Protection Against Physical Attacks; Protection Against Usb Surge; Firmware Updates; Changing Passwords - Honeywell ETCS Operation Instruction Manual

Ethernet Touch Call Station (ETCS)
9.2

Protection against physical attacks

If an intruder gains physical access to the internal network, it is possible they may find means of maliciously
tampering with a client's device router and play the audio files at a later date. The intruder may also maliciously
install a router which initiates unauthorised communication with an external network. To protect against risks of
this type, operators are strongly advised to put the following measures in place:
1. Ensure that only authorised personnel have access to the areas where the network is located. The minimum
recommendation is to put in place physical access control systems which only grant access to badge holders
or holders of other credentials.
2. Check communication across the entire network on a regular basis. Cases of failed announcements and new
IP addresses not known to the operator should be checked immediately.
3. The ETCS is delivered with a tamper-proof seal affixed in the factory. Unauthorised attempts to open the
device will destroy the seal (see Fig.). If the original seal is damaged or removed, the device should be taken
out of service.
Fig. 44: Damaged original ETCS seal
9.3

Protection against USB surge

If USB sticks are used for audio files, ensure that only trustworthy USB sticks are used.
Unknown or untrustworthy USB sticks can be used to damage the network or the ETCS through a USB surge.
Even known USB sticks can be used to tamper with the ETCS or the network in this way and cause permanent
damage.
For this reason, only USB sticks which have been checked for reliability should be used.
9.4

Firmware updates

Honeywell will issue a technical bulletin via its regional service centres when a new firmware version becomes
available.
Operators are strongly advised to update their firmware on receiving this information (see Chapter 'Updating the
ETCS firmware').
9.5

Changing passwords

Every operator is advised to change their passwords regularly, at least every 90 days.
How to change a password:
1. Open the D1 project file.
2. Open the 'ETCS user management' dialogue box.
3. Change the ETCS configuration password.
4. Select the corresponding usernames and change the passwords.
5. Click 'OK' to save changes and close the dialogue box.
6. Upload the new configuration to the ETCS (see Chapter 'Uploading a configuration').
7. Save the D1 project file.
44
FB 798685.GB0 / 03.20