Skip to main content
Demo phasevenfree is still being built.
venfree.de
Login
venfree/Wiki/KNX Secure – Encryption for the Bus

KNX Secure – Encryption for the Bus

KNX Secure is the security standard for KNX communication. It protects bus telegrams against eavesdropping and manipulation, both on IP networks (IP Secure) and on the TP cable (Data Security).

IP Secure and Data Security

KNX IP Secure encrypts KNXnet/IP connections (tunneling and routing) with AES-128-CBC and authentication. Protects communication on the LAN and over the internet.

KNX Data Security (TP Secure) encrypts telegrams directly on the TP bus with AES-128-CCM. Also protects against physical tapping of the bus cable. Both variants can be activated independently of each other.

Tool Key and Recommendation

In ETS 6, each project receives a random Project Tool Key. Without this key, a device cannot be reprogrammed, not even by someone with physical bus access. This prevents unauthorised reconfiguration.

KNX Secure is strongly recommended for all installations with IP access (remote programming, visualisation, Home Assistant connection). For pure TP installations without remote access in private buildings, it is optional but future-proof.

Key Facts

  • IP Secure: AES-128-CBC, protects KNXnet/IP
  • Data Security: AES-128-CCM, protects TP telegrams
  • Tool Key: prevents unauthorised reprogramming
  • Fully integrated from ETS 6
  • Never expose port 3671 to the internet without KNX Secure

Related Articles

KNXnet/IP – KNX over IP Networks
KNXnet/IP is the standard for KNX communication over IP networks. It enables remote ETS programming (tunneling) and connects multiple TP lines via an IP backbone (routing).
KNX IP Interface
A KNX IP interface connects an ETS computer to the KNX bus over the LAN. Unlike an IP router, it does not forward telegrams between lines, it is exclusively a gateway for ETS and visualisation systems.
KNX ETS – the Engineering Tool Software
The KNX Engineering Tool Software (ETS) is the only official tool for configuring and commissioning KNX projects. Developed and maintained by the KNX Association, it runs on Windows.

Plan your project with venfree

From room functions to device list and bill of materials, automatically, free, no account required.

Plan now
← All articlesKNX Devices →KNX Functions →