Application notes
These application notes apply to
FactoryTalk Optix
version 1.2.0.Threat mitigation
- Do not lose the USB Key with exportedFactoryTalk Optix Application. The USB key contains inspectable fields, credentials, certificates, and hashed passwords.
- Protect physical access toRockwell Automationmanufactured devices.
- Do not leave connected devices unattended. Protect physical access to the device and protect logs from device web interface, connected diagnostic session, and file system access via remote assistance tool.
- Prevent unauthorized physical access to the device. Protect physical access to the device and improve security level of application files generated by custom logics.
- Protect physical access to logged-in user sessions. Prevent the theft ofFactoryTalk Hubrefresh token file by locking the session if unattended.
- Protect physical access to logged-in user sessions. Prevent the removal ofFactoryTalk Hubrefresh token file by locking the session if unattended.
- Protect physical access to logged-in user sessions. Prevent attacks while logging in to GitHub.
Feature preview
Features labeled as
(preview)
should not be used in a production environment. Feature preview includes:
- RA EtherNet/IP communication driver in the FactoryTalk Optix Studio web editor and Emulator
- Push Agent library object for sending data to the cloud using MQTT
- Connected IDE mode
- File sign and verify library object
- Model analysis providing information model graphs
Provide Feedback