Magazine | HMIs

5 Ways to Make Your HMI Secure

Limit access to networks and intellectual property by using modern HMI software with security features for user authentication, mobile use and more.

Online cybersecurity from virus attack over encrypted data networks — 3D concept illustration.

By Michael Szentkiralyi, Product Manager, Rockwell Automation

Today’s human-machine interfaces (HMIs) provide access to not only production systems, but also to an increasing amount of sensitive production information. This is why it’s so critical for HMIs to be secured.

For example, by accessing an HMI either remotely or in person, bad actors who access an HMI either remotely or in person could make changes to a production system that could compromise product quality or even create unsafe conditions for workers. They could also access HMI displays, recipes and trending information that contain intellectual property.

Of course, security threats aren’t always malicious. Well-intentioned workers also can make changes to production systems that can lead to wasted product and downtime.

To reduce the risk of these incidents, modern HMI software is designed to help protect people, processes and intellectual property in several ways.

5 Key HMI Security Features

Modern HMI software offers a range of features that can help strengthen security, including the following:

1. Access Control. User authentication and authorization services in HMI software can help make sure only the right people can perform the correct actions at the right terminals. Users can even require that specific production assets can be accessed only from specific terminals, based on factors such as an operator’s line of sight to machinery.

2. Mobile Security. Mobile HMIs — laptop PCs, tablets or smart phones — are increasingly being used to free workers from fixed terminals. And mobile HMI software can deliver the same level of role-based access control to mobile devices as it delivers to stationary terminals. It allows users to restrict specific displays and interactions for certain users, such as restricting remote workers to view-only HMI access.

3. Electronic Signatures and Change Confirmation. Built-in change confirmation with electronic signatures can provide confidence that only authorized individuals have access to perform certain operations or make changes.

You can even require a second electronic signature from an employee in a designated “approver” user group. And if something goes wrong in production, you can review those electronic signatures and what changes were made to help identify the incident's cause.

In regulated industries, electronic signatures can also help comply with standards such as Food & Drug Administration (FDA) 21 Code of Federal Regulations (CFR) Part 11.

4. Centralized Management. Modern HMI software that integrates with existing IT systems, such as Windows Active Directory, can help manufacturers more easily and securely manage users and groups in their organizations.

For example, workers can use the same user credentials that they use to check their email to log into the HMI software. This can help reduce security risks such as shared log-in credentials that might be carelessly displayed on a note taped to a computer for anyone to see. Also, if an employee leaves, their log-in credentials only need to be deleted in one place.

5. Backup and Recovery. When users integrate modern HMI software with asset-management software, they can automatically back up HMI configurations. This allows you to retrieve the latest version configurations so you can quickly recover in the event of a security incident.

Along with assisting with recovery, integration with asset-management software also lets users create an audit trail of operator actions. So, if an alarm goes off or a downtime incident occurs, they can review what the operators were doing to understand what happened. And with proper trending and troubleshooting tools, they can even review operator actions and alarm conditions overlaid with process data for a complete look at the situation.

Security Top of Mind

So, when choosing HMI software, confirm that a vendor makes security a priority — not only in a product’s features, but also holistically across the product’s life cycle.

For example, do they implement security in every new feature or function they develop? Do they perform in-house testing to look for vulnerabilities in their software and work with outside security experts to do third-party testing? And if a potential vulnerability is found in their products, are they transparent with customers about it?

Download this Rockwell Automation white paper about high-performance HMIs to learn more.

Like this article? Sign up for the digital magazine) of The Journal From Rockwell Automation and Our PartnerNetwork and get articles like this delivered right to your inbox.

^{The Journal From Rockwell Automation and Our PartnerNetwork™ is published by Endeavor Business Media.}

IWine bottles being filled by a bottling machine in a wine factory in Sicily, Italy.

White Paper

Improve Processes, Gain Greater Control with High-Performance HMI

In this insightful white paper from Rockwell Automation, learn how upgrading to high-performance human-machine interfaces (HMIs) help operators better see what's happening, manage operations and increase response time to alarms and other abnormal situations.

Also find out how to design a useful HMI; get tips for operator training & buy-in; learn how to get started on an upgrade project; and more.

Download Now