Understanding and Using Dedicated Device Access (DDA) with SINEMA Remote Connect
The digitization of industrial automation systems is associated with increasing networking and large amounts of data. To achieve consistency, open standards are used. The disadvantage of this development is that automation systems are vulnerable to cyber attacks and production networks have become targets for attacks. For protection against unauthorized access, the production network must be secured. In order to minimize downtimes and thus keep plant availability and productivity high, it should also be possible to intervene remotely in the event of malfunctions during operation.
The requirement is to provide service personnel with secure access to the production network for maintenance and service purposes. The service staff should not have access to the entire production network, but only to explicit and selected modules.
Solution approach SINEMA Remote Connect
Using SINEMA Remote Connect management platform, users can conveniently and securely maintain widely distributed plants or machines by remote access. The Sever application securely manages the tunnel connections (VPN) between control centers, field technicians, and the installed plants. Siemens offers the new function "Dedicated Device Access" for SINEMA Remote Connect Version V2.0 or higher (abbreviated: DDA), which allows user-specific access to unique IP addresses in the subnet. Individual machines can be controlled via VPN (Virtual Private Network). This reduces operating errors caused by remote access by unauthorized employees.
This application example shows an example of how to configure and use the "Dedicated Device Access" function.
Documentation (1,7 MB)