The Anybus CompactCom IIoT Secure is a ready-to-use security solution for embedded systems that enables network-safe, encrypted communication via OPC UA Secure channels and Secure MQTT communication. It also features secure access to the integrated web server and secure file transfer.
CompactCom combines secure IIoT with Profinet or EtherNet/IP.
To secure network communications via TLS, the device is equipped with a security chip that ensures secure storage of keys and has a hardware-accelerated cryptographic engine.
The built-in Web server contains Web pages for security configuration, such as certificate installation and user account management.
Secure Building Blocks
CompactCom IIoT Secure has four key building blocks to fully secure communications.
Secure boot
During startup, the module checks various software components before it is started. In this way, CompactCom IIoT Secure protects against any attempt to use malware.
Certificate Management
Certificates ensure proper device authentication and authorization with remote servers so that CompactCom IIoT Secure will only communicate with trusted parties.
Encryption
The IoT communication is encrypted. This secure data exchange protects CompactCom IIoT from interception or interference of data by third parties.
Security chip
Protected data is stored on a special security chip to prevent hackers from stealing or altering these keys and certificates.
Connect to IoT software with OPC UA or MQTT
The Anybus CompactCom IIoT Secure enables your industrial devices to communicate via OPC UA and MQTT. This means that industrial Ethernet protocol data (e.g. PROFINET or EtherNet/IP) is processed by the CompactCom as usual — and data from the device can also be sent to an IT system via OPC UA or MQTT.
Robustness and safety
Anybus CompactCom IIoT Secure is a next step in security, but security is an ongoing process throughout the CompactCom-40 series. HMS continuously tests the products to withstand attacks from packet storms, known vulnerabilities and malformed packets.
Some of the methods and tools we use in various development projects are Achilles, Netload and Nessus.
To prevent unauthorized or malicious code from being downloaded, the CompactCom 40 series only accepts firmware that has been digitally signed by HMS. The supplied FPGA design is encrypted. Using our own technology, we have full control over the design, allowing us to optimize performance and easily fix potential vulnerabilities.
Unused protocols and functionality can be disabled by the host application if necessary.
➔ Discover Anybus CompactCom IIoT Secure
HMS Networks Benelux
Architronlaan 1a
5321 JJ Hedel
+31 487 203 000
www.hms-networks.com
Nederlands