OPC Classic applications are often deployed with minimal security hardening implemented on them, due to the difficulties experienced in establishing and maintaining OPC Classic connectivity in more locked-down environments. Whatever security is employed, it is subject to changing conditions, requiring it to be periodically adjusted.
While OPC applications are often kept safe by relying on the layers of security implemented within the infrastructure they operate in, this should not be relied on as the only line of defence. With cybersecurity threats to industrial control systems growing daily, the time for hardening OPC Classic-based data infrastructure is now.
Matrikon’s new ‘Best Practices for Securing OPC Classic Applications’ whitepaper offers concrete security recommendations to enable IT and OT professionals to better secure OPC Classic-based data infrastructure. These recommendations can be used to help prevent unauthorised users and bad actors from compromising the confidentiality, integrity and availability of OPC Classic systems.
The following serves as a teaser of what’s covered in the full whitepaper:
OPC Classic (OPC) applications are used globally as a key connectivity standard for process control systems. This makes them an attractive target for bad actors attempting unauthorised access, or worse, to these systems. Securing OPC communications provides protection from unauthorised users seeking to access or corrupt data from process control systems, or interfere with the availability of process control systems data or devices.
All OPC applications are built on the Microsoft Component Object Model (COM) infrastructure and are therefore considered COM components. As such, they can only run on a Windows platform. The Distributed Component Object Model (DCOM) extends COM functionality to multi-user and network communication scenarios. All COM objects are constrained by the Windows DCOM security framework.
Besides DCOM security mechanisms, a COM client’s ability to connect to servers is also affected by firewalls, local security policies (LSP), Group Policy Objects (GPO), authentication requirements and application identities. In short, anything that affects security on a Windows platform can potentially affect OPC connectivity and communication.
Integrating fire alarm systems into building management systems Beckhoff Automation
Fieldbus & Industrial Networking
Fire alarm systems work independently of the building automation system. Schrack Seconet has developed a flexible gateway using ultra-compact industrial PCs and TwinCAT from Beckhoff, which can be used to flexibly convert a customer-specific communication protocol to a wide range of transmission standards.
Read more...Fire and gas suppression solutions for mission-critical industries
Fieldbus & Industrial Networking
By representing world-leading brands and focusing on fully integrated, certified systems, HMA South Africa is positioning itself as a trusted partner in fire detection, suppression and explosion-proof safety solutions across the continent.
Read more...The future of manufacturing
Fieldbus & Industrial Networking
Industrial automation is evolving at an unprecedented pace. At the forefront of this transformation is the Siemens SIMATIC ET 200SP HA Distributed I/O system. This is a flexible and scalable distributed I/O system for modern signal transfer from the field to the control level.
Read more...Time-sensitive networking RJ Connect
Editor's Choice Fieldbus & Industrial Networking
In this article, we will explore what is driving the rise of time-sensitive networking, how it is reshaping industrial efficiency, the challenges when deploying this technology, and ways to tackle these challenges.
Read more...Loop Signature 30: Nonlinearity in control loops (Part 1) Michael Brown Control Engineering
Editor's Choice Fieldbus & Industrial Networking
If nonlinearity occurs it means that if one is to carry on controlling with the same response to changes in load or setpoint, then the tuning of the controller will also need to be adjusted to meet the new conditions.
Read more...PC-based control regulates innovative dehumidifiers Beckhoff Automation
Fieldbus & Industrial Networking
Swedish company, Airwatergreen is breaking new ground in the dehumidification of air in industrial buildings and warehouses. The patented CVP technology reduces energy requirements and ensures an indoor climate that prevents corrosion and mould growth. PC-based control from Beckhoff regulates this innovative process.
Read more...Ethernet connectivity for embedded systems
Fieldbus & Industrial Networking
Delivering Ethernet connectivity for embedded systems, XPort ETH Click is a compact add-on board from MIKROE, the embedded solutions company that dramatically cuts development time by providing innovative hardware and software products based on proven standards.
Read more...Compact mini PC Vepac Electronics
Fieldbus & Industrial Networking
AS AAEON’s first Intel Core-powered PICO-SEMI system capable of fanless operation, the PICO-MTU4-SEMI from Vepac Electronics is easily deployed as part of larger equipment setups or integrated as the central unit of smart robotics solutions such as AGVs, AMRs and drones requiring minimal maintenance.
Read more...Future-ready I/O to redefine connectivity Schneider Electric South Africa
Fieldbus & Industrial Networking
Schneider Electric South Africa has launched its state-of-the-art Modicon Edge I/O NTS. This future-ready I/O redefines connectivity, data aggregation and operational efficiency for industrial applications.
While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.
printer friendly version