PacT Series MasterPacT, ComPacT, PowerPacT – Cybersecurity Guide PDF
DOCA0122EN-11

Recommendations for Protecting Access to the MicroLogic Control Unit Through USB Port (MasterPacT MTZ)

Functions Accessible Through USB Port

It is possible to access the functions of the MicroLogic X or MicroLogic Active control unit by:

  • Connecting a PC running EcoStruxure Power Commission software to the USB port of the control unit.

  • Connecting a smartphone running EcoStruxure Power Device app to the USB port of the control unit through a USB OTG adapter.

Note that the mass storage function is not implemented in the control unit. Therefore, it is not possible to attack the system by downloading malware from a USB key or other mass storage device.

Prerequisites for Establishing a USB or USB OTG Connection With MicroLogic X Control Unit

To establish a USB connection with the MicroLogic X control unit, the prerequisites are:

  • You must have physical access to the room where the MasterPacT MTZ circuit breaker with MicroLogic X control unit is located.

  • For a connection from a PC:

    • You must have a USB cable with a mini USB connector to connect your PC to the mini USB port on the MicroLogic X control unit.

    • You must have a PC running EcoStruxure Power Commission software.

  • For a connection from a smartphone:

    • You must have an OTG adapter and a USB cable with a mini USB connector to connect your smartphone to the mini USB port on the MicroLogic X control unit.

    • You must have a smartphone running EcoStruxure Power Device app.

Prerequisites for Establishing a USB or USB OTG Connection With MicroLogic Active Control Unit

To establish a USB connection with the MicroLogic Active control unit, the prerequisites are:

  • You must have physical access to the room where the MasterPacT MTZ circuit breaker with MicroLogic Active is located.

  • For a connection from a PC:

    • You must have a USB cable with a USB-C connector to connect your PC to the USB-C port on the MicroLogic Active control unit.

    • You must have a PC running EcoStruxure Power Commission software.

  • For a connection from a smartphone:

    • You must have an OTG adapter and a USB cable with a USB-C connector to connect your smartphone to the USB-C port on the MicroLogic Active control unit.

      NOTE: You can use a USB-C to USB-C cable instead of an OTG adapter to connect your smartphone to the MicroLogic Active control unit.

    • You must have a smartphone running EcoStruxure Power Device app.

General Recommendations for Protecting Access Through USB Port

To protect access to functions accessible through the USB port on the MicroLogic X or MicroLogic Active control unit, it is recommended to:

  • Install the MasterPacT MTZ circuit breaker in a locked area so that only authorized personnel can access the MicroLogic X or MicroLogic Active control unit.

  • Keep that area locked at all times.

  • Give the key or access code to authorized personnel only.

For further information, see the recommendations for restricting local access to the MasterPacT MTZ circuit breaker.

Recommendations for PCs Running EcoStruxure Power Commission Software

To protect access to the MicroLogic X or MicroLogic Active control unit from PC connected locally to the USB port on the front of the control unit, it is recommended to:

  • Keep PCs safely locked away when not in use.

  • Make sure that PCs that run the EcoStruxure Power Commission software require a user login and password.

  • Enforce the use of strong passwords.

  • Make sure that user passwords are changed regularly.

  • Forbid reuse of old passwords.

  • Set a timer to lock the PC screen after a period of idle time.

  • Harden PCs following the most recent vendor guidelines for the operating system running on your PC.

  • Limit the number of users allowed to use EcoStruxure Power Commission software.

  • Keep antivirus applications for PCs up to date.

Recommendations for Smartphones Running EcoStruxure Power Device App

To protect access to the MicroLogic X or MicroLogic Active control unit from a smartphone connected locally to the USB port on the front of the control unit, it is recommended to:

  • Make sure that the smartphones running EcoStruxure Power Device app are password protected and used for work only.

  • Harden the smartphones running EcoStruxure Power Device app by implementing all of the security features recommended by the smartphone vendor or manufacturer.

  • Keep antivirus applications for smartphones up to date.

  • Do not disclose information about the smartphone (telephone number, MAC address) if it is not necessary.

  • Disconnect the smartphone from the internet during a USB OTG connection with the MicroLogic X or MicroLogic Active control unit.

  • Do not store sensitive information on smartphones.

Recommendations for Configuring IEC 61850

For the MicroLogic X control unit, use FTPS protocol to upload the IEC 61850 configuration file to the IFE or EIFE interface, or IFE server.

QR Code is a registered trademark of DENSO WAVE INCORPORATED in Japan and other countries.

Was this helpful?

Contact Information
Legal Information
Privacy Policy
Change your cookie settings