Security recommendations
SIMATIC RF166C
Operating Instructions, 12/2019, C79000-G8976-C578-01
11
●
The following algorithms are supported for encryption:
Protocol
Supported
signature algorithms
Supported key
and size
Web browser
SHA1
SHA256 with RSA
SHA384 with RSA
SHA512 with RSA
RSA 2048 bit
RSA 4096 bit
OPC UA
SHA256 with RSA
SHA384 with RSA
SHA512 with RSA
RSA 2048 bit
RSA 4096 bit
●
The following cipher suites are supported for HTTPS:
OpenSSL name
Value
Browser
ECDHE-RSA-AES128-GCM-SHA256
0x2F
Chrome, Firefox
ECDHE-RSA-AES256-GCM-SHA384
0x30
Chrome, Firefox
ECDHE-RSA-AES128-CBC-SHA256
0x27
Internet Explorer 11
ECDHE-RSA-AES256-CBC-SHA384
0x28
Internet Explorer 11
Firmware encryption
The firmware itself is signed and encrypted. This ensures that only authentic firmware can be
downloaded to the device.
Secure/non-secure protocols
●
Check whether it is necessary to use SNMPv1. SNMPv1 is classified as non-secure.
Make use of the possibility to prevent write access. The product offers corresponding
settings for this.
●
If SNMP is activated, change the community names. If unrestricted access is not
necessary, limit access via SNMP.
●
Use secure protocols if access to the device is not protected by means of physical
safeguards.
The following protocols provide secure alternatives:
HTTP
→
HTTPS
●
To prevent unauthorized access to the device or network, set up appropriate safeguards
against non-secure protocols.
●
Enable only the services (protocols) that will actually be used on the device. The same
applies to the installed interfaces/ports. Unused ports could be used to access the
network downstream from the device.
Содержание SIMATIC RF166C
Страница 6: ...Table of contents SIMATIC RF166C 6 Operating Instructions 12 2019 C79000 G8976 C578 01 ...
Страница 14: ...Security recommendations SIMATIC RF166C 14 Operating Instructions 12 2019 C79000 G8976 C578 01 ...
Страница 20: ...Description 3 3 Design SIMATIC RF166C 20 Operating Instructions 12 2019 C79000 G8976 C578 01 ...
Страница 98: ...Programming via SIMATIC controller SIMATIC RF166C 98 Operating Instructions 12 2019 C79000 G8976 C578 01 ...
Страница 156: ...Service and maintenance 10 5 Module replacement SIMATIC RF166C 156 Operating Instructions 12 2019 C79000 G8976 C578 01 ...
Страница 160: ...Dimensional drawings SIMATIC RF166C 160 Operating Instructions 12 2019 C79000 G8976 C578 01 ...
Страница 176: ...Service Support SIMATIC RF166C 176 Operating Instructions 12 2019 C79000 G8976 C578 01 ...