Kochetkov Vitaly Viktorovich (lead electronics engineer, JSC "Inter RAO-power generation "branch" Verkhnetagilskaya GRES")
|
this article deals with the problems of secure data transmission from software and hardware systems (PTC) within technological networks, as well as the use of OPC DA protocols present in most complexes for data transmission. The OPC DA/ HDA family of protocols, are vulnerable because they are based on DCOM (a Component Object Model extension used to communicate objects on different computers on the network), require 135, 139, 445, and 593 ports open to public access. These ports are operated by various kinds of network worms, there are a large number of exploits (exploits) available on the Internet. The solution in this situation is to develop a client that is installed directly on the server (local access to DCOM) and sends data through the open port in the firewall via HTTP. The use of” white lists " of IP addresses, different types of data encryption provide additional protection of the client-server connection and the transmitted data.
Keywords:HTTP, XML, OPC DA, OPC tag, multithreading, DCOM, encryption, Blowfish
|
|
|
Read the full article …
|
Citation link: Kochetkov V. V. The development of OPC WEB server for secure data transfer between hardware and software complexes // Современная наука: актуальные проблемы теории и практики. Серия: Естественные и Технические Науки. -2019. -№3. -С. 80-85 |
|
|