Recommendations on network security
3
NOTICE
Information security
Connect to the device and change the standard password for the user set in the factory "admin"
and "" before you operate the device.
To prevent unauthorized access, note the following security recommendations.
General
• You should make regular checks to make sure that the device meets these recommendations
and/or other security guidelines.
• Evaluate your plant as a whole in terms of security. Use a cell protection concept with suitable
products (https://www.industry.siemens.com/topics/global/en/industrial-security/pages/
default.aspx).
• When the internal and external network are disconnected, an attacker cannot access internal
data from the outside. Therefore operate the device only within a protected network area.
• For communication via non-secure networks use additional devices with VPN functionality to
encrypt and authenticate the communication.
• No product liability will be accepted for operation in a non-secure infrastructure.
• Terminate management connections correctly (WBM. Telnet, SSH etc.).
Physical access
• Restrict physical access to the device to qualied personnel.
– The memory card or the PLUG (C-PLUG, KEY-PLUG) contains sensitive data such as
certicates, keys etc. that can be read out and modied.
– Using the button, you can reset the device to the factory defaults.
• If the device is publicly accessible, disable the functions of the button using the software.
• Lock unused physical ports on the device. Unused ports can be used to gain forbidden access
to the plant.
SCALANCE XM-400
Operating Instructions, 03/2021, C79000-G8976-C306-10 13
To Next Page
Loading...
