App security

Protection of self-developed apps

Customers are responsible for implementing all required security measures protecting their self-developed apps with regard to security, and for preventing unauthorized access to their own apps.

Access control of self-developed apps

Customers are responsible for the access control of each own developed app and for preventing unauthorized access to their apps.

Data protection

In Industrial Edge, customers have the possibility to store data outside of Edge Devices such as in their cloud infrastructure.

Customers are responsible for the confidentiality, integrity and availability (CIA) of data stored outside of Edge Devices and for preventing unauthorized access to the stored data.

Encrypted communication between Edge Apps

Customers are responsible for implementing encrypted and secure communication (e.g. HTTPS using TLS 1.2) for their apps.

Secure exposure of app communication

To secure the exposure of apps to the outer world, apps can use the platform provided reverse proxy.

Apps may directly expose communication interfaces by passing the proxy. In that case, the app needs to secure the communication properly.

App installation information warnings

Customers can install any app on their IEM. To help keeping the system secure, a warning is showed when installing the app. Problematic app capabilities such as privileges, open ports and the app signature state are here visible.

Non-critical apps also show any app information.