×
Siemens Industry Online Support
Siemens AG
Entry type: Product note Entry ID: 49382928, Entry date: 04/11/2011
(0)
Rate

Use of Whitelisting Protection Mechanisms with SIMATIC Products

  • Entry
  • Associated product(s)

The existing Malware protection for PC systems, e.g. with anti-virus programs, can be suitably supplemented with Whitelisting protection mechanisms. Successful compatibility tests now enable the use of these enhanced protection mechanisms with selected SIMATIC products.

Whitelisting protection mechanisms ensure that only reliable programs and applications are executed on a PC system. They prevent the execution of forbidden software and the modification of installed applications. This kind of protection is available via additionally installed security applications, e.g. the McAfee Application Control V5.1.

Major advantages of the Whitelisting technology are:

  • Low requirement on resources
  • Protective effect without regular pattern updates
  • Automatic protection against third-party program code (e.g. via USB stick)
  • Effective protection against "Zero-Day Exploits"
  • Whitelisting can be post-installed on existing systems

The following SIMATIC products have been sucessfully tested for compatibility with McAfee Application Control V5.1:

  • STEP 7 V5.5
  • PCS 7 V8.0
  • PCS 7 V7.1 + SP2
  • PCS 7 V7.1 + SP3
  • PCS 7 V7.0 + SP3
  • PCS 7 V6.1 + SP4  
  • WinCC V7.0 + SP1
  • WinCC V7.0 + SP2
  • WinCC flexible 2008 + SP2
  • S7-mEC, EC31 as of August 2010
  • PCS 7 AS mEC RTX

The compatibility tests included both Engineering and Runtime stations.

Manual for Commissoning

The "SIMATIC Process Control System PCS 7 Configuring McAfee Application Control" manual supports configuring and commissioning of McAfee Application Control V5.1 for the above-mentioned SIMATIC products. Please refer to entry ID 51776157 .

Security information
In order to protect technical infrastructures, systems, machines and networks against cyber threats, it is necessary to implement – and continuously maintain – a holistic, state-of-the-art IT security concept. Siemens’ products and solutions constitute one element of such a concept. For more information about cyber security, please visit
https://www.siemens.com/cybersecurity#Ouraspiration.