Introduction
Role-based access control (RBAC) is a method for reducing the risk of cyber security attacks by assigning different levels of access that are based on the access privileges associated with a user's defined role.
The BMENOR2200H module uses RBAC to provide defined levels of access for users. RBAC is predefined according to IEC 62351-2, but it is also configurable according to user requirements.
These threats are defined by IEC 62351-2:
spoofing
modification
replay
eavesdropping (on the exchange of cryptographic keys)
Limitations
The maximum number of active web server user connections is five.
Available Functionalities
DNP3 Protocol |
Firmware |
HTTPS |
||||||
|---|---|---|---|---|---|---|---|---|
| Value |
Name |
Monitor Data | Operator Control | Upgrade | Cybersecurity Settings | Diagnostic | Data Logging Download | Data Logging: Delete |
1 |
OPERATOR |
✔ |
✔ |
✔ |
✔ |
|||
2 |
ENGINEER |
✔ |
✔ |
✔ |
✔ |
|||
3 |
INSTALLER |
✔ |
✔ |
✔ |
✔ |
|||
4 |
SECADM |
✔ |
✔ |
✔ |
||||
32768 |
SINGLEUSER (COMMON) |
✔ |
✔ |
|||||
NOTE: The SINGLEUSER functionality is dedicated
to DNP3 security authentication functions,
not web access.
|
||||||||