As I'm getting up to speed on some of the latest versions of TIA Portal, I noticed there is lots of security features. I'm wondering if anyone can share some recommendations, tips, or best practices?
Siemens seems to have lots of different options. I'm particularly interested in:
I am a bit weary of getting overcomplicated here, because I also don't want to run into a situation where a PLC needs to be replaced and there is no one around with the password.
The Access Levels, while comprehensive, seems to be a bit confusing.
Also - Siemens seems to be pushing hard on Certificates to ensure security / authentication. This is not very user friendly and I anticipate this could be problematic from persons not familiar with how this works.
Can anyone share thoughts or pitfalls to avoid, in order to balance security with useability? In my application it will be mobile equipment, not fixed assets at a site.
What I'm really looking to do is secure access for going online with the PLC and making unauthorized changes (I will be implementing "know-how" security on some code too).
Thanks!
Edit: There will also be physical security present to ensure unauthorized persons are not accessing critical components and gaining network access.
Siemens seems to have lots of different options. I'm particularly interested in:
- Protection of PLC configuration data
- Access Levels
- Secure connections (PG/PC to HMI)
I am a bit weary of getting overcomplicated here, because I also don't want to run into a situation where a PLC needs to be replaced and there is no one around with the password.
The Access Levels, while comprehensive, seems to be a bit confusing.
Also - Siemens seems to be pushing hard on Certificates to ensure security / authentication. This is not very user friendly and I anticipate this could be problematic from persons not familiar with how this works.
Can anyone share thoughts or pitfalls to avoid, in order to balance security with useability? In my application it will be mobile equipment, not fixed assets at a site.
What I'm really looking to do is secure access for going online with the PLC and making unauthorized changes (I will be implementing "know-how" security on some code too).
Thanks!
Edit: There will also be physical security present to ensure unauthorized persons are not accessing critical components and gaining network access.