens Second Wind Function Manual

Fail-safe operation of the mobile panel 277f iwlan
Hide thumbs
Table of Contents

Advertisement

Application Planning

3.6 Check list: Data security

3.6
Check list: Data security
Introduction
Data security, security in automation technology serves particularly to ensure the availability
and trouble-free operation of industrial plants.
In order to ensure secure transmission of signals via a WLAN for the Mobile Panel
277F IWLAN, you must particularly safeguard the system from unauthorized access.
You can count on the following types of unauthorized accesses:
● Outside accesses
● Accesses from inside
Possible attack objectives
The HMI device communicates with the fail-safe controller via PROFIsafe. Here the following
possible attack objectives are present:
● Parameter assignment and configuration
● Productive operation data
Organizational measures to ensure data security
The organizational measures to ensure data security are described in the following
documents:
● PROFIsafe – Profile for Safety Technology on PROFIBUS DP and PROFINET IO
● PROFIsafe - Environmental Requirements
Note the regulations in these documents.
Check list
The following check list shows the organizational measures required to achieve the highest
possible level of data security when transmitting via WLAN.
Specify the organizational measures you must implement in accordance with your plant's
requirements. Take all phases into account:
● The configuration phase
50
To protect against unauthorized accesses from outside you must protect the WLAN in the
same way you would protect a WLAN for office communication, namely with a firewall.
Investigations have shown that the majority of attacks on data security are executed from
inside the plant. To ensure data security you must take special measures inside the plant.
Possible objectives of an attack are assignment of parameters to a device and
configuration.
The productive data can be manipulated by sending a series of false PROFIsafe
telegrams, which prevent the machine from being switched off.
Data transfer between HMI device and access point is protected by the AES encryption
mechanism. Manipulation of productive data is prevented in this manner.
(IEC 61784-3-3)
Fail-safe operation of the Mobile Panel 277F IWLAN
Function Manual, 08/2008, 6AV6691-1FQ01-2AB0

Advertisement

Table of Contents
loading

Related Manuals for Siemens Second Wind

Related Content for Siemens Second Wind

Table of Contents