User Guide

NK823x system is a safety-related system that must be protected from attacks and

unauthorized access from untrusted networks, for example, the Internet.

The plant operator is responsible for network planning and design, including the

zone boundary protection.

NK823x system is a physically separated network that forms a Protected Zone.

Protection for the Protected Zone. A separate VLAN does not meet the

requirements for zone boundaries protection (ZBP).

For any connection to external networks or other systems the corresponding

protection must be provided at the border of the Protected Zone.

Local connections to the system do not require additional protective measures if

the system accessing the Protected Zone is stand-alone and thus has no

For systems remotely accessing the Protected Zone (see Tunneled Network