Industry Online Support
Technical Forum
1/20/2010 4:34 PM | |
Joined: 9/27/2006 Last visit: 9/23/2024 Posts: 12282 Rating: (2685) |
Hello; Siemens has developped a 'Security Concept' for PCS 7, which covers the following strategies: Targeted protection against each and every current or future threat or method of attack from the inside or outside is not possible. With that said, this security concept deals with general defense strategies designed to protect against the following threats: 1. Denial of service 2. Circumvention of specific security mechanisms (such as "Man in the middle") 3. Intentional maloperation through permitted actions (such as password theft) 4. Maloperation through non-configured user rights 5. Data spying (e.g. of recipes and business secrets or operational plans for plants and their security mechanisms) 6. Manipulation of data (e.g. to downplay the importance of alarms) 7. Deletion of data (e.g. log files to cover up attack activities) The following manual will show you the basic steps proposed by Siemens to implement these strategies: http://support.automation.siemens.com/WW/view/en/26462131 Here are more detailed links to various manuals on the subject: -Documents on "Security concept PCS 7 and WinCC" http://support.automation.siemens.com/WW/view/en/28580051 -PCS 7 Security Concept Recommendations and Notes http://support.automation.siemens.com/WW/view/en/22229786 -PCS 7 V7.0 SP1 PC Configuration and Authorization http://support.automation.siemens.com/WW/view/en/27002558 - Security Concept PCS 7 & WinCC (Detail) Administration of Virus Scanners http://support.automation.siemens.com/WW/view/en/38625951 -SIMATIC Process Control System PCS 7 McAfee VirusScan (V8.5; V8.5i; V8.7) Configuration http://support.automation.siemens.com/WW/view/en/38006821 Hope this helps, Daniel Chartier |
Last edited by: dchartier at: 1/21/2010 1:19 AMLast edited by: dchartier at: 1/20/2010 4:38 PM |
|
This contribution was helpful to2 thankful Users |
Follow us on