This is my archive

Configuring TLS

Configuring TLS Log in to the WBM.  Return to topicHow do I get to the WBM again? Click here for more information…  Establishing a connection to the Web-based Management (WBM): Open a web browser on your computer. In the address field, enter the URL… Read More

Handling the Security Profile 

Handling the Security Profile  Activating the Security Profile Log in to the WBM.  Return to topicHow do I get to the WBM again? Click here for more information…  Establishing a connection to the Web-based Management (WBM): Open a web browser on your computer. In… Read More

Generating self-signed HTTPS certificates in the WBM 

Generating self-signed HTTPS certificates in the WBM  Log in to the WBM.  Return to topicHow do I get to the WBM again? Click here for more information…  Establishing a connection to the Web-based Management (WBM): Open a web browser on your computer. In the address… Read More

Assigning IP addresses 

Assigning IP addresses  Log in to the WBM.  Return to topicHow do I get to the WBM again? Click here for more information…  Establishing a connection to the Web-based Management (WBM): Open a web browser on your computer. In the address field, enter the… Read More

Deriving IP addresses 

Deriving IP addresses  Your specific security context determines the network structure and also the IP addresses. To assign the IP addresses that are suitable for you, you must derive them from your security context. The following is an example security context that you must adapt to your… Read More

Checking the integrity state 

Checking the integrity state  If the Security Profile is activated, an integrity state check is performed after each boot and log-in to the WBM.  The integrity state is displayed in the WBM in the page header line right to the Security Profile state field.  Note: Every event… Read More

Integrity check of downloaded software or firmware files

Integrity check of downloaded software or firmware files IEC 62443 requires mandatory integrity check of software or firmware downloaded via Internet against tampering attacks. After downloading a setup file for any application (Windows/Linux) or a firmware file for a controller from the Internet, prior to its installation… Read More

Generic security concept 

Generic security concept  Defense-in-depth design of automation systems is an important IEC 62443 process measure to achieve reliable security. The result is a generic layered architecture that leads step-by-step to a fully segmented network layer structure that describes the PLCnext Technology security architecture and the security use cases in… Read More

Security measures – an overview

Security measures – an overview To achieve security in an automation system, a holistic approach is necessary. An adequate security concept must be drawn up that covers technologies used, the defined processes, and the people involved. Both technological and organizational measures must be taken into account. Many… Read More

Secure disposal 

Secure disposal  You must safely decommission the controller so that no sensitive, confidential and/or manufacturer-specific data and software remain on the device. Check the national GDPR (General Data Protection Regulations) to comply with and make sure that attackers can’t access confidential security information’s from the deinstalled or disposed… Read More