7EN02-0390-03

Potential risks and compensating controls

Address potential risks using these compensating controls:

Area Issue Risk Compensating controls
User accounts Default account settings are often the source of unauthorized access by malicious users. If you do not change the default password, unauthorized access can occur. Change the default password of 0 (zero) to help reduce unauthorized access. See “Passwords”.
User credentials are stored unencrypted in the device. If a malicious user gained access to your device, they could extract user credentials from storage media.

See “Protected environment assumptions”.

Store devices that are not in service in an access-controlled or monitored location.

See “Secure disposal guidelines”.

Secure protocols

ION, Modbus, DNP, DLMS, IEC 61850 and some IT protocols are unsecure.

The device does not have the capability to transmit data encrypted using these protocols.

If a malicious user gained access to your network, they could to intercept communications.

For transmitting data over an internal network, physically or logically segment the network.

For transmitting data over an external network, encrypt protocol transmissions over all external connections using an encrypted tunnel, TLS wrapper or a similar solution.

See “Protected environment assumptions”.

HTTP is unsecure

If a malicious user gained access to your network, they could compromise the security of your local network.

Configure meter to use these web protocol settings:

  • HTTPS

  • HTTPS with HTTP Redirect

See “Disabling and enabling protocols and changing port numbers”.

QR code for this page

Was this helpful?