Tel: +1-617-350-7550

Proposed Data Link Would Improve the Network Security of BACnet-based Building Automation Systems

Proposed Data Link Would Improve the Network Security of BACnet-based Building Automation Systems

June 05, 2018

The BACnet standard (ANSI/ASHRAE Standard 135) has included optional network security functionality since it was originally published in 1995, and there was a major change to that functionality published in 2010. However, BACnet’s network security functionality has never been widely implemented in commercial building automation products. Building owners have often deployed VLANs, VPNs, and physically separate networks to make it more difficult for the operation of building automation systems to be disrupted (intentionally or unintentionally) by other network-connected devices.

An ongoing project within the BACnet committee has resulted in a proposal for a new BACnet data link that is built on the WebSocket and TLS protocols, which are widely used Internet technologies. (TLS is commonly used to secure the communication between web browsers and web servers.) As specified in the proposal, TLS would enable industry-standard encryption and certificate-based device authentication in BACnet-based systems that employ the new data link. BACnet routers would be used to enable interoperability with devices that communicate using one of the other BACnet data links.

The document that contains the specification for the proposed new data link is in public review through July 16, 2018, and it can be downloaded here.



Leave a comment

Comments will be approved before showing up.


Also in Cimetrics News

November Cybersecurity News 2022
November Cybersecurity News 2022

November 17, 2022

Electricity/Energy Cybersecurity: Trends & Survey Response, Secret Service Making Progress Toward Zero Trust Architecture,  Cybersecurity issues in retail and smart cities, CISA wants to change how organizations prioritize vulnerabilities and more...

Read More

October Cybersecurity news 2022
October Cybersecurity news 2022

October 16, 2022

October is Cybersecurity Awareness month, Manufacturers' Guide to BAS Cybersecurity for BACnet System, Cybersecurity matters for utilities and more...

Read More

August/September 2022 Cybersecurity news
August/September 2022 Cybersecurity news

September 15, 2022

White House releases post-SolarWinds federal software security requirements, CISA to develop ‘self-attestation’ cybersecurity standards for federal software vendors, Building A Cybersecurity Culture In Your Organization

Read More