0
Pour les architectes
Afficher tous les
Afficher tous les
Afficher tous les
Contact

Ou recherchez directement dans une catégorie

ACCUEIL
//
... // Produits
//
Systèmes
//
Domotique KNX
//
KNX Secure
  • Logo KNX Secure devant une photo de la Terre prise de nuit dans l'espace.

KNX Secure: security in the smart building

No manipulation and no recording of the data traffic: even in a smart building, data protection has the highest priority. For this reason, we use the world's first manufacturer and application-independent security standard for smart buildings. KNX Secure protects twice and secures all data with the AES128 algorithm.
Dessin au trait KNX Secure pour visualiser la sécurité dans le Smart Building.
1. secured area
KNX Secure warrants a high level of security in secure areas such as functional buildings or apartments and private household rooms through encryption and authentication. Key management and isolation protect against unauthorised access, while the KNX area / line coupler (segment coupler) enables a secure KNX system across public areas.
2. public area
The area / line coupler connects these two areas if Secure is activated in the ETS. The Secure Proxy function can then be used. Despite physical accessibility, the data remains protected by encryption.
Secure implementation of building automation technology: with KNX Secure, the smart building is secure, even across different devices (e.g. JUNG Visu Pro Server) and their connection methods. KNX Secure uses both wired and wireless technologies (KNX RF) to create a flexible and secure network for home and building automation technology. The encryption secures the information both on the KNX bus (Data Secure) and in the LAN (IP Secure).
Visualisation de la sécurité grâce à la topologie intelligente de JUNG
1.  KNX system component
2.  KNX RF media coupler
3.  KNX power supply
4.  KNX RF node
5.  KNX TP actuator
6.  KNX TP sensor
7.  JUNG Visu Pro
8.  LAN router

Doubly secure with KNX Secure

IP Secure
Independently of the medium, KNX IP Secure encrypts and authenticates all telegrams at the network level. The data transmitted are completely secure. Thus the communication between sensor and actuator in the IP network cannot be interpreted or manipulated. KNX IP Secure is the first manufacturer-independent security solution that is recognised as an international security standard in accordance with the EN ISO 22510 standard.
Data Secure
KNX Data Secure also encrypts the data on the bus line (twisted pair) or via wireless communication (RF). KNX secure prevents attack scenarios such as recording, replay attacks or man-in-the-middle attacks.

How will the NIS 2 Directive affect the technical planning of buildings?

The number of cyber attacks on critical infrastructure, public institutions and companies is increasing rapidly, causing immense damage. In response, the EU has introduced the NIS 2 Directive, which sets out extended security requirements that will affect many planning and construction projects in the near future.
JUNG white paper on cybersecurity
For everyone looking to explore the topic in more depth, JUNG provides the white paper “NIS-2 Directive: Significance and Consequences for Planning Professionals“. It takes an in-depth look at the industries covered by the new directive, its obligations and what these mean in practice for building planning and automation.

The white paper demonstrates the need to consider IT and OT systems together and the role that standards such as KNX Secure will play in the future. The technical content was developed in collaboration with lawyers from CBH specialising in IT law. This is a must-read document for anyone involved in planning, management or implementation. Find out more now and get prepared.
Commissioning KNX Secure Scanner Remote maintenance Databases Use cases
Commissioning
KNX Secure Scanner
Remote maintenance
Databases
Use cases

Commissioning KNX Secure:
secure, fast and simple, thanks to innovative apps

So that a KNX installation is secure, installers need the device certificates for the individual components. They must be integrated in ETS and are therefore printed as a QR code directly on the JUNG devices. The time-intensive and error-prone process of typing the device certificates is no longer necessary using the JUNG secure apps.
1. Scan in certificates
Before the installation, the KNX certificates must be scanned in. This is done most easily with a smartphone and the free JUNG KNX Secure Scanner app. 
2. Install KNX components
As soon as the certificates have been scanned in for all devices, the installer can install the components.
3. Import certificates
With the help of the ETS JUNG Secure Key Loader app, integrators import the previously scanned KNX certificates. With KNX Secure Scanner, they create a protected certificate list or direct the secure keys to a password-protected PDF.
4. Update optional KNX components
All JUNG twisted pair KNX devices can be conveniently updated with the JUNG ETS Service app.
KNX Secure apps
JUNG KNX Secure Scanner
This app closes the trades interface between installation, distribution and system integration: installers simply scan the QR codes. The Secure key appears in the app as a list view. With JUNG KNX Secure Scanner, you can create an encrypted certificate list or create password-protected PDF documentation for your records as needed. The app is available free of charge from the appropriate app stores.
To Google Play Store
To the App Store
JUNG KNX Secure Key Loader
The exported certificate list is simply transferred to the ETS with the ETS JUNG KNX Secure Key Loader app and thus integrated into the project. Multiple certificate lists can be combined in the project so that, for example, the project design can run parallel to the project progress. This extension is available via the KNX Association App Shop (my.knx.org) and is bound to the ETS dongle. 
To the KNX Shop
Logo JUNG ETS
ETS Service app
With the new ETS Service app, integrators can conveniently maintain KNX components. The extension makes it possible to install new firmware in the components. Moreover, they can transfer older firmware versions into existing devices (e.g. when a device is replaced).
To the KNX Shop
Logo IPS-Remote devant l'extérieur d'un immeuble d'habitation.

Remote maintenance of the KNX system

IPS-Remote Télémaintenance Visualisation par représentation graphique d'un ordinateur portable avec connexion suggérée et serrure.
Remote maintenance from everywhere
System integrators access the customer's KNX components with the IPS-Remote encrypted remote maintenance. For this, you simply need the ETS app IPS-Remote, the IP interface IPS 300 SREG or a power supply with IP interface and the remote maintenance licence IPS-L bound to the respective interface.
Visualisation des interfaces IPS à distance.
Complete access as if on site
Once set up and released by the customer, system integrators can commission, configure and maintain KNX components as usual via ETS5 with the IPS-Remote interface.
The technical requirements
Licence de télémaintenance IPS-L, écran d'ordinateur portable.
IPS-L remote maintenance licence
The IPS-L remote maintenance licence needed for the remote maintenance can be purchased by customers via the software licence sale in their MyJUNG account. In the MyJUNG service portal, all programs and services for the installation and administration of the JUNG products are brought together. With just one login, installers have everything to hand!
En savoir plus
Application ETS App IPS-Remote dans l'application sur l'écran d'un ordinateur portable.
ETS app IPS-Remote
The ETS app IPS-Remote establishes the connection between ETS and the device. The app can be downloaded for free at my.knx.org.
En savoir plus
For remote maintenance of a KNX system, two components are available: the IP interface and the -power supply with IP interface. For smaller projects with up to 25 KNX devices, the KNX power supply with IP interface is ideal. With large projects or for retrofitting of, for example, visualisation with Smart Visu Server, installers pick the IP interface and thus supplement the remote maintenance separately.
Une cliente souriante de la technologie intelligente IPS de JUNG.
The customer decides
The connection must be released each time as necessary - the customer can do this conveniently via the visualisation (e.g. via Smart Visu Server) or via connection to a push-button sensor. In this way, the control always remains with the customer. Remote maintenance is limited exclusively to the KNX bus and its integrated components.
IP Secure dans l'application par les clients.
Sustainable and secure
Time-consuming and cost-intensive journeys are eliminated. This reduces not just the operational costs but is also kind to the environment. The remote maintenance is encrypted using IP Secure. In addition, the JUNG servers are without exception in Germany. All data and access are thus subject to the strict requirements of GDPR.
Certificat IPS-Remote pour la sécurité, distingué par antago.
IPS-Remote auf Sicherheit geprüft
Als Anbieter für IT-Sicherheit hat sich die Antago GmbH von Anfang an auch mit dem Thema Smart Home beschäftigt. In dem Zusammenhang hat sich das Unternehmen die Fernwartung JUNG IPS-Remote genauer angeschaut.

FREIGABE DURCH DEN BAUHERREN MACHT DAS SYSTEM SICHER

JUNG IPS-Remote arbeitet bei der Fernwartung grundsätzlich mit der Zustimmung des Bauherrn. Benötigt dieser Hilfe in seinem Smart Home, muss er zunächst eine Freigabe erteilen. Dadurch ist das Zeitfenster eines theoretischen Angriffs auf ein Minimum reduziert. IPS-Remote garantiert zudem auch die gefühlte Sicherheit beim Bauherrn, denn wenn etwas nicht von außen erreichbar ist, kann es auch nicht angegriffen werden.
Security from one provider
JUNG offers secure KNX system technology with a comprehensive range of components: from the basis with the KNX switch and blinds actuators, the KNX push-buttons and system components such as line couplers, IP routers, IP interface or USB data interface up to visualisation. Solutions with JUNG KNX Secure guarantee data security based on the most modern encryption processes.
Manual sensors
F 50 push-button
Vers le catalogue
F 40 push-button
Vers le catalogue
F 10 push-button
Vers le catalogue
RF push-button
Vers le catalogue
Compact F 50 room controller
Vers le catalogue
Compact F 40 room controller
Vers le catalogue
KNX room controller LS TOUCH
Vers le catalogue
Actuators
Actionneur de commutation KNX Secure Logo Actionneur de stores
Switch actuator/ blinds actuator
Vers le catalogue
Logo KNX Secure à côté de l'actionneur de variateur universel KNX LED quadruple
KNX LED Universal dimming actuator, 4-gang
Vers le catalogue
Heating actuator
Vers le catalogue
KNX Secure à côté de l'actionneur universel de variateur simple
Universal dimming actuator
Vers le catalogue
Logo KNX Secure à côté de l'actionneur de commutation simple
Switch actuator
Vers le catalogue
Logo KNX Secure à côté de l'actionneur de commutation double
Switch and blinds actuator
Vers le catalogue
System components
KNX area / line coupler
Vers le catalogue
Logo KNX Secure à côté du routeur IP KNX
IP router Secure
Vers le catalogue
Logo KNx Secure à côté de l'interface IP
IP interface
Vers le catalogue
Logo KNX Secure à côté des alimentations KNX
Power supply with IP interface
Vers le catalogue
Logo KNX Secure à côté de l'interface de données USB
USB data interface
Vers le catalogue
Push-button interface 2-gang to 8-gang
Vers le catalogue
Central control and gateways
Smart Visu Server
Vers le catalogue
KNX Secure JVP
Visu Pro Server
Vers le catalogue
Logo KNX Secure IPS-Remote
IPS Remote
Vers le catalogue
DALI-2 gateway
Vers le catalogue

Download databases quickly & easily

The JUNG online catalogue contains databases, data sheets and much more for every KNX Secure product. Integrators always have all the information and downloads quickly and clearly available.
Vers le catalogue

Application examples/use cases

KNX Secure Exemples d'application dessin schématique.
A new warehouse fits logistically and architecturally into the arrangement of the existing building. Similarly, there is no need to rethink automation in order to integrate the new warehouse into the existing KNX system.  

Use the already used central devices (e.g. weather station, visualisation) of the existing system and enhance them with the devices in the newly built section.

Objective of the project
  • Resource and cost saving expansion of an existing system
  • Utilisation of synergy effects from the existing system
  • Galvanic separation of the new sections
  • Increase of the maximum expansion length
 
Steps in ETS
  • Add new line
  • Add IPR 300 S REG as KNX IP router
  • Use IPR 300 S REG in unencrypted mode
  • Activate and put filter tables into operation
  • Commission all other devices according to the manufacturer specifications 
Exemples d'application KNX Secure Dessin schématique, nouvelle construction Appartement.
Individually design your own realm: KNX provides many automation possibilities. For a new building, create a new KNX project. Then integrate the desired devices after the power supply with IP interface.

With optimal selection of devices you reduce power consumption and increase efficiency. If needed, simply retrofit a visualisation without extending the KNX system components.

Objective of the project
  • Resource and cost saving construction of a new installation
  • High performance and future-proof installation 
 
Steps in ETS
  • Create a new project.
  • Add new line
  • Add 203201SIPSR as KNX data interface
  • Commission all other devices according to the manufacturer specifications
KNX Secure Exemples d'application dessin schématique, nouvelle construction d'une maison individuelle.
Your own four walls to your own taste. Here, KNX offers many individual automation possibilities. For a new building, create a new KNX project. To do so, you need an IP interface and then integrate the required devices.

The optional software upgrade of the interface enables remote planning and maintenance: after commissioning, it is thus possible to access the system from outside of the customer network - naturally with the permission of the house owner. Remote maintenance means no more driving time. If needed, a visualisation can be retrofitted without extending the KNX system components.

Objective of the project
  • Resource and cost saving construction of a new installation
  • High performance and future-proof installation
 
In connection with the optional software upgrade:
  • Subsequent project design possible without travel costs
  • The highest level of security during commissioning even from outside the customer network
 
Steps in ETS
  • Create a new project.
  • Add new line
  • Add IPS 300 S REG as the KNX data interface
  • Commission all other devices according to the manufacturer specifications
 
In connection with the software upgrade
  • Purchase the IPS Remote licence via MyJUNG
  • Allocate project password
  • Use IPS 300 S REG in encrypted mode
  • Input the device certificate
  • Allocate the release code for the remote configuration
KNX Secure Exemples d'application dessin schématique, nouvelle construction d'une maison à deux logements.
Two homes under one roof. Here, KNX offers many individual automation possibilities. For a new building, create a new KNX project. You take account of each party with its own KNX IP router and then integrate the desired devices.

This division ensures that each party can only access its own KNX island system. At the same time, central components can, however, be jointly used. In this way, a central weather station provides the two individual house parties with data relevant for automation. 

Objective of the project
  • Exact separation of both living areas
  • Joint use of central components
 
Steps in ETS
  • Create a new project.
  • Add new lines
  • Add IPR 300 S REG as an IP router in each case
  • Use IPR 300 S REG in unencrypted mode
  • Activate and put filter tables into operation
  • Activate the lock for reprogramming the sub-line (e.g. exterior)
  • Commission all other devices according to the manufacturer specifications
Exemples d'application KNX Secure Dessin schématique, immeuble de bureaux à plusieurs étages.
The demands on multi-floor office buildings are as various as the world of work. For such a new building, you should provide one KNX IP router and one Smart Visu Server per floor. Thus, each floor can function for itself, but still be managed centrally.

If a floor is modernised during its useful life, all other areas are optimally protected against possible construction work damage. Central devices, such as a weather station, are simply integrated into the overall system via a separate or existing KNX IP router. It is recommended to plan a separate line for the central devices.

Objective of the project
  • Functional reliability of the entire system
  • Guaranteed connection between the visualisation and the KNX bus
  • Galvanic separation in the event of a fault
  • Increased speed of transmission of central commands
  • Reduced cabling costs (only install network in each section) 
 
Steps in ETS
  • Create a new project.
  • Add line
  • Add IPR 300 S REG as an IP router in each case
  • Use IPR 300 S REG in unencrypted mode
  • Activate filter tables
  • Use and start up the preferred connection in the application (for visualisation communication)
  • Establish IP tunnelling for visualisation (use reserved tunnel)
  • Commission all other devices according to the manufacturer specifications
KNX Secure Exemples d'application dessin schématique, concession automobile à plusieurs étages.
When planning a car dealership, the organisational, economic and architectural viewpoints should be considered. It is important in addition to be able to easily optimise the building in the future.

To this end, use one IP router per working area. In addition, provide a Smart Visu Server as the central control component. Thus, each area can function for itself, but still be managed centrally. If an area is modernised during its useful life, all other areas are optimally protected against possible construction work damage. You should plan a separate line for the central devices.

After commissioning, individual optimisation of the system can also be made possible from outside the customer network. For this you need an additional IP interface and the software upgrade for the interface. 

Objective of the project
  • Functional reliability of the entire system
  • Guaranteed connection between the visualisation and the KNX bus
  • Galvanic separation in the event of a fault
  • Increased speed for transmission of central commands
  • Reduced cabling costs (only install network in each section)
 
In connection with the optional software upgrade:
  • additional project configuration possible without travel costs
  • The highest level of security during commissioning even from outside the customer network
 
Steps in ETS
  • Create a new project.
  • Add lines
  • Add IPR 300 S REG as an IP router in each case
  • Use IPR 300 S REG in unencrypted mode
  • Activate filter tables
  • Use and start up the preferred connection in the application (for visualisation communication)
  • Establish IP tunnelling for visualisation (use reserved tunnel)
  • Commission all other devices according to the manufacturer specifications

In connection with the software upgrade:
  • Add IPS 300 S REG as the KNX data interface
  • Purchase the IPS Remote licence via myJUNG
  • Allocate project password
  • Use IPS 300 S REG in encrypted mode
  • Input the device certificate
  • Allocate the release code for the remote configuration
Create professional feel-good factors with building automation: provide your guests with the highest level of comfort with state of the art technology in the background and operate your hotel building with maximum energy efficiency.

A central weather station allows location-based weather data to flow into the building automation system. The heating regulation is reduced with rising outdoor temperatures and thus saves money and resources. The system should be operated in a fully encrypted KNXnet / IP network so that you can always benefit from these advantages. This makes potential hacker attacks on your building automation infrastructure significantly more difficult.
 
Objective of the project
  • Resource and cost saving construction of a new installation
  • Optimisation and automation of daily processes
  • Protection of the customer data
  • Encrypted communication
  • Protection from hacker attacks
  • High performance and future-proof installation
 
Steps in ETS
  • Create new project and assign project password
  • Add lines
  • Add IPR 300 S REG as an IP router in each case
  • Use IPR 300 S REG in encrypted mode
  • Input the device certificate
  • Change commissioning password (optional)
  • Change authentication code (optional)
  • Activate filter tables
  • Use and start up the preferred connection in the application (for visualisation communication)
  • Establish IP tunnelling for visualisation (use reserved tunnel)
  • Commission all other devices according to the manufacturer specifications
 
Additional note
  • Passwords are not required when the project is open.
  • The commissioning password must be entered if the project is not open.
Modern hotels set new standards for individual convenience. Provide added value for your guests with building automation and relieve hotel personnel. The smart hotel can cover several areas.

For example, the temperature in all rooms can be set or changed from a central location. A DND (Do Not Disturb) or MUR (Make Up Room) request from the guest can also be viewed at a central location. This allows you to optimally plan and execute the daily cleaning process. As sensitive data are also transmitted in such a hotel, we recommend protecting the data using state of the art technology. Operate a fully encrypted KNXnet/IP network for this to protect your guests and customers. The protection of customer data has the side effect that you as hotel owner are also optimally protected against hacker attacks on your building automation technology.

Objective of the project
  • The security of guest data has the highest priority 
  • Communication according to the latest security standards
  • Each section is considered as its own "island" 
  • Project design can be reproduced almost infinitely
  • JUNG Visu Pro (JVP) Hotel manages central information of each "island" via the KNX-IP interface
  • The required knowledge is reduced to a minimum in the event of a fault 
  • Minimisation of spare device storage 
  • Replacement devices can be pre-programmed
 
Steps in ETS
  • Create new project and assign project password
  • Add lines 
  • Add 203201SIPSR in each case as an IP interface
  • Use 203201SIPSR in encrypted mode
  • Input the device certificate
  • Change commissioning password (optional)
  • Change authentication code (optional)
  • Use and start up the preferred connection in the application (for visualisation communication)
  • Establish IP tunnelling for visualisation (use reserved tunnel)
  • Commission all other devices according to the manufacturer specifications

Additional notes
  • Passwords are not required when the project is open.
  • The commissioning password must be entered if the project is not open.

JUNG Newsletter

Product news, architecture references and smart home trends: With our JUNG newsletters you are always well informed when it comes to trends and news.

Contacts

Ce n'est pas votre interlocuteur ? Vous trouverez ici l'interlocuteur JUNG dans votre pays.
Trouvez votre contact