OPC Classic applications are often deployed with minimal security hardening implemented on them, due to the difficulties experienced in establishing and maintaining OPC Classic connectivity in more locked-down environments. Whatever security is employed, it is subject to changing conditions, requiring it to be periodically adjusted.
While OPC applications are often kept safe by relying on the layers of security implemented within the infrastructure they operate in, this should not be relied on as the only line of defence. With cybersecurity threats to industrial control systems growing daily, the time for hardening OPC Classic-based data infrastructure is now.
Matrikon’s new ‘Best Practices for Securing OPC Classic Applications’ whitepaper offers concrete security recommendations to enable IT and OT professionals to better secure OPC Classic-based data infrastructure. These recommendations can be used to help prevent unauthorised users and bad actors from compromising the confidentiality, integrity and availability of OPC Classic systems.
The following serves as a teaser of what’s covered in the full whitepaper:
OPC Classic (OPC) applications are used globally as a key connectivity standard for process control systems. This makes them an attractive target for bad actors attempting unauthorised access, or worse, to these systems. Securing OPC communications provides protection from unauthorised users seeking to access or corrupt data from process control systems, or interfere with the availability of process control systems data or devices.
All OPC applications are built on the Microsoft Component Object Model (COM) infrastructure and are therefore considered COM components. As such, they can only run on a Windows platform. The Distributed Component Object Model (DCOM) extends COM functionality to multi-user and network communication scenarios. All COM objects are constrained by the Windows DCOM security framework.
Besides DCOM security mechanisms, a COM client’s ability to connect to servers is also affected by firewalls, local security policies (LSP), Group Policy Objects (GPO), authentication requirements and application identities. In short, anything that affects security on a Windows platform can potentially affect OPC connectivity and communication.
Integrated automation systems in poultry feed production Adroit Technologies
Fieldbus & Industrial Networking
South Africa’s poultry industry is increasingly turning to advanced automation systems to optimise operations. Working in partnership with Adroit Technologies, leading poultry supplier Sovereign implemented the Mitsubishi Adroit Process Suite across a key feed production facility, creating a scalable, integrated system capable of supporting both current operations and future expansion.
Read more...Why secure industrial communication depends on deployment as well
Fieldbus & Industrial Networking
The Industrial Security Harmonisation Group has released a joint industry perspective highlighting a critical truth in industrial cybersecurity: secure communication is not determined by protocols alone, but by how they are deployed and managed in real-world environments.
Read more...A single platform for all automation functions Beckhoff Automation
Fieldbus & Industrial Networking
The introduction of TwinCAT in 1996 marked a decisive evolutionary step for PC-based control. Today, the TwinCAT platform combines all automation functions in a strictly deterministic real-time environment, from PLC and motion control through CNC and measurement technology and beyond, to vision, robotics and pioneering AI tools.
Read more...Loop signature Part 2-4: Feedforward Control: Part 3 Michael Brown Control Engineering
Editor's Choice Fieldbus & Industrial Networking
In the previous articles in this series, the basic theory behind feedforward control was discussed, and it was also shown how to apply feedforward in practice. In this article, it will be shown how well feedforward can work in practice by giving a couple of examples.
Read more...Control Station and Dimension Software partner to connect control performance monitoring with enterprise operations intelligence
Fieldbus & Industrial Networking
Control Station has entered into a strategic technology partnership with Dimension Software, a leading provider of industrial operations management platforms. The collaboration connects Control Station’s PlantESP control loop performance monitoring platform with Dimension Software’s Asset Intellect operations intelligence environment, enabling manufacturers to operationalise control performance insights across their organisations.
Read more...Precise, synchronised control for automated steel mesh handling system
Fieldbus & Industrial Networking
Automation specialist Hambi Maschinenbau has developed a world-first system that automates the cutting, handling and stacking of heavy reinforcing steel mesh – a task that previously required up to six human operators.
Read more...Loop signature Part 2-3: Feedforward Control: Part 2 Michael Brown Control Engineering
Editor's Choice Fieldbus & Industrial Networking
Feedforward control tuning is not nearly as critical as feedback tuning, and fairly simple models are usually fine for the purpose in hand.
Read more...Seamless migration from ET 200M to ET 200SP HA for future-ready automation Moore Process Controls
System Integration & Control Systems Design Project and industry:
Moore Process Controls undertook a modernisation initiative spanning the mining, petrochemical, and oil & gas sectors. This project involved upgrading legacy Siemens ET200M I/O ...
Read more...Upgrading radiological surveillance systems in nuclear facilities Omniflex Remote Monitoring Specialists
Fieldbus & Industrial Networking
Nuclear plant operators face an uncomfortable reality. Many of the control and monitoring systems still in use today were never designed to support the full operational lifespan of the facilities they serve.
While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.
printer friendly version