When your software (such as EcoStruxure Machine Expert) is started, each loaded dynamic-link library (DLL) is scanned to verify whether or not it is trusted. This is a built-in security feature against cyberattacks and to help increase the trust level.
If untrusted DLLs are detected, you will be informed depending on the verification level:
Via status bar.
Via dialog box .
Via console, such as Logic Builder Shell.
The result of the verification is documented in the log file of your software.
The following verification levels are defined and can be configured via command line argument:
|
Verification Level |
Process in your software |
Process via console |
|---|---|---|
|
|
The dialog box is displayed (blocking start-up of your software). You have the choice to continue or terminate the process. |
The error message is written to the standard console, such as Logic Builder Shell. The process is terminated. |
|
|
A notification is displayed via status bar and is documented in the log file of your software. The process continues. |
A notification is written to the standard console, such as Logic Builder Shell. The process continues. |
|
|
The notification is only documented in the log file of your software. |
The notification is only documented in the log file of your software. |
The verification level is applied per process and is not set globally. Once the verification level is set, it cannot be changed for a running software process.
Use the command line argument "--SignatureVerificationWarningLevel=[Error|Warning|Silent]" to configure the verification level for the running process.
To specify the verification level argument, run your software from console or adapt the Start menu shortcut.
The digital signature verification results are written to the Verification Log (see dialog box Integrity Verification).
Untrusted digital signature verification results are written to:
the Windows EventLog (Source: "Schneider Electric Software").
the log file of your software, such as EcoStruxure Machine Expert (see the \TEMP\ directory).
Verification level = Error:
If the verification level Error applies, the dialog box is displayed when your software is started. It provides the following options:
The button allows you to save the log information to an XML file. Consult this file to get more information about the DLLs that were detected as untrusted.
The Exit button allows you to exit the software promptly.
To continue using your software, select the check box indicating that you have taken the notification about untrusted components into account and click the button Continue. Note that the notification will appear with every start of your software.
Verification level = Warning:
If the verification level Warning applies, the startup process of your software continues and a notification is displayed in the statusbar. Clicking this notification opens the dialog box which allows you to consult the Verification Log for more information about the DLLs that were detected as untrusted.
Analyze each notification carefully before you continue to work. As there are multiple reasons for untrusted components there are also different ways to continue:
If an expected reason is reported you can continue to work.
If an unexpected reason triggered by an installed 3rd party product on the same PC is reported you can continue to work.
If, however, an untrusted component is reported for an unexpected reason and for which you do not recognize the component, analyze the Verification Log carefully and find out why a DLL was detected as untrusted before you continue to work with the software.