Safety instructions
2.2 Security recommendations
Mobile reader SIMATIC RF660M
Operating Instructions, 02/2022, C79000-G8976-C660-01
9
Software (security functions)
• Keep the software up to date. Keep yourself informed regularly about safety updates for
the product.
You can find information about this at Link: (https://www.siemens.com/industrialsecurity).
• Make sure that the apps installed and operated on the device are from trusted sources.
• Activate only protocols that you actually need to use the device.
• The XML protocols are sent unencrypted. Take suitable measures to ensure that the XML
communication is tap-proof.
Passwords
• The transponders usually have "Lock" and "Kill" passwords. Set these passwords to ensure
that an attacker who obtains physical access to the transponders cannot set them or
change the transponder contents.
Keys and certificates
This section deals with the security keys and certificates that you need to set up SSL.
• We urgently recommend creating your own SSL certificates and making them available.
Preset certificates and keys are present in the device.
The preset and automatically created SSL certificates are self-signed. We recommend
using certificates signed either by a reliable external certification authority or an internal
certification authority.
The device has an interface via which you can import certificates and keys.
• We recommend that you use certificates with a cryptographic key length of at least 4096
bits.
• If protocols support both certificates and keys, you should favor certificates.
• The following certificate formats are supported for the import:
Firmware encryption
The firmware itself is signed and encrypted. This ensures that only authentic firmware can be
downloaded to the device.
To Next Page
Loading...
