dl-breadcrumbs__homedl-breadcrumb-item__separatorConfiguration and programmingdl-breadcrumb-item__separatorProgramming with CODESYSdl-breadcrumb-item__separator...dl-breadcrumb-item__separatorAutomation Builderdl-breadcrumb-item__separatorDownloading an Application to the PLC dl-breadcrumb-item__separatorEncrypting Communication, Changing Security Settings
dl-pagination__prev-inactivedl-pagination__prev-activedl-pagination__next-inactivedl-pagination__next-active
Encrypting Communication, Changing Security Settings
NOTICE

NOTICE
NOTICE
NOTICE

NOTICE

NOTICE

Recommendations for data protection

In order to minimize the risk of data security violations, we recommend the following organizational and technical actions for the system where your applications are running. Whenever possible, avoid exposing the PLC and control networks to open networks and the Internet. Use additional data link layers for protection, such as a VPN for remote access. Install firewall mechanisms. Restrict access to authorized people. Use high-strength passwords. At commissioning, change any existing default passwords and change them on a regular basis.

Use the security features supported by CODESYS and the respective controller, such as encryption of communication with the controller and intentionally restricted user access.

Communication with the device can be protected by means of encryption and user management on the device. You can change the current security preset on the “Communication Settings” tab of the device editor.

  • Establishing a connection to the controller, logging in, installing a trusted certificate for encrypted communication
  • Configuring a controller certificate with a more long-term validity period for encrypted communication by means of CODESYS Security Agent (recommended)
  • Installing a controller certificate for encrypted communication via the PLC shell of the device editor
  • Changing the communication policy (encryption, user management)
  • Enabling and disabling enforced encrypted communication