Use of the Local Connection Configuration functionality brings additional security concerns beyond the topics covered by Industrial Security. Primarily, storing artifacts with integrity requirements on the filesystem exposes the user to additional risks, unless additional measures are taken to prevent unintended alteration of these artifacts.
- DO verify the IP address of the target PLC when invoking a command; this will always be displayed by the AX Code Desktop IDE when picking a local connection configuration.
- DO use source control to track changes to local connection configuration files (i.e.
.ax/plcsand.ax/certificates) if the integrity of these files is critical to your security requirements.