Rating 
Thanks 2
5 Entries
| 1/5/2013 12:37 PM | |
Joined: 9/27/2006 Last visit: 4/19/2025 Posts: 12346 Rating:
|
Hello plcbug; Industrial security is an issue that has been taken very seriously by Siemens recently, probably spurred on by the Stuxnet virus attacks of the past years that affected Siemens software. Here are some documents related to Industrial Security, proposing Siemsn' solutions. Up to now viruses have mostly attacked PCs, but from th programming PCs they can affect PLC communications and commands to the PLCwritten by SCADA software. Where can you find information on the topic of "Industrial Security"? SIMATIC NET Industrial Ethernet Security Basics and application Configuration Manual SIMATIC NET Industrial Ethernet Security Setting up security Getting Started SIMATIC NET Industrial Ethernet Security SCALANCE S V3.0 Commissioning and Hardware Installation Manual · Make sure that the configuration computer (PC/PG) or the projects are protected from unauthorized access. (e.g., firewall, recommended antivirus software) · Make sure that the guest account is disabled on the configuration computer. · When using secure communication (for example HTTPS, VPN...), make sure that the security modules involved have the current time of day and the current date. Otherwise the certificates used will not be evaluated as valid and the secure communication will not work. · We recommend that up-to-date anti-virus software is always installed and active on all configuration computers. · The SOFTNET security client provides a solution for secure communication with automation cells via VPN. For self-protection of the PC/PG and the corresponding automation cell, it is advisable to use additional measures such as a virus scanner and the Windows firewall. · To avoid unauthorized configuration data being downloaded to the CP (Note: CP x43-1 Advanced), you will need to make additional security settings in the firewall of the CP (blocking S7 communication or only allowing tunneled communication) or take external security measures. · To have the security settings adopted in the corresponding (offline) system data blocks, after making changes, select the "Station" > "Save and Compile" menu in HW Config or "Network" > "Save and Compile" in NetPro. · For each STEP 7 project, a separate unique security configuration is created when security is activated. For this reason, no STEP 7 multiprojects are supported in connection with security. |
This contribution was helpful to
|
|
| 1/5/2013 7:56 PM | |
|
Posts: 68 Rating:
|
Hi dchartier, I'm using following :
What protection I may implement? Any recommended antivirus or something else? |
| 1/5/2013 8:03 PM | |
Joined: 3/21/2006 Last visit: 3/30/2025 Posts: 10239 Rating:
|
There must take care about compatibility of antivirus software and WinCC Flex or Step7 (from PC point of view). Use that toolhttp://support.automation.siemens.com/WW/view/en/64847781There is mentioned some software which are tested. All the other which are not in list means that are not tested only. Best regards, Hristo Mihalev
|
| 9/3/2014 5:14 PM | |
Joined: 9/3/2014 Last visit: 3/13/2019 Posts: 4766 Rating:
|
New question published by zara-90is split to separate thread with the subject How can i protect my WinCC server from external attacks. Best Regards Min_Moderator |
Follow us on