ICT PRT-PSU-DIN-4A Installation Manual page 38

- The Report IP Service must be enabled as the primary communication channel and the Service Mode
must be configured to start with the operating system. The Reporting Protocol must be set to
ArmorIP, and the Backup Service must be configured to use the Contact ID Service.
- Refer to the section
- All ULC S304 P3 applications must transmit signals simultaneously over both the Contact ID Reporting
Service and the Report ID Service. This will occur automatically with the above programming.
⦁ Status Change Signal
An attempt to send a status change signal shall utilize both primary and secondary communication
channels.
⦁ Local Annunciation if Signal Reporting Failure
Failure of the primary communication channel or secondary communication channel shall result in a trouble
signal being transmitted to the signal receiving center within 240 seconds of the detection of the fault.
Failure of either communication channel shall be annunciated locally within 180 seconds of the fault.
The following options must be enabled in the Protege system:
- The Ethernet Link Failure trouble input must be programmed.
- The Trouble Input Area must be armed. Refer to the section
the Operator Reference Manual.
- The Log Modem Events to Event Buffer option must be selected in the Contact ID Reporting Service.
Network and Domain Access
⦁
Neither the subscriber control unit nor the signal receiving center receiver shall be susceptible to security
breaches in general-purpose operating systems.
Network access policies should be set to restrict unauthorized network access and "spoofing" or "denial of
service" attacks.
Ethernet Connections
⦁
All ethernet network connections shall be installed within the same room as the equipment.
⦁ Encryption
For active communications channel security, encryption shall be enabled at all times.
The ArmorIP-E (UDP) protocol must be used and the Encryption Type must be set to AES-256.
The following options must be enabled for the Report IP service in the Protege system.
- The Reporting Protocol must be set to ArmorIP (UDP) Encrypted. The AES key must be set as
specified by monitoring station.
- Refer to the section
⦁ Server Configuration
Where a server is employed for control over network addressing, encryption or re-transmission, such shall
be designed to remain in the "on state" at all times.
Communicators are not suitable for active communication channel security and medium or high risk
applications unless such can be "online" at all times, have a minimum 128 bit encryption scheme, have
encryption enabled, network and domain security implemented.
Network access policies shall be set to restrict unauthorized network access and "spoofing" or "denial of
service" attacks.
Internet Service Provider (ISP)
⦁
The Internet Service Provider (ISP) providing service shall meet the following requirements:
- redundant servers/systems
- back-up power
- routers with firewalls enabled and
- methods to identify and protect against "Denial of Service" attacks (i.e. via "spoofing")
Information Technology Equipment, Products or Components of Products
⦁
Products or components of products, which perform communications functions only, shall comply with the
requirements applicable to communications equipment as specified in CAN/CSA-C22.2 No. 60950-1,
Information Technology Equipment Safety - Part 1: General Requirements. Where network interfaces, such
PRT-PSU-DIN-4A | Protege DIN Rail 4A Intelligent Power Supply | Installation Manual
Report IP in the Operator Reference Manual.
Report IP | General in the Operator Reference Manual.
Trouble Inputs | Areas and Input Types in
38