Modbus-TCP security

John · May 25, 2002

I was wondering if anyone can give me any information on security with Modbus-TCP. Is there any? It doesn't seem to be mentioned in any of the documents I have read.

If one were to use a wireless ethernet solution, how would you eliminate the possibility of someone from intercepting your network traffic?

Thanks,

Curt Wuollet · May 25, 2002

That would be the function of the transport. Look at PVN, frequency diverse and transparent encryption solutions. With the exception of
frequency diversity, which does make it difficult to intercept, the solutions center around making it difficult to interpret. Frequency diversity can be quite good if the sequences are changed often and unpredictably.

Regards

cww

Kenneth Schunk · May 25, 2002

The Modbus part of Modbus/TCP doesn't have any security - that's up to the implementation of the TCP/IP system.

For a wireless 802.11B system, you could use the WEP security. As I'm sure others will point out, there are a couple of different levels of this, with different key lengths. If you're concerned you'd probably want the 128 bit key length.

Other wireless systems, like spread spectrum and Bluetooth, I'll leave up to somebody else to answer.

Kenneth Schunk
Graybar Electric Company

> I was wondering if anyone can give me any information on security with Modbus-TCP. Is there any? It doesn't seem to be mentioned in any of the documents I have read.
>
> If one were to use a wireless ethernet solution, how would you eliminate the possibility of someone from intercepting your network traffic?
>
> Thanks,

Nadav · Jun 7, 2002

i am coding a modbus 'gsteway' from TCP/IP <-> serial with builtin security... need more info?

Neville Child · Jun 7, 2002

There are no security features generic within the Modbus TCP protocol. Some manufacturers such as Eurotherm have implemented username/password security. The Modbus TCP master device must first send an encrypted username/password to the 5000 series recorder/logger to confirm the connection prior to any Modbus TCP requests being accepted by the device.

Security/encryption can (should) be implemented in the TCP layer by the appropriate use of the security features (most people don't use it! within routers/wireless access points etc.

Neville Child
Eurotherm Ltd.
[email protected]

Dr.John · Sep 16, 2004

There are also some industrial security products out there which monitor for security violations and can isolate your control network. The Industrial Defender product from Verano has Modbus security rules I believe.

Dr.John

Thread starter	Similar threads	Forum	Replies	Date
S	MOXA Controller ioLogik2500 data transfer via MODBUS TCP/IP	General Automation Chat	3	Mar 6, 2024
J	Modbus TCP Security compatibility	Modbus	3	Dec 24, 2023
K	Modbus TCP security comformance test tool	Modbus	0	Feb 27, 2020
K	Looking for SYSTEM-PKI Companion Document Described in "MODBUS/TCP Security" Specification	Cyber Security	0	Jun 2, 2019
T	modbus TCP security	Cyber Security	12	Oct 29, 2012

Modbus-TCP security

Join our Engineering Community! Sign-in with:

Modbus-TCP security

John

Curt Wuollet

Kenneth Schunk

Nadav

Neville Child

Dr.John

You May Also Like

Turck Releases Next-generation Flow Sensors With Alphanumeric Display

Setting IP Address and Networking Parameters on a PowerFlex VFD

Two Newcomers in the World of Motion Control From Dunkermotoren and Baumer

Pilz Enhances PSENradar Vision for Safe Operation in Tough Environments