EasyManuals Logo

Siemens SIMATIC ET 200SP Function Manual

Siemens SIMATIC ET 200SP
362 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #57 background imageLoading...
Page #57 background image
Communications services
3.6 Secure Communication
Communication
56 Function Manual, 11/2019, A5E03735815-AH
The steps for verifying the authenticity of the Web server:
1. Alice must know the public keys of all relevant certificate authorities, which means she
requires the complete certificate chain to verify the Web server certificate (i.e. the end-
entity certificate of the Web server):
Alice will generally have the required root certificate in her certificate memory. When a
Web browser is installed, a range of trusted root certificates is also installed. If she does
not have the root certificate, she has to download it from the certificate authority and
install it in the certificate store of the browser. The certificate authority can also be the
device on which the Web server is located.
You have the following options for obtaining the intermediate certificates:
The server itself sends the required intermediate certificates to Alice along with its
end-entity certificate in the form of a signed message so that Alice can verify the
integrity of the certificate chain.
The certificates often contain the URLs of the certificate issuer. Alice can load the
required intermediate certificates from these URLs.
When you work with certificates in STEP 7 it is always assumed that you have imported
the intermediate certificates and the root certificate into the project and assigned them to
the module.
2. Alice validates the signatures in the certificate chain with the public keys of the
certificates.
3. The symmetric key must be generated and transferred to the Web server.
4. If the Web server is addressed by its domain name, Alice also verifies the identity of the
Web server in accordance with the Internet PKI rules defined in RFC 2818. She is able to
do this because the URL of the Web server, in this case the "Fully Qualified Domain
Name" (FQDN), is saved in the end-entity certificate of the Web server. If the certificate
entry in the "Subject Alternative Name" field corresponds to the entry in the address bar
of the browser, everything is fine.
The process continues with the exchange of data with the symmetric key, as shown in the
figure above.

Table of Contents

Other manuals for Siemens SIMATIC ET 200SP

Preview: Manual
Manual270 pages
Preview: Operating Instructions
Operating Instructions166 pages
Preview: User Manual
User Manual140 pages
Preview: System Manual
System Manual320 pages
Preview: Configuration Manual
Configuration Manual20 pages
Preview: Original Instructions
Original Instructions164 pages
Preview: Equipment Manual
Equipment Manual90 pages
Preview: Product Information
Product Information75 pages
Preview: Original Operating Instructions
Original Operating Instructions7 pages
Preview: Compact Operating Instructions
Compact Operating Instructions176 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Siemens SIMATIC ET 200SP and is the answer not in the manual?

Siemens SIMATIC ET 200SP Specifications

General IconGeneral
System TypeDistributed I/O System
MountingDIN Rail
Communication ProtocolPROFINET, PROFIBUS
IP RatingIP20
CategoryI/O Systems
Supply Voltage24 V DC
ModularityYes
Hot SwappingYes
Storage Temperature-40°C to +70°C
Digital InputsYes
Digital OutputsYes
Analog InputsYes
Analog OutputsYes
Communication InterfacePROFINET, PROFIBUS
Number of ModulesUp to 64
Relative Humidity5 to 95% (non-condensing)
Operating Temperature-25°C to +60°C

Related product manuals