Manualshelf

User Instructions

ManualsBrandsSOCOMEC ManualsElectronicsDIRIS Digiware
12345678910
9EN
DIRIS Digiware M-50 & M-70 - 548751C - SOCOMEC
Data security: Data security covers several aspects, in particular the condentiality, integrity, authenticity and
availability of data. Special care is required with data security and archiving procedures on backup devices
both inside and outside the company.
How DIRIS Digiware M-50/M-70 gateways can help:
It is possible to export data such as energy indexes, load curves and historical measurement (Trends), both manually
or automatically for back-up.
It is also possible to save the topology (mapping of slaves connected to the M-50/M-70 gateway) from the embedded
webserver and conguration le from Easy Cong software.
Condentiality is addressed by providing 256-bit AES encryption (AES 256) for personal data such as passwords
along with product. This means it would take 2256 combinations to break the encryption key.
Access and authentication management: Managing access to resources and data is a crucial element
of the IT system’s security policy. Each user requires an account and access rights corresponding to their
prole. Access to the IT system’s resources is controlled by a user authentication process, based on a
minimum of a high-security username and password. The password management procedure, specifying the
systematic modication of default passwords and their validity period, is included in the IT security policy.
How DIRIS Digiware M-50/M-70 gateways can help:
Multiple proles are available to access the web application. The highest prole is “Cybersecurity”, which allows you
to manage users’ access to the web application based on what is relevant for them.
Proles are password protected. Certain measures are taken into account in Socomec M-50/M-70 gateways to
reduce the risk of password theft:
- Encryption of credentials
- Password must meet minimum security requirements (minimum 10 characters, including at least one upper
case, one lower case, one number and a special character).
- Password must be changed at least once a year.
- After 3 failed log-in attempts, account is locked for 1 hour.
- Passphrase for password recovery in case password is lost.
> Refer to paragraph 10.1 for more information regarding the different proles and their password protection.