Operator Display Hardening
There are specific security hardening recommendations to follow when installing Operator Display.
The Operator Display touch screen is used to authenticate users via user name and password.
Notice
|
POTENTIAL COMPROMISE OF SYSTEM AVAILABILITY, INTEGRITY, AND CONFIDENTIALITY
Do not install the device where password entry may be monitored by humans or cameras.
Failure to follow these instructions can result in loss of data or unauthorized system access.
|
Operator Display communicates via BACnet/IP over Ethernet cabling. BACnet relies on the physical security of the Ethernet network. Ethernet cabling must not be physically accessible to possible attackers. The rear of Operator Display contains ports that must not be physically accessible to the public.
Notice
|
POTENTIAL COMPROMISE OF SYSTEM AVAILABILITY, INTEGRITY, AND CONFIDENTIALITY
Install the Ethernet cables inside wall cavities, or in conduit.
Install Operator Display in a way that only authorized people can access the rear of the device, for example, on a locked cabinet or using a secure wall box.
Failure to follow these instructions can result in loss of data or unauthorized system access.
|
System Defense in Depth
All system components that may be used to integrate Operator Display must be secured.
Notice
|
POTENTIAL COMPROMISE OF SYSTEM AVAILABILITY, INTEGRITY, AND CONFIDENTIALITY
Install routers, switches, or hubs that may be needed for interconnection of Operator Display to be accessible by authorized personnel only.
Failure to follow these instructions can result in loss of data or unauthorized system access.
|
Hardware Overview
Operator Display