Mining Network and the Security Question

摘要

Companies all over the world are very sensitive concerning their IT and network security. In mostrnnetwork connected technical installations and machines however, network security is not taken intornaccount to a signifi cant extent: insecure protocols are run, unencrypted information is exchangedrnfreely and even broadcasted wirelessly and networked machines are accessible via insecure fi lerntransfer protocol (FTP).rnWhat happens in case of malfunctions of such technical installations? Who is responsible? Who canrnbe held liable in case of accidents? The fi rst computer worm for automation systems (‘STUXNET’)rn(Symantec, 2010) was discovered during 2010.rnThe paper is intended to create sensitivity among decision makers for potential security andrnresulting safety leaks and points out the current status quo in technical network security. It outlinesrnbest practices for secure networking and procedures for remote access and remote software updatesrnon stationary equipment and mobile mining machinery. It describes how to ensure authentic andrngenuine confi gurations and software targets and how to ensure secure communication for autonomousrnand remote controlled equipment. For such equipment in particular, the following statement shouldrnapply: ‘There is no safety without network security’.