Secure remote maintenance solution

Baumüller supports the secure remote maintenance of machines and systems with Ubiquity
Fig. 1: Software products in the field of industrial remote maintenance, which has been certified according to IEC 62443-3-3 and meets the requirements of the basic protection catalog of the German Federal Office for Information Security (BSI). The Ubiquity runtime environment is preinstalled in all Windows-based HMIs of Baumüller and can be connected to a domain (PresseBox) (Nürnberg, ) The Internet provides fast networking and is often used for private or business purposes. Humans, machines and sensors also communicate with each other in the industrial sector. The innovations promote a highly efficient, intelligent and flexible production. However, cybercrime is also on the rise. To protect industrial security, the Nuremberg-based automation company Baumüller offers a secure solution for the remote maintenance of machines and systems: Ubiquity.

Certificates and encryptions

Software products in the field of industrial remote maintenance, which has been certified according to IEC 62443-3-3 and meets the requirements of the basic protection catalog of the German Federal Office for Information Security (BSI). Ubiquity consists of three different components that result in secure remote maintenance: 1. The control center, an operating software that manages, monitors and updates remote maintenance systems; 2. The runtime environment that is installed on Baumüller’s control panels and does not require additional hardware; 3. The server and infrastructure through which the exchange of data, certificates and encryptions takes place.

The runtime environment must be connected with the Control Center to ensure secure remote maintenance. In addition, certificates and a two-factor authentication are used. The contact with the server occurs via secure connections that are protected by means of TLS/SSL protocol with corresponding keys. Both the runtime environment as well as the Control Center must be authenticated. The integrated firewall detects outgoing connections from Ubiquity and permits them. By using existing Internet connections, no separate connection needs to be established. Ubiquity identifies existing connections and configures itself automatically.

The use of separate hardware is also superfluous. The runtime environment is already installed in Baumüller operating devices. The customer domain must be acquired once in order to fully utilize the Ubiquity solution. No additional costs are incurred. The number of connections, sessions and amount of traffic are not subject to any further restrictions. Ubiquity implements the highest security standards.

Integrated chat function

An integrated chat function enables direct contact to the customer or supervisor. Thanks to an integrated remote desktop service, it is possible to access the remote system without installing additional RDP or VNC services. A file exchange service provides the option to switch files and transfer them directly to the system (e.g. PLC or converter) connected to the HMI when the corresponding connection is in place. All of the remote accesses performed on the system are registered via an audit-trail function.

Ubiquity live in action

The use of ubiquity is presented at the Baumüller booth on the SPS IPC Drives 2017. A machine located in the academy of Baumüller in Nuremberg can be operated by remote servicing from the trade fair booth. The visitors have the complete access to the machine. In addition, the operation of the machine can be watched live over an implemented IP camera.

With Ubiquity, Baumüller enables secure and simple remote maintenance that does not require separate hardware and offers numerous services.

http://www.baumueller.de/en/products/remote-maintenance

Kontakt

Baumüller Gruppe
Ostendstraße 80-90
D-90482 Nürnberg
Stefanie Lauterbach
Unternehmenskommunikation
Marketing Communications Manager
Susanne Reinhard
Ansprechpartner Presse

Bilder

Social Media