OPC, originally called OLE for process control, is used extensively in control systems to provide interoperability between devices and software from different vendors.
In this article, Gary Friend of Extech Safety Systems provides a summary of the security issues related to OPC, and shows how an OPC enforcer can be used to protect OPC servers and clients.
Gary Friend; "Protecting OPC Servers", EngineerIT Magazine, EE Publishers, January 2012
For the past decade, industrial control systems administrators and engineers wanted to believe that ‘air gaps’ or ‘security by obscurity’ would keep them safe from security threats. Those days are over - recent security incidents such as the Stuxnet worm are a loud wakeup call for the industrial automation industry.
This White Paper explains the security advantages of limiting network interfaces and protocols, and recommends using OPC as a communications standard because of its ease of use and its widespread deployment.
A Tofino-based product, the Triconex® / Tofino™ OPC Firewall, has been recognized as a product and technology that made a significant contribution to the process industries for 2010.
Stuxnet is a computer worm designed to target one or more industrial systems that use Siemens PLCs. However, it is aggressive on all networks and can negatively affect any control system.
Stuxnet spreads rapidly using Local Area Network communications and one of the most effective ways to prevent this type of distribution is to make use of zone-based defenses.
Belden has recently introduced version 1.6.0 of its Hirschmann™ EAGLE20 Tofino industrial network security system, including the new EAGLE20 Tofino OPC Enforcer Loadable Software Module (LSM). Developed by Tofino Security for Hirschmann™, the OPC Enforcer locks down any system using the widely installed OPC Classic protocol, providing superior security over what can be achieved with conventional firewall solutions.
An article written by Eric Byres - Chief Technology Officer at Tofino Security. Eric provides some interesting facts about OPC security, and explains what the uses are, as well as providing examples of how OPC is used in daily operations.
indicates articles that contain news about Tofino Security, the Tofino Industrial Security Solution or that contain quotes from Eric Byres.
Abstract: This White Paper is the first in a series on the security of OPC (OLE for Process Control) and focuses on providing an overview of the widely-used industrial communication standard and how it is actually used in industry. Based on the results of end-user surveys and interviews, it shows that the way OPC is being used may be putting the operations of major industries at risk.
Abstract: In this third White Paper of the OPC Security Series, we outline how a server or workstation running OPC can be secured in a simple and effective manner.
Abstract: This White Paper is the first in a series on the security of OPC (OLE for Process Control) and focuses on providing an overview of the widely-used industrial communication standard and how it is actually used in industry. Based on the results of end-user surveys and interviews, it shows that the way OPC is being used may be putting the operations of major industries at risk.
