Security

AVEVA works closely with Microsoft and industry standards organizations like the OPC Foundation to involve multiple vendors in an industry-wide approach to solving security problems.

The success of a security solution is enhanced by pooling IT expertise during the implementation and integration phases of a Spectrum Cloud and Dabacon component project. Security is considered at all stages of development and regularly reviewed.

This section provides a high-level security perspective, and specific recommendations within the System Platform environment.

Security has been designed into AVEVA Unified Engineering - Spectrum from the start. All data in the Cloud is encrypted at rest and in transit. All data transfer between the Cloud services, the Edge services and the client product components is encrypted using TLS. A minimum of TLS version 1.2 is used. No traffic originates from outside the customer network. Traffic between the client component and the Edge Connector, which is entirely within the customer network, is also encrypted.

All communication is authenticated using CONNECT. A user authenticates when starting a client product component, and these credentials are used to verify communication with the cloud services and with the Edge services.