Cyberattacks Countermeasures

This section briefly describes
FactoryTalk® Remote Access™
countermeasures to help protect against some common cyberattacks.

Brute force detection

After a few unsuccessful sign in attempts, Access Server blocks all the incoming public IP addresses for a few minutes.
This measure makes brute force JSON Web Token (JWT) attack attempts ineffective.

Code Signing

FactoryTalk® Remote Access™
application binaries are signed with a private key. This confirms that users can validate the authenticity and integrity of
FactoryTalk® Remote Access™
applications.

Man-in-the-middle

Access Server, Web APIs, and Frontend-Runtime connections all use end-to-end encryption (explained earlier) that make man-in-the-middle attacks not possible.
Provide Feedback
Have questions or feedback about this documentation? Please submit your feedback here.