Data center

Security Standards

Access Servers, Database Servers and the Web API servers are hosted on Microsoft Azure. Azure is certified for ISO/IEC 27001:2013 and other security standards and certifications. Refer to the following pages:

https://www.microsoft.com/en-us/TrustCenter/Compliance/ISO-IEC-27001%20 https://azure.microsoft.com/en-us/explore/trusted-cloud/

FactoryTalk Remote Access Relay Servers are hosted in heterogeneous and geographically spread locations to be statistically nearer to either Frontend or Runtime in order to lower latency. However, Rockwell Automation 10 Security Architecture because of the special FactoryTalk Remote Access network architecture explained earlier, they cannot cause any availability or security issues. Specifically:

Relay Servers are dynamically discovered. Even if a node is not available, clients will automatically switch to the others.

Relay Servers are an intermediate hop of an end-to-end encrypted channel, explained earlier. A man-in-the-middle attack scenario is not possible.

No data is stored on Relay Servers.

Backup

SQL backups are automatically managed by Azure and geographically spread in order to minimize the possibility of data loss.

Security Architecture Whitepaper

Provide Feedback

Have questions or feedback about this documentation? Please submit your feedback here.