Dec 1, 2023
Chrome now blocks access to our own HTTP site over LAN
2. The control system supports only HTTP and is unlikely to be updated by Omron, the manufacturer because of its age but replacement of the whole system is economically unviable
3. Access to the site is by IP address 192.168.20.11, not a Domain
4. Chrome no longer seems to permit its warning to be overwritten saying "Access to this site is insecure" by clicking on the red triangle.
5. We MUST find a workaround to this issue as we need to control the system with interventions at least daily. I have tried all the Google-documented suggestions including adding it to Exceptions to no avail.
Informational notification.
This question is locked and replying has been disabled.
Community content may not be verified or up-to-date. Learn more.
Dec 1, 2023
When Chrome flags a website as "insecure," it's often due to the lack of HTTPS (SSL/TLS encryption) on the site. Given your industrial control system only supports HTTP and is accessed via an IP address, there's no inherent encryption.
Here are some steps you might consider to work around this issue:
Some browsers have options to add specific sites as exceptions for insecure connections. You mentioned attempting this in Chrome, but it might be worth revisiting or exploring similar settings in other browsers.
Ensure your local network configurations are secure. Consider using a VPN for added security layers, especially if remote access is essential.
Consider setting up an HTTPS proxy or a secure tunnel (VPN or SSH tunnel) that can encrypt traffic to and from the industrial control system. This can add a layer of encryption even if the system itself doesn't support HTTPS.
Note: Mark this answer as a recommended answer if this helps you to solve your query so that it will helps others too :)
Regards,
Shehzan Qureshi
Original Poster Andrew Clark 3999 marked this as an answer
All Replies (2)
When Chrome flags a website as "insecure," it's often due to the lack of HTTPS (SSL/TLS encryption) on the site. Given your industrial control system only supports HTTP and is accessed via an IP address, there's no inherent encryption.
Here are some steps you might consider to work around this issue:
Some browsers have options to add specific sites as exceptions for insecure connections. You mentioned attempting this in Chrome, but it might be worth revisiting or exploring similar settings in other browsers.
Ensure your local network configurations are secure. Consider using a VPN for added security layers, especially if remote access is essential.
Consider setting up an HTTPS proxy or a secure tunnel (VPN or SSH tunnel) that can encrypt traffic to and from the industrial control system. This can add a layer of encryption even if the system itself doesn't support HTTPS.
Note: Mark this answer as a recommended answer if this helps you to solve your query so that it will helps others too :)
Regards,
Shehzan Qureshi
Original Poster Andrew Clark 3999 marked this as an answer
Dec 4, 2023
Many thanks for your helpful response.
We already use a vpn as I mentioned but we found that the error message was misleading us and the HMI interface had to be rebooted via telnet.
We now need to find out why the timeswitch did not successfully restart the system at midnight every 24 hours.
Regards
Andrew