1. Manuals
  2. Brands
  3. Siemens Manuals
  4. Recording Equipment
  5. N148/23
  6. Manual

Notes On Secure Data Transfer - Siemens N 148/23 Manual

Ip interface secure
Hide thumbs Also See for N 148/23:
Table of Contents

Advertisement

3

Notes on secure data transfer

8 | 18
3 Notes on secure data transfer
Instructions for secure operation of KNX IP Secure products
Only operate the device in a protected network environment and do not allow
direct access from the Internet.
Additionally secure remote access to the device via a VPN connection.
A virtual private network (VPN) establishes an encrypted and authorized con-
nection (VPN tunnel) from a remote connection to a network via the internet.
This VPN connection enables secure communication protected from eaves-
dropping between a remote device and the KNX installation.
Only operate the device in secure mode. The device is in secure mode when
the device has been commissioned via secure commissioning, secure tunnel-
ing is enabled and strong and different passwords are used.
Set up a separate IP network with its own hardware for KNX communication.
Use user IDs and strong passwords to restrict access to the (KNX) IP network.
Restrict access to the (KNX)IP network to an authorized group of people using
user IDs and strong passwords..
Document network settings and give them to the building owner/operator or
LAN administrator.
Coordinate the administration of access rights to this KNXnet/IP device in an IP
network with the respective IP network administrator.
Measures after replacing a device in the network
If an IP Router Secure or an IP Interface Secure in secure mode is stolen from a
network or replaced due to a defect, secure commissioning has to be repeated for
all other devices in the network. To do this, deactivate the"Secure commissioning"
option for each device in the settings of the project, activate the option again and
load the data to the devices again. (There is no need to load the data into the
device between deactivation and reactivation.)
Secure commissioning has to be repeated because it is not possible to exclude the
possibility that the keys that are in the secure section of the device can be read.
Recommissioning has the effect that new keys are generated and the old keys be-
come worthless. The removed device no longer works in the network.
More information on KNX security
For more information on KNX security, including, for example, a security check,
refer to the "KNX Secure" section on the KNX website (http://www.knx.org).
A6V11689762_en--_d

Advertisement

Table of Contents
loading

Related Manuals for Siemens N 148/23

Related Content for Siemens N 148/23

Table of Contents