Safety notes

Intended Use

This guide describes the BNI IOL-81x-205-K03x for use as a human machine interface. This is an IO-Link device that communicates with the higher level IO-Link master module via IO-Link.
Proper function according to the specifications in the technical data is only assured when the product is used solely as described in the user’s guide and the respective documents as well as in compliance with the technical specifications and requirements and only with suitable original Balluff accessories.
Otherwise, there is deemed to be unintended use. Unintended use is not permitted and will result in the loss of warranty and liability claims against the manufacturer.

Reasonably foreseeable misuse

The product is not intended for the following applications and areas and may not be used there:

• In safety-oriented applications in which personal safety depends on the device function

• In explosive atmospheres

• in outdoor use

• in direct contact with food.

• by private consumers.

General safety notes

Activities such as installation, connection and commissioning may only be carried out by qualified personnel.

Qualified personnel are persons whose technical training, knowledge and experience as well as knowledge of the relevant regulations allow them to assess the work assigned to them, recognize possible hazards and take appropriate safety measures.

The operator is responsible for ensuring that local safety regulations are observed. In particular, the operator must take steps to ensure that a defect in the product will not result in hazards to persons or equipment.

The product must not be opened, modified or changed. If defects and unresolvable faults occur in the product, take it out of service and secure against unauthorized use.

The BNI modules generally have good chemical and oil resistance. When used in aggressive media (e.g. chemicals, oils, lubricants and coolants) in high concentrations (e.g. due to low water content), the material resistance must be checked in advance for the specific application. In the event of failure or damage to the BNI modules due to these kinds of aggressive media, claims for defects are ruled out.

Hot surfaces
The housing heats up under normal operating conditions. There is a risk of burn injuries. Avoid direct skin contact with the surface.

Cybersecurity

The product must be used in a secure environment. The operator or manufacturer of the machine is responsible for ensuring the machine is cybersecure. This also includes a cybersecurity risk analysis.
It is important to plan and implement security measures based on this risk analysis.
The operator or manufacturer must ensure that all persons working with the device have received cybersecurity training.

Cybersecure Environment:

To ensure cybersecurity, you must protect components, networks, and systems from unauthorized access and ensure data integrity.

Recommended Measures:

• Take organizational and technical measures for network-capable devices and software.

• Implement an information security management system (ISMS) to manage all information security measures.

Cybersecurity Resources:

• BSI Recommendations for ICS Operators

• CISA Best Practices for Industrial Control Systems

• NIST SP 800-82 Guide to Industrial Control Systems (ICS) Security

We recommend using a network secured according to the state of the art.
The device are intended for use at Purdue Level 0 “Field Level / Sensors”.

Note on Purdue Level 0: Purdue Level 0 refers to the lowest level of the Purdue reference architecture for industrial automation systems. This level includes the physical sensors and actuators directly connected to the production environment. Devices at this level are responsible for real-time data acquisition and processing.
Access to the devices from outside should only be possible for known and trusted devices and authorized users.

According to IO-Link Standard V 1.1.4, the sensor does not have authentication mechanisms.
Changing the settings/parameters of the sensor is possible for all actors who have access to the IO-Link interface.
Use the device only on an IO-Link network module that is sufficiently protected against access and operated in a secure network.
Ensure that only authorized users have access to the IO-Link network module and the secure network.

According to IO-Link Standard V 1.1.4, the sensor does not have mechanisms to protect against physical manipulation or reading of memory contents in the event of physical access.
The sensor and its interfaces must be protected against physical access by appropriate measures, such as access monitoring to the machine and barriers.

According to IO-Link Standard V 1.1.4, the sensor does not have mechanisms to protect data integrity.
Data is transmitted unencrypted from the device via the IO-Link protocol to the IO-Link network module. Eavesdropping, influencing, or interfering is possible if the network is not sufficiently protected.
The sensor and its interfaces must be protected against physical access by appropriate measures, such as access monitoring to the machine and barriers.
The sensor should only be operated on an IO-Link network module that is sufficiently protected against access.

According to the IO-Link Standard, this IO-Link device does not have an independent logging mechanism.
However, the device has mechanisms for reporting events (events) that may also be suitable for analyzing cybersecurity events.
We recommend using the device on an IO-Link network module with event logging, where the event log can be read out from the IO-Link network module via a suitable protocol.