This practical training is for engineers and technicians that are responsible for the design and maintenance of industrial network communication systems. Exercises are an important part of this training.

Explanation

The role of communications in industrial automation systems has changed in recent decades from a minor role to a key role. This change makes industrial automation dependent on these communications. And this means new requirements, such as; availability, scalability and maintenance. New demands can lead to new and different types of technologies.

A consequence of the increasing role of communications is that some industrial automation systems use unsecured protocols. This increases the risk of a cyber-attack. This increases the need for cybersecurity, which is why the cybersecurity requirement was created.

Engineers and technicians responsible for industrial automation systems need a better understanding of network communications as a result. This helps them design and maintain industrial automation systems.

Content

• Introduction of industrial network technology
• Ethernet technology
• Transmission media, access methods, MAC addressing, Ethernet message format, switching mechanisms
• Network infrastructure devices hub, switch, router and gateway
• Internet Protocol (IP), IP Adressierung, IP Subnetting, Routing, TCP, DNS
• Network protocols ARP, ICMP, BOOTP, DHCP, SNMP, (R)STP, VLAN
• Network diagnostics with Wireshark
• Dangers in industrial networks
• Security Concepts: Protection of end devices and networks; User-dependent network access; Encrypted communication in unprotected networks
• Network Address Translation (NAT): IP-Masquerading; Port Forwarding; 1:1 NAT
• Firewall: packet filter based on Mac addresses, IP addresses and port numbers; Stateful Package Inspection; Protection against denial-of-service attacks; Individual firewall rules for different users
• Operating modes; Stealth; Router
• Remote access via HTTPS
• Recovery procedure; support tools
• Virtual Private Network (VPN)
• Secured communication
• Authentication via pre-shared key (PSK) and X.509v3 certificates
• Practical exercises