SIEMENS
8/25
Siemens IK PI · 2015
Industrial Security
Security Integrated
SOFTNET Security Client
8
■
Function
Authentication
Since IP addresses can be falsified (IP spoofing), checking the
IP address (of the client access) is not sufficient for reliable
authentication. In addition to this, Client PCs may have changing
IP addresses. For this reason, the authentication is performed
using tried and tested VPN mechanisms.
Data encryption
Secure encryption is necessary to protect data traffic from
espionage and manipulation. This means that the data traffic
remains incomprehensible to any eavesdropper in the network.
To achieve this, the SOFTNET Security Client establishes con-
nections on IPSec based VPN tunnels to other SCALANCE S,
SCALANCE M, the S7 Security CPs or the PC-CP 1628.
Performance data
System requirements (please note the descriptions under
"Ordering data"):
Windows 7 Professional or Ultimate 32/64-bit
Windows XP Professional (32-bit) + SP3
Configuration
Using the associated configuration tool it is possible to create
and manage security rules even without special security knowl-
edge. In the simplest case, only the SCALANCE S modules or
SOFTNET Security Clients that will communicate with each other
are created and configured. As soon as SOFTNET Security
Client knows the programmable controllers to be accessed,
communication can be established.
■
Ordering data
SOFTNET Security Client V4 HF1
6GK1704-1VW04-0AA0
Software for designing secure
IP-based VPN connections from a
programming device/PC to network
segments which are secured by
SCALANCE S, SCALANCE M,
CP 1243-1, CP 1543-1,
CP 343-1 Advanced,
CP 443-1 Advanced, CP 1628,
CP 1543-1 or CP 1243-1;
single license for 1 installation,
runtime software (German/English),
configuration tool (German/English),
and electronic manual on CD-ROM
(German/English/French/Spanish/
Italian) for Windows 7 Professional,
Ultimate, Windows XP Professional
(32 bit) + SP3
SCALANCE S Industrial Security Modules
For protection of programmable
controllers and automation networks,
and for securing of industrial commu-
nication; configuration tool and elec-
tronic manual on CD-ROM
German, English, French, Italian,
Spanish
SCALANCE S612
6GK5612-0BA10-2AA3
Up to 128 VPN tunnels
simultaneously
SCALANCE S623
6GK5623-0BA10-2AA3
up to 128 VPN tunnels
simultaneously;
additional RJ45 DMZ port
SCALANCE S627-2M
6GK5627-2BA10-2AA3
up to 128 VPN tunnels
simultaneously;
additional RJ45 DMZ port;
two additional slots for one 2-port
media module each
SCALANCE M industrial modems and routers
SCALANCE M874
mobile radio router
Mobile radio router for wireless IP
communication from Industrial
Ethernet-based subnets and pro-
grammable controllers via UMTS or
GSM mobile radio networks;
with integrated firewall and VPN
with IPsec;
2 x RJ45 ports,
1 x antenna connection
•
SCALANCE M874-3
1)
6GK5874-3AA00-2AA2
•
SCALANCE M874-2
1)
6GK5874-2AA00-2AA2
SCALANCE M875 UMTS router
UMTS router for wireless IP
communication from Industrial
Ethernet-based programmable
controllers via UMTS/GSM mobile
radio networks;
EGPRS Multislot Class 12;
with integrated firewall and VPN
with IPsec;
2 x RJ45 ports,
2 x antenna connections
•
SCALANCE M875
1)
6GK5875-0AA10-1AA2
•
SCALANCE M875
1)
for Japan
6GK5875-0AA10-1CA2
© Siemens AG 2014