Security

The Security chapter provides information on how to reduce the risk of unauthorized access.

Fundamental safety instructions

As a rule, it is important to prevent unauthorized persons from accessing the system. Various security measures are available for this purpose.

Secure access to the system by means of certificates (e.g. ssh or OPC UA). Note that this only secures this type of access. If you want to prevent unauthorized access to the website, close TCP port 443 (https) in the system firewall. Please refer to the documentation for your operating system.
Protect the system physically by keeping control cabinets locked and allowing access only to administrators and technicians. This reduces attacks on the system via data carriers.
Train employees in the general handling of passwords and data carriers.

For more information, refer to the IPC security documentation.

Secure passwords

Strong passwords are an important prerequisite for a secure system.

Please note the following points when assigning new passwords:

Passwords should be unique for each user and service.
Only change passwords after an incident in which passwords have become known without authorization.
Train the device users in the use of passwords.

A secure password has the following characteristics:

Password complexity: the password should contain capital and lower-case letters, numbers, punctuation marks and special characters.
Password length: the password should be at least 10 characters long.

You can generate the password in different ways. An example is shown in the following table:

Password generation
Procedure	Example
Start with one or two sentences.	Complex passwords are more secure
Remove the spaces.	Complexpasswordsaremoresecure
Abbreviate words or add spelling mistakes.	Complxpasswordsarmorescure
Insert numbers and special characters to extend the password.	KomlxPasswörtersinsicerer#529954#

The following passwords are not secure: