Connect older equipment
without compromising security
When you connect older
serial devices and equipment to an Ethernet network, it’s important to take
steps to minimize potential cybersecurity risks. That’s why we design our NPort
5000A and 6000 device servers in full compliance with IEC 62443-2 security standards and offer additional tools and resources to protect against unauthorized users.
Protect Against
Unauthorized Access
1. User Authentication and
Authorization
A common security
vulnerability in industrial systems is devices that are still using the default
manufacturer’s login and password. Our firmware requires administrators to
change this password during configuration.
2. Security Hardening
Guide
Our step-by-step
security hardening guide helps you configure the NPort to minimize exposure to
cybersecurity threats. You’ll see exactly which services are unnecessary and
can be disabled for your use case.
3. Communication Integrity
Configuration access is
protected through the support of secure protocols TLS 1.2, HTTPS, and SNMPv3.
Insecure protocols (e.g., HTTP) are disabled by default.
4. Network Access Control
Additional functions
such as IP address allowlist help you further limit network access so
unauthorized users cannot make changes to device settings.
Tools to Monitor and
Take Action
1. Security Advisories and
Patches
You can subscribe to
our Security Advisory page to make sure you are notified of any new
vulnerabilities that have been discovered. We will provide mitigation guidance
as well as links to download security patches and updated firmware as needed.
2. Visibility for Network
Administrators
Our MXview network
management suite provides easy visibility of your network topology and
supported network devices. You’ll be able to see your NPort’s security status
and set up user-defined s notifications and alarms, so you can respond before
an unauthorized user is able to wreak havoc.
3. Device Management
Our MXconfig utility
and CLI configuration tools are great timesavers when you need to manage a lot
of NPorts and other supported network devices. In a few steps, you can back up
or restore settings on each device, or update each device’s firmware to take
advantage of any security patches.
4. Important
While Moxa’s NPort
helps you securely connect your serial device to your network, remember that
protection against security threats can only be partially addressed by secure
product design and features. You must also consider your network architecture,
maintenance practices, and other factors.
Featured Products
NPort 5000A Series
Security Features:
- Password
protection
- CRC
code check
- Security
hardening guide
- Optional
disabling of unused services
- Telnet
access is disabled by default
- HTTPS
and SNMPv3 for configuration access
- Access
Control List (ACL)
- MXconfig
and CLI tool configuration
- Syslog
(remote or local)
- MXview-supported
device
- Security
advisory subscription service
- Nessus
vulnerability report by request
NPort 6000 Series
Security Features:
- Password
protection
- RADIUS/TACAS+
authentication
- Customizable
user privileges
- CRC
code check
- Security
hardening guide
- Optional
disabling of unused services
- Telnet
access is disabled by default
- HTTPS,
SNMPv3, and SSH for configuration access
- Accessible
IP list
- Access
Control List (ACL)
- MXconfig
and CLI tool configuration
- Syslog
(remote or local)
- MXview-supported
device
- Security
advisory subscription service
- Nessus
vulnerability report by request
- IEC
62443-4-2 self-assessment report by request
(Courtesy of MOXA)