3 IT security
Maschinenfabrik Reinhausen GmbH 2019 235163667/06 EN ETOS
®
IM
Interface Protocol Port Description
CAN 1 - - Attachment of the DIO assembly
CAN 2 - - Communication with other ISM® devices
(e.g. parallel operation)
COM 1 - - Internal system interface
COM 2 - - Serial interface (SCADA)
USB - - Import or export of data
ETH 1 TCP 102 IEC61850
2)
ETH 1 TCP 502 Modbus
2)
ETH 1 TCP 20000 DNP3
2)
ETH 1 UDP 67 DHCP server
ETH 2.x TCP 21 FTP
1)
(only for MR service)
ETH 2.x TCP 80 HTTP for web-based visualization
1)
ETH 2.x TCP 443 HTTPS for web-based visualization
1)
ETH 2.x TCP 990 FTPS (only for MR service)
ETH2.x TCP 8080 HTTP for web-based visualization
1)
ETH2.x TCP 8081 HTTPS for web-based visualization
1)
Table5: Interfaces and open ports of the CPU assembly
1)
Port is closed if you activate the device's SSL encryption.
2)
Default setting; if you have modified the port for the control system proto-
col, only the set port is opened.
Encryption standards
The device supports the following TLS versions:
▪ TLS 1.0
▪ TLS 1.1
▪ TLS 1.2
The device uses the following cipher suites for a TLS-secured connection:
Key exchange Authentication Encryption Key length Operating
mode
Hash func-
tion
TLS ECDHE RSA WITH AES 128 CBC SHA
1)
DHE SHA265
ECDHE ECDSA GCM SHA256
ECDH 256 CBC SHA
1)
RSA
1)
SHA256
GCM SHA384
Table6: Cipher suite
To Next Page
Loading...
