Inhoudsopgave
Advertenties
9.3
Deployment guideline
All devices need to work in security mode by default and. all devices on one system are to be
signed by a public CA at commissioning stage; normally the management software acts as CA.
It is suggested that compatible mode is only used when the device needs to communicate with
previous generation products. In this mode, data transmission between devices is not encrypted,
may lead to data leaks and involves a risk of attacks.
When user decide to remove the device from system, user shall reset the device to factory
setting in order to remove all the configuration data and sensitive data in the device. This will
prevent sensitive data leak.
It is recommended to apply "MAC filter" and "Rate limiter" in the switch to prevent DOS attack.
9.4
Upgrading
The device supports firmware updates via the management software, where a signature file is
used to verify the authentication and integrity of the firmware.
9.5
Backup/restore
None
9.6
Malware prevention solution
The device H8304 is not susceptible to malware, because custom code cannot be executed on
the system. The only way to update the software is by firmware upgrading. Only firmware
signed by ABB can be accepted.
9.7
Password rule
None
Producthandboek 2TMD041900D0033
Cyberveiligheid
│22
Advertenties
Inhoudsopgave
