GE IPC2018 Deployment Manual
  1. Manuals
  2. Brands
  3. GE Manuals
  4. Industrial PC
  5. IPC2018
  6. Deployment manual
GE IPC2018 Deployment Manual

GE IPC2018 Deployment Manual

Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
GFK-3015
IPC2018
Industrial PC (IPC)
Secure Deployment Guide
June 2017
For public disclosure

Advertisement

Table of Contents
loading

Related Manuals for GE IPC2018

Summary of Contents for GE IPC2018

  • Page 1 GFK-3015 IPC2018 Industrial PC (IPC) Secure Deployment Guide June 2017 For public disclosure...
  • Page 2 It is understood that GE may make changes, modifications, or improvements to the equipment referenced herein or to the document itself at any time. This document is intended for trained personnel familiar with the GE products referenced herein.
  • Page 3 Safety Symbol Legend Indicates a procedure or condition that, if not strictly observed, could result in personal injury or death. Warning Indicates a procedure or condition that, if not strictly observed, could result in damage to or destruction of equipment. Caution Indicates a procedure or condition that should be strictly followed to improve these applications.
  • Page 4 Online technical support and GlobalCare www.ge-ip.com/support Additional information www.geautomation.com Solution Provider solutionprovider.ip@ge.com Technical Support Contact us by telephone, email, or at www.ge-ip.com/support. Americas Phone 1-800-433-2682 1-780-420-2010 (if toll free 800 option is unavailable) International Americas Direct Dial Technical Support Email support.ip@ge.com...

  • Page 5: Table Of Contents

    2.2 I have a Firewall: Isn’t that Enough? ......................9 2.3 What is Defense in Depth? ........................9 2.4 General Recommendations ........................9 2.5 Checklist.............................. 10 3 IPC2018 IPC Functional Overview....................11 3.1 IPC2018 with iFix ..........................11 3.2 IPC2018 with CIMPLICITY........................11 3.3 Platform Configuration and Hardening....................... 11 4 Network Architecture and Secure Deployment ..............
  • Page 6 Notes GFK-3015 IPC2018 IPC Secure Deployment Guide For public disclosure...

  • Page 7: Introduction

    Introduction This document provides information that can be used to help improve the cyber security of systems that include IPC2018 Industrial PC (IPC) products. It is intended for use by control engineers, integrators, IT professionals, and developers responsible for deploying and configuring IPC products. Secure deployment information is provided in this manual for the following IPC2018 IPC products.
  • Page 8 Notes GFK-3015 IPC2018 IPC Secure Deployment Guide For public disclosure...

  • Page 9: Security And Secure Deployment

    • Availability: Ensure the system or data is available for use. GE recognizes the importance of building and deploying products with these concepts in mind and encourages customers to take appropriate care in securing their GE products and solutions. 2.2 I have a Firewall: Isn’t that Enough? Firewalls and other network security products, including Data Diodes and Intrusion Prevention Devices, can be an important component of any security strategy.

  • Page 10: Checklist

    2.5 Checklist This section provides a sample checklist to help guide the process of securely deploying IPC2018 IPC products. Create or locate a network diagram. Identify and record the required communication paths between nodes. Identify and record the protocols required along each path, including the role of each node.

  • Page 11: Ipc2018 Ipc Functional Overview

    Currently, a CIMPLICITY bundle for RXi2-EP IPC is not available and there is no plan to offer a CIMPLICITY bundle for this product. 3.3 Platform Configuration and Hardening GE recommends configuring operating systems, databases, and other platforms in accordance with vendor recommendations or industry standards. The following organizations publish best practices, checklists, benchmarks, and other resources for securing systems:...
  • Page 12 Notes GFK-3015 IPC2018 IPC Secure Deployment Guide For public disclosure...

  • Page 13: Network Architecture And Secure Deployment

    This chapter provides security recommendations for deploying remote access using iFIX WebSpace. 4.1 Reference Architecture The following figure provides a reference deployment of IPC2018 IPC components. The control system network is segregated from other untrusted networks such as the enterprise network (also referred to as the business network, corporate network, or intranet) and the internet.
  • Page 14 Notes GFK-3015 IPC2018 IPC Secure Deployment Guide For public disclosure...

  • Page 15: Other Considerations

    In the event there is a Proficy product defect discovered while running DEP, GE will make all reasonable efforts to provide a solution.

  • Page 16: Additional Guidance

    Control Systems. Such documentation, when appropriate, should be considered in addition to this document. Similarly, the International Society of Automation publishes the ISA-99 specifications to provide guidance on establishing and operating a cyber-security program, including recommended technologies for industrial automation and control systems. GFK-3015 IPC2018 IPC Secure Deployment Guide For public disclosure...
  • Page 18 Automation & Controls 1-800-433-2682 1-434-978-5100 www.geautomation.com GFK-3015 For public disclosure...

Table of Contents