Panel Builder System Integrator

December 4, 2019

By Elliott Pennington, Business Development Lead

As plant floors become more connected – from the equipment to the systems – the way manufacturers manage internal and external access to that technology is evolving. Digitization has myriad benefits, but it also comes with inherent risks, and IT/OT convergence doesn’t make it any easier. Every manufacturer should be concerned about the rise in ransomware and cyber attacks that have taken advantage of the vulnerabilities specific to the OT environment.

More commonly, human errors can result in unplanned downtime as well as safety and environmental risks. While remote access enables virtual troubleshooting and monitoring that would otherwise be expensive and time-consuming, it also opens up the potential for mistakes. For example, it’s not difficult for an off-site vendor or on-site manager to accidentally download a program to the wrong PLC, which can result in incorrect functioning, downtime, production losses and additional costs.

Secure Remote Access: What is It?

Secure remote access provides both a secure line of communication and an avenue for remote access to enable the active management of access to the machines, equipment, controllers and systems on your plant floor. Most manufacturers use equipment brought in by original equipment manufacturers (OEM) or system integrators (SI), who can remotely connect in order to troubleshoot and manage that equipment, including HMIs and PLCs. Thanks to secure remote access, they can respond more quickly to issues and provide better uptime and availability for their equipment.

While some manufacturers are on top of their secure remote access policy and management, many are not. And that’s understandable – it’s complicated. After all, you may have a number of OEM and SI partners needing access to parts of your manufacturing lines. And depending on what industry you’re in, your plant may not have to adhere to regulations that require stringent cybersecurity plans. 

Secure remote access is about much more than the technology used to enable it, which in most cases is a VPN, or virtual private network. The VPN provides the infrastructure, serving as a secure virtual tunnel, for managing who is traveling through that tunnel to access your plant floor.

Controlling Virtual Traffic

With secure remote access, you can manage the policy and procedures, control who has access to what, ensure secure communications, and conduct audits and traceability of service.

One way to restrict access is to enact a specific firewall rule configuration that only allows outbound, not inbound, traffic from your site. That inbound traffic is restricted to specific IP addresses with authentication requirements, further limiting that access. By restricting the communications capabilities and managing access, you’re able to monitor, track and log all activity.

Not only does this give manufacturers the power to proactively control the virtual traffic on their plant floors, but it provides enormous value by providing timely issue resolution and reducing unplanned downtime. In manufacturing, time is money – secure remote access can help protect your bottom line by helping you make modifications to the production environment more quickly, run more efficiently, and make better data-driven decisions.

People, Policy and Procedures

In order to make security a part of the workplace culture, manufacturers need to focus on three things: People, policy and procedures.

  • -   People: This includes everyone who is involved in the use and management of secure remote access, including third-party security providers, OEMs and system integrators who have users with access, site staff and managers, and the corporate governance team. These teams are key to making policies and procedures work. And with the right education and training, they will help you create a culture of security in the workplace that will help decrease vulnerabilities and risk.
  • -   Policy: The policy is where you start – this guiding principle defines how secure remote access will be managed. It should outline who needs access, to what, and why. It should address whether there’s one process or multiple, whether access is centralized or spread out, and whether this is active or passive management. Are there other policies that need to be taken into consideration when developing this one, such as the overall security profile? If you already have a policy for physical security, which might include badge access and rules about who is allowed where, how does that extend to or interconnect with the remote community? If you want to revise your current policy, review logging and traceability capabilities as well as audit results. And don’t forget to test your own system to look for holes and improvements.
  • -   Procedures: This is where you explain what steps need to be followed to enact the policy. When documented and put into place, procedures provide great value as playbooks that anyone should be able to understand and follow. Procedures bring it full circle – ensuring that the people involved are properly communicated with, that consistency is maintained through any workforce turnover, and that a culture of security is part of the conversation. 

Security and Network Solutions, Customized for Your Needs

Whether you’re starting from scratch and or looking to improve your current secure remote access policy and procedures, Rockwell Automation Security Services  can help. We can help you proactively control and manage the access of OEMs, SIs and other partners. We can also provide solutions to help you deal with the industrial skills gap – whether that means maximizing the impact of your current staff by leveraging their skills remotely, or outsourcing a remote monitoring and administration capability to our team of engineers.

The bottom line for manufacturers is: if you don’t actively manage the remote access to your plant floor, you are exposing your assets to vulnerability risk. And every day, those risks just get more serious.


Changing Scene

  • Prev
The HARTING Technology Group continues to briskly advance the pace of digital transformation. “The ...
Spartan Controls and AltaML are pleased to announce they have entered into a formal partnership and ...
Omron Automation, a leading provider of industrial automation solutions, congratulates Taylor Fluid ...
On July 15, EPLAN Canada will host an Added Value Webinar focused on routing, wiring and production ...
Eramosa, a North American provider of SCADA, network, cybersecurity, operational technology, and ...

RS Components Launches New Season of the DesignSpark Podcast Tackling Technology With a Comedy Twist

RS Components DesignSpark PodcastRS Components (RS), a global multi-channel provider of industrial and electronic products and solutions, has released a new series of its popular ‘DesignSpark Podcast’ which explores some of the hottest topics in technology through a mix of fun facts, exuberant stand-up, outlandish sketches and foot-tapping songs. The podcast offers educational information on each technology topic, with an entertaining comedy angle.

The new weekly podcast is co-hosted by technology expert Professor Lucy Rogers PhD – former judge on BBC’s Robot Wars and a DesignSpark blogger – alongside award-winning comedians Bec Hill and Harriet Braine.

Read More



JMP Solutions and Control Station Announce Exclusive Collaboration Focused on Optimizing Manufacturing Output and Efficiency

JMP SolutionsJMP Solutions and Control Station are joining forces to provide process and control loop audit services for manufacturing environments in order to identify and optimize problematic and underperforming control loops. The partnership leverages the complementary skillsets of JMP’s expert process engineering and project management competency combined with Control Station’s proprietary process analytics platform which, will work in synergy to identify and correct PID loop related sources of inefficiency and sub-optimal performance.

Read More



Proax Is Now a Distributor of HIWIN

PB-34-Proax-HIWINLogo-400.jpgProax are pleased to announce that they are now a distributor of the HIWIN product line, a leader in motion control and system technology. Their product offer includes linear guideways, ballscrews, actuators, linear motors, torque motors & rotary tables, crossed roller bearings and more. This addition comes in line with the enhanced mechanical team and product offering announced last year by Proax. This newly added line will be available to all Proax's clients throughout Canada since this is going to be implemented on a national level.

Read More

Cybersecurity and Manufacturing – Keeping Critical Information Safe From Attackers

JAE AutomationWe all know that we’re supposed to back up our data and secure our devices against attack. But too often we put it off until it’s too late. We’re busy, and we’ll get to it another day. And then, one day, we turn on our device, look for a file, and realize something is wrong. We’ve been hacked.

The thought of losing our files, pictures, and data is scary. Scale that up to an entire company and the consequences can be severe. Think about the amount of critical and sensitive information the typical manufacturing facility has access to. Sensitive customer records, design and engineering data, intellectual property, and industrial control systems for high risk manufacturing processes – there’s a lot to lose. 

Read More



Phoenix Contact Control Cabinet Classroom Ep. 6: How to Determine Supplementary vs. Branch Circuit Breakers

Phoenix Contact Control CabinetSometimes it can be difficult to distinguish between types of circuit breakers, especially since in appearance they look so similar. In this episode, the focus will be on the differences between two types of circuit breakers: Branch and Supplementary.

In the Control Cabinet Classroom video series, Phoenix Contact Product Specialists Zach and Karen break down some of the basics of control cabinet design, terminology and technology to be able to better understand and utilize this powerful solution.



Read More

Product News

  • Prev
Experts in more and more industries discover the benefits of automation and robotics, and this also ...
High-Airflow Fan Operates Outdoors in a Range of Conditions Without Requiring a Rainhood.   ...
Modem software and data architectures are driving new demand for flexible, scalable, off-the-shelf ...
TRACO Power new set of low power DC-DC converters from the isolated TEA, TBA, TEC series and the ...
The Newest FLIR Spot Thermal Camera Offers Improved Diagnosis for Electrical and Inspection ...
With the “MARKING system” app from Phoenix Contact, you can quickly call up the appropriate marking ...
Reduce the wiring effort in machine building and control cabinet manufacturing with Phoenix ...
Pulse Frequency Modulation (PFM) is a way to digitally represent an analog measurement value from a ...
Manufacturers Automation Inc. introduces the new SDS-3008 Smart Switch, featuring a compact and ...
A new range of pressure transmitters designed to meet key requirements in most manufacturing and ...
Kerrwil Publications Great Place to Work. Certified December 2019 - December 2020

538 Elizabeth Street, Midland,Ontario, Canada L4R2A3 +1 705 527 7666
©2020 All rights reserved

Use of this Site constitutes acceptance of our Privacy Policy (effective 1.1.2016)
The material on this site may not be reproduced, distributed, transmitted, cached or otherwise used, except with the prior written permission of Kerrwil