Kai Mariappan, plant control specialist, Coca Cola
MariaPPAN制造的重点重点:
•无论其在一条线中的离散块包装设备上是否在离散的封装设备上,只要这些PLC是网络,远程访问即可。所有工作的关键是一个中央网关,在这个申请中来自罗克韦尔;可以在线,瓶线,公用事业,糖浆室,植物报警管理系统,线路信息系统以及电子邮件服务器全部连接到本集线器。
•安全性至关重要。“遥控”一词意味着看不见,当事情远离视线时,你怎么知道他们是安全的?
There are so many ways an attack can occur:
- An attacker can capture or guess necessary credentials.
- Data can be injected into a network.
- An attacker can force his way into a network through coercion.
- Communication can be listened to and hijacked.
•良好的安全措施包括:
-Undertake a threat and risk assessment.
- 消除直接沟通。
- Secure modem access beyond default.
- Establish user-specific authentication servers.
- 使用多因素身份验证
- Use dedicated hardware and software to support the remote access solutions.
• Be sure to understand the differences between industrial networks and IT networks before launching into a remote diagnostics project. And once a project is launched, clearly identify the responsibilities of IT people compared to production and manufacturing people.
•找到一种展示植物经理和其他主要利益相关者的好方法,这是某种演示,以获得他们对远程诊断的业务益处的信念。
•通过远程访问完成的事项:
- You can log into PLC ladder logic programs and troubleshoot from any secure access point.
- You can do online training.
- 您可以执行远程HMI控件。
- 您可以执行进程监视以解决偏差。
Mariappan向他的BlackBerry手机展示了带有图形的图形,显示了伊甸园,Mn,植物的植物地板上的实时条件。在没有互联网上远程访问网络,这是不可能的。他还警告说,当谈到连接时,VNC(虚拟网络计算)不如VPN(虚拟专用网络)安全。他提供了一个类比,让他对安全的观点。
“从你的办公室图片隧道到你家。如果您浏览该隧道,您无法获得Carjacked。但是,如果你在高速公路上开车,你可以劫持。“他的建议:如果您远程连接到网络,请确保它通过隧道而不是高速公路。
For more conference coverage, visitwww.myenum.com/tac2012.
