CIP Security - The Final Layer of Defense

Protection with Security

33% of Exploitations Involve Man in the Middle Attacks

More than a third of exploitations of communications network weaknesses involve Man in the Middle (MitM) attacks, attempting to steal information or change asset configurations. MitM attacks "intercept" communications to alter or steal information. Defense-in-depth strategies, such as products enabled with CIP Security, are the best way to help prevent these kinds of intrusions.

When you build your networks with products and solutions from Rockwell Automation, you are leveraging over 100 years of industrial design experience, based on definitions and metrics like IEC 64223 and other industry leading standards. Rockwell Automation is one of the only manufacturers of ICS equipment with this kind of security built in.

Legacy Systems Updated with CIP Security

The Power of CIP Security Proxy for Legacy Devices

Rockwell Automation continually builds on our portfolio of security enabled products. Yet many industrial organizations still depend on legacy products that can’t be updated easily, due to age or logistical challenges.

To facilitate the protection of these systems, we’ve released a new product called Bulletin 1783 CIP Security™ Proxy. Placed in front of legacy devices, it secures communications like TLS and DTLS on behalf of the devices it’s protecting, for two immense benefits – speeding protection to vulnerable legacy systems, while not requiring any update to the applications running on the older systems.

With the CIP Security Proxy, you now have the power to update the security of your critical systems, regardless of their age.

Secure and Reliable Converged Plant-wide Architectures

Converged Plantwide Ethernet (CPwE) Best Practices

Converged Plantwide Ethernet (CPwE) is a collection of architected, tested and validated designs. The testing and validation follow the Cisco Validated Design (CVD) and Cisco Reference Design (CRD) methodologies. CPwE is relevant to both operational technology (OT) and informational technology (IT) disciplines and consists of documented architectures, best practices, guidance and configuration settings to help industrial organizations and OEMs achieve the design and deployment of a scalable, reliable, secure and future-ready plant-wide or site-wide industrial network infrastructure.

CPwE’s proven designs can also help industrial organizations and OEMs reduce costs, speed deployment and lower risks around new technology implementations. CPwE, which emerged from the strategic alliance between Rockwell Automation and Cisco, leverages the combined experience of three industrial powerhouses – Rockwell Automation, Cisco and Panduit, combining this ecosystem’s strengths in industrial automation, communications and security.