INSYS updates security on industrial routers
July 9, 2013 - INSYS extended the functional range of its industrial routers with security features included in firmware update 2.11. The firmware follows the current recommendations of the German Federal Office for Information Security (Bundesamt für Sicherheit in der Informationstechnik, BSI) and the white paper of the German Association of Energy and Water Industries (Bundesverband der Energie- und Wasserwirtschaft, BDEW).
Routers which not only allow for remote access but also establish connections for data transfer pose a potential threat to application and network security. These devices are often installed in remote locations, such as photovoltaic systems which cannot be sufficiently protected against physical access. Of all bad scenarios, theft of the router is the least to worry about. A much greater danger is the possibility of professionals gaining access to company IT networks, disrupting these and stealing or even manipulating data.
Even before the update, INSYS icom’s routers were equipped with a wide range of security features, including VPN functionality (encryption, mutual authentication) and a firewall (white list). If a router is reset to factory settings, previous configurations and log files can no longer be accessed or changed. After a certificate is integrated, it can never be read out again. Moreover, users can define access options to the configuration interface: local configuration can be disabled completely.
With the firmware version 2.11, INSYS icom adds many new security functions established in the IT world to its routers. Key features are the prevention of unauthorised access to the device and the sending of user-specific messages via email, SMS, or SNMP in case of security-critical events. These events include unsuccessful dial-in attempts, plugging in or unplugging cables at the switch, unsolicited traffic, or changes to the configuration. Additionally, INSYS icom routers feature a MAC firewall that blocks data packets from unknown devices.
HMS introduces IXXAT Econ 100 embedded PC
Econ 100 combines the machine control expertise from IXXAT with the fieldbus and industrial Ethernet capabilities including CANopen, EtherCAT,...
Festo announces DDLI Pneumatic Actuator for Servo Positioning
DDLI servo-pneumatic actuator delivers precise dynamic movement of large loads, up to 180kg horizontally and 60 kg vertically.
Festo releases SDAT-MHS Position Transmitter for Linear Actuators
SDAT-MHS programmable position transmitter accommodates small to large actuators and uses I/O-Link, switching, and analog current outputs.
Axiomtek Introduces IPC934-230-FL Embedded System
IPC934-230-FL is equipped with the 4th generation Intel Core i7/i5/i3 or Celeron processor in 22nm process and Intel Q87 Express chipset.
Highly Secure: Network and Access Real-Time Plant Data
Secure real-time networking and access of your plant data. No open firewall ports, no programming required. Full bidirectional communications and...
Lean automation offers higher product quality; less wiring, programming time
By Shane Novacek
The Quantum Group, maker of yarns and woven fabrics, installed monofilament extrusion machine controls and...
ODVA Forms Special Interest Group for EtherNet/IP
The SIG will proliferate adoption of EtherNet/IP in the process industries, and integrate field devices with industrial control systems and related...
ODVA releases updated EtherNet/IP spec for Power Management
The latest EtherNet/IP Specification provides the framework for users to design energy-conserving functionality into their products for when...