Safety instructions
2.2 Security recommendations
Keys and certificates
This section deals with the security keys and certificates that you need to set up SSL.
• We urgently recommend creating your own SSL certificates and making them available.
Preset certificates and keys are present in the device.
The preset and automatically created SSL certificates are self-signed. We recommend
using certificates signed either by a reliable external certification authority or an internal
certification authority.
The device has an interface via which you can import certificates and keys.
• We recommend that you use certificates with a cryptographic key length of at least 4096
bits.
• If protocols support both certificates and keys, you should favor certificates.
• The following certificate formats are supported for the import:
Firmware encryption
The firmware itself is signed and encrypted. This ensures that only authentic firmware can be
downloaded to the device.
10
Certificate
HTTPS
Supported formats
*.p12
Mobile reader SIMATIC RF360M/RF660M
Operating Instructions, 08/2022, C79000-G8976-C660-02