Device Security Capabilities - Siemens 9810 Series User Manual

Hide thumbs Also See for 9810 Series:

User manual (218 pages)

User manual (300 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

247

248

249

250

251

252

253

254

255

256

257

258

259

260

261

262

263

264

265

266

267

268

269

270

271

272

273

274

275

276

277

278

279

280

281

282

283

Table of Contents

9410 series - User manual

• Zone boundary protection – The control system provides the capability to:

• No public internet connectivity – Access from the control system to the internet is not

recommended. If a remote site connection is needed encrypt protocol transmissions.

• Resource availability and redundancy – Ability to break the connections between different

network segments or use duplicate devices in response to an incident.

• Manage communication loads – The control system provides the capability to manage

communication loads to mitigate the effects of information flooding types of DoS (Denial of

Service) events.

• Control system backup – Available and up-to-date backups for recovery from a control

system failure.

• Encrypt protocol transmissions over all external connections – Use an encrypted

tunnel, TLS wrapper, or a similar solution.

Administrative assumptions

• Cybersecurity governance – Available and up-to-date guidance on the secure use of

information and technology assets in your company.

• Firmware upgrades – Meter upgrades are implemented consistently to the current version of

firmware.

For detailed information on the device security capabilities, see

page

27.

Device security capabilities

Your device includes security capabilities that, when combined with other defense-in-depth

measures, can help reduce vulnerabilities.

Before you install your device, carefully review the following device security capabilities to

understand how you can configure and use the device securely in a protected environment.

7EN05-0336-09

Manage connections through managed interfaces consisting of appropriate boundary

protection devices, such as proxies, gateways, routers, firewalls, and encrypted tunnels.

Use an effective architecture. For example, firewalls protecting application gateways

residing in a DMZ.

Control system boundary protections at any designated alternate processing sites should

provide the same levels of protection as that of the primary site. For example, data

centers.

Cybersecurity

"Device security capabilities" on

Table of Contents

Troubleshooting

This manual is also suitable for:

9410 series

Device Security Capabilities - Siemens 9810 Series User Manual

Device security capabilities

Troubleshooting

Related Manuals for Siemens 9810 Series

Related Content for Siemens 9810 Series

This manual is also suitable for:

Table of Contents