MatrikonOPC OPC Exchange


Security Gateway and OPC UA

$id = 210; Posted on February 2nd, 2009 by Eric Murphy

Some news on the MatrikonOPC security and OPC UA fronts.  The latest version of the MatrikonOPC Security Gateway now supports the OPC UA specifications.  This means that users can now control who can browse, add, read and/or write on a per-user-per tag basis between classic OPC and OPC UA clients to any OPC DA server from any vendor.  Users get the functionality of secure, certificate based OPC UA security in addition per-item level access and OPC security to the underlying classic OPC server. Plus the Gateway also has built-in support for OPC Tunneller connections which adds an additional layer of security and encryption. 

 

Security in the automation world and OPC connectivity is gaining more notice on many fronts.  Why just today I got a comment on a previous OPC Security blog posting from someone connected to a BlackHat user forum, looking for more information on OPC Security and the OPC Security Gateway.  If people are looking at how secure a system is that probably means someone else is looking to get in…

 

Here are a few links for anyone wanting more details on OPC Security and the Security Gateway:

 

OPC Security Gateway Manual

Hardening OPC Server Permissions

OPC Security 1.0 Specification

Security Gateway Configuration

Creating Secure OPC Architectures

Hardening Guidelines for OPC Hosts

2 Responses to “Security Gateway and OPC UA”

  1. Anonymous Says:

    Eric, a search for “Jennifer Manson” and “I will appreciate” shows a number of similar postings on other sites at about the same time. May be automated rather than a directed solicitation of information.

  2. eric.murphy Says:

    I actually did do a search for that name before approving the comment, as I typically do. But only a couple of links showed up and they were on security related sites. I think I typed in “I would appreciate”, and many of the duplicate comments might have still been unapproved at the time. I realized that the forum the link comes from in relatively new, so it most likely was trolling ”security” related blogs for links. Guess I got pwned :^).

    Just goes to show, even when you think you are being secure, things aren”t always what they seem and things get through. Mulitiple layers of defense is a good thing.

Leave a Reply

Please leave these two fields as-is:

Protected by Invisible Defender. Showed 403 to 988,919 bad guys.

For spam filtering purposes, please copy the number 2187 to the field below: