Cyber Security Deployement Guidelines

Risk Prevention

To minimize the risk of security breaches and malware, the following points shall be respected:

  • A firewall should be installed, properly configured, enabled and always active on the computer where Ekip Connect is used;
  • An antivirus program, combined with antimalware, should be installed, always active and kept updated on the computer where Ekip Connect is used;
  • Autologin on computer where Ekip Connect is used should be disabled, configuring a password to access your account;
  • Automatic lock screen on the computer where Ekip Connect is used should be set, configuring your account password to unlock screen;

  • Enable Secure Boot to enhance your system's security by ensuring only trusted software loads during startup preventing malware from compromising your system. 

    Secure Boot is a mandatory requirement for installing and running Windows 11 while it's optional for Windows 10. 

    Check that Secure Boot is enabled in your BIOS settings and keep it active to safeguard against potential threats.

  • Do not leave the computer unattended with Ekip Connect running and connected to a device;
  • Do not leave the computer connected to a network with Ekip Connect running and connected to a device;
  • Check if you are using the last released version of Ekip Connect.


Active ports

Ekip Connect uses some local ports for data communication with the device:

  • Port 502 TCP, Modbus TCP Communication
  • Port 69 UDP, TFTP Communication
  • Port 443 TCP, HTTPS ABB Ability Communication
  • Port 53 UDP, DNS ABB Ability Communication

 

Note: while device Provisioning process into ABB Ability™ EM & AM, be sure your firewall is properly configured, according to active ports reported above. If communication issues are encountered, try to temporarily disable your firewall, enabling it again at the end of Provisioning process.

Read the previous article
Cyber Security Disclaimer
Read the next article
ABB Ekip Connect