Security Information; Unsafe Operating States Due To Manipulation Of Software - Siemens SIMATIC S7-1500 System Manual

Safety information

2.3 Security information

2.3 Security information
Siemens provides products and solutions with industrial security functions that support the
secure operation of plants, systems, machines and networks.
In order to protect plants, systems, machines and networks against cyber threats, it is
necessary to implement – and continuously maintain – a holistic, state-of-the-art industrial
security concept. Siemens' products and solutions constitute one element of such a concept.
Customers are responsible for preventing unauthorized access to their plants, systems,
machines and networks. Such systems, machines and components should only be
connected to an enterprise network or the internet if and to the extent such a connection is
necessary and only when appropriate security measures (e.g. firewalls and/or network
segmentation) are in place.
For additional information on industrial security measures that may be implemented, please
visit (https://www.siemens.com/industrialsecurity).
Siemens' products and solutions undergo continuous development to make them more
secure. Siemens strongly recommends that product updates are applied as soon as they are
available and that the latest product versions are used. Use of product versions that are no
longer supported, and failure to apply the latest updates may increase customers' exposure
to cyber threats.
To stay informed about product updates, subscribe to the Siemens Industrial Security RSS
Feed visit (https://www.siemens.com/industrialsecurity).
2.4

Unsafe operating states due to manipulation of software

Unsafe operating states due to software manipulation
Software manipulation, for example viruses, Trojans, and malware, can cause unsafe
operating states in your plant which may result in death, serious injury, and material
damage.
• Keep the software up-to-date.
• Integrate the automation and drive components into a holistic, state-of-the-art Industrial
• Consider all of the products used in your holistic Industrial Security concept.
• Use suitable protective measures such as virus scanners to protect the files on
• Check all security settings when completing commissioning.
• Set up access protection for the CPU.
• Set up know-how protection for blocks (OB, FB, FC, global data blocks).
• Protect the drive from unauthorized changes by enabling the "Know-how protection"
18
WARNING
Security concept for the plant or machine.
removable media from malware.
converter function.
SIMATIC Drive Controller
System Manual, 11/2019, A5E46600094-AA