Manualshelf

User Manual

ManualsBrandsSiemens ManualsBuilding automationDesigo CC MP 5.0 BACnet Server, BACnet Protocol Implementation Conformance Statement (PICS), Basic Documentation
51525354555657585960
4
Cyber Security Concepts -
How to Secure the System
Cyber Security Concepts
-
54
Siemens Application Note
Smart Infrastructure
Topic Required Hardening
Connection for clients outside the
customer network (Remote access)
Secured communication configured.
Segmented Network.
Network firewalls configured and continuously
maintained.
DMZ configured.
Remote access Via remote desktop and VPN.
Clients in Internet restricted to "need to know".
Printers connectivity Yes
IT skills of users Low
IT skills of system administrators Medium
IT skills of network administrators High
IT skills of the installer (BT or VAP) Medium
Field devices connectivity Directly, via V-LAN or customer networks: customer
is responsible for securing it. The assumption is
that the customer’s IT secures field device
connectivity.
Connection to other services
(for example: OPC servers and
clients)
Directly, via V-LAN or customer networks: customer
is responsible for securing it. The assumption is
that the customer’s IT secures field device
connectivity.
Client Windows login No auto-logon or professional KIOSK mode.
Desigo CC users Use Windows authentication only.
Desigo CC client options Any client-option