User's Guide
Table Of Contents
- 1 Introduction
- 2 References
- 3 Terms and Definitions
- 4 Support
- 5 Hazardous Location Requirements
- 6 Operating Conditions
- 7 General Safety
- 8 Radio and Electromagnetic Compatibility
- 9 VP Series 2000 Components
- 10 ISA100.11a Provisioning
- 11 Hardware Installation
- 12 Configuration
- 13 Operation
- 14 Maintenance
- 15 Security Hardening Guidelines
EVR-VPXDOC-0036 VP Series 2000 User Guide
Version 1.09
Proprietary & Confidential - Copyright © 2018 Divigraph (Pty) Ltd. All Rights Reserved
Page 36 / 36
15 Security Hardening Guidelines
From an electronic security risk assessment perspective the VP Series 2000 sensors and repeaters
can be categorised the same as CS/DCS/ICSS. For this reason, due diligence should be performed to
ensure all reasonable steps have been taken to properly secure any system using these devices.
Risk Assessment, Network integration and DCS integration are beyond the scope of this document.
This section is presented as a guideline, not a step by step procedure. If assistance is needed, please
contact the applicable supplier.
15.1 System Hardening
The following checks can be done in order to harden a system utilising VP Series 2000 devices:
• Ensure devices have the latest firmware installed.
• Ensure proper management of device docking stations.
• Follow company or industry best practices for strong passwords for the applicable wireless
network infrastructure. Refer to the applicable vendor documentation for wireless network
infrastructure password requirements.
• Install VP Series 2000 software on only task specific computers such as a dedicated laptop
and maintain proper physical security of these computers.
• Avoid installing VP Series 2000 software on unsecured networked computers or computers
that are remotely accessible.
• Patch management is important in maintaining a security posture. Keep firmware and
software current to the latest versions.
15.2 Recommendations for Improved Availability and Reliability
Numerous steps may be taken to maximise cell life and minimise communication interruptions for VP
Series 2000 devices and in so doing improving device availability and reliability.
15.2.1 Cell Life
Considering the following recommendations may achieve improved availability and reliability by
extending cell life:
• Use line powered routing devices.
• Minimise the number of hops between VP Series 2000 devices and line powered routing
devices.
• Minimise the number of devices routing through VP Series 2000 repeaters.
• Avoid using VP Series 2000 sensors as routing devices.
• Use the lowest reasonable parameter publishing rate to monitor vibration and temperature.
15.2.2 Network Redundancy
By using redundant network components, VP Series 2000 device communication interruption may be
minimised to improve availability and reliability. Consider using line powered ISA 100.11a routing
devices to provide primary communication routing and using VP Series 2000 repeaters to provide a
secondary communication route.