Important Announcement: Protecting our Community from Spam Events
Dear Members, we apologize for any disruption or inconvenience caused by the
recent spam incidents, and we want to assure you that our dedicated team is
actively investigating each reported instance of spam and implementing robust
measures to mitigate the impact. Learn more on
Spams Mitigation Guidelines
Schneider Electric Community Team
Controller Key Enhancement
Remote Operations Devices Ideas
Use this portal to submit your innovative ideas to make our hardware products of greater value to you and to the Remote Operations (formerly SCADA & Telemetry) community at large. Every idea will be individually reviewed and evaluated by our team for merit and feasibility and will be listed with its current status for other community members to see.
I would like to suggest a change to the Controller Key feature found in Telepace Studio 5.4.2. I originally submitted this as a bug but because the Controller Key feature prevents writes to the PLC ladder program it was referred to this forum. In summary, changes can be saved to the project when the Telepace editor is exited, which could (under certain circumstances) lead to corruption.
It is true that the ladder program will not be sent to the PLC if the “WRITE” button is not pressed but I suggest two failure scenarios here. Maybe a bit unlikely but I present them for review nonetheless:
First, unexpected changes could be saved to the project by a bad person; if the project is ever opened by an authorised user who actually needs to modify the project, and if all sheets are not checked thoroughly before writing/saving, the legit user could inadvertently commit the hacked changes along with the intended modifications.
Second, the “Controller Lock” tends to imply that the project is secure, at least in my mind. I would prefer that project changes were “bundled” into the controller lock as well as the WRITE commits.
I respectfully suggest that edits to the project are discarded if the Controller Lock is enabled and the "Save changes?" dialog not displayed so that the hacker is not sure what is happening. This would indicate that the Controller Lock feature not only controls the written PLC ladder program but the project as well, which is the same thing just in un-committed form.
I am recommending these two changes to the next possible release of the Telepace editor. The changes would make the editing environment more secure than it already is. Thank you for providing this forum to submit these types of ideas.