New ISA/IEC Standard Specifies Cybersecurity Capabilities for Control System Components

ISA

 

September 28, 2018

The ISA/IEC 62443 series of standards, developed by the ISA99 committee as American National Standards and adopted globally by the International Electrotechnical Commission (IEC), is designed to provide a flexible framework to address and mitigate current and future security vulnerabilities in industrial automation and control systems (IACS).

A newly published standard in the series, ISA/IEC 62443-4-2-2018, Security for Industrial Automation and Control Systems: Technical Security Requirements for IACS Components, provides the cybersecurity technical requirements for components that make up an IACS, specifically the embedded devices, network components, host components and software applications. The standard sets forth security capabilities that enable a component to mitigate threats for a given security level without the assistance of compensating countermeasures.

“The standard definition of the security capabilities for system components provides a common language for product suppliers and all other control system stakeholders,” emphasizes Kevin Staggs of Honeywell, who led the ISA99 development group for the standard. “This simplifies the procurement and integration processes for the computers, applications, network equipment and control devices that make up a control system.”

The new standard follows the February 2018 publication of ISA/IEC 62443-4-1, Product Security Development Life-Cycle Requirements, which specifies process requirements for the secure development of products used in an IACS and defines a secure development life-cycle for developing and maintaining secure products. The life-cycle includes security requirements definition, secure design, secure implementation (including coding guidelines), verification and validation, defect management, patch management and product end-of-life.

The ISA99 standards committee draws on the input and knowledge of IACS security experts from across the globe to develop consensus standards that are applicable to all industry sectors and critical infrastructure. Previous documents in the ISA/IEC 62443 series cover terminology, concepts, and models; establishment of an IACS security program; patch management; and system security requirements and security levels. All may be accessed at www.isa.org/findstandards.

For more information https://www.isa.org/

 

 

Related Articles

Mitsubishi Electric to Launch Low-cost Version of Half-bridge Driver High-voltage (600V) IC

Mitsubishi Electric to Launch Low-cost Version of Half-bridge Driver High-voltage (600V) IC

Mitsubishi Electric Corporation (TOKYO: 6503) announced today its coming launch of a low-cost half-bridge driver high-voltage (600V) integrated circuit (HVIC) that achieves low pricing and high noise resistance by emphasizing basic functions. The new HVIC, designed for circuits that drive power semiconductors in low capacity inverter systems, is expected to lower the power consumption of white goods, electric bikes and industrial equipment. Sales will begin on October 18, 2019.

 

 

 

| |

Mitsui High-tec, Ontario Welcomes $102 Million Investment for Growing Electric Vehicle Sector

Mitsui High-tec (Canada), Inc.’s new Brantford facility will help build province’s EV supply chain June 29, 2023 The Ontario government is welcoming a $102.3 million investment by Mitsui High-tec (Canada), Inc. a manufacturer of motor cores, the basic structure of the motor used in electric vehicles (EVs). This investment, to expand the company’s Canadian operations,…

Mazak: Defusing Explosive Titanium Additive Situations

Mazak: Defusing Explosive Titanium Additive Situations

 

For manufacturers across every industry, additive manufacturing (AM) holds enormous promise, particularly when it comes to the production of parts made from high-value materials such as titanium. Rather than starting with a block of titanium large enough to contain an entire part and cutting it down to size – creating a massive heap of chips in the process – AM allows manufacturers to build parts to near-net shape.

 

 

Editor’s Pick: Featured Article

Weidmüller’s u-control 2000: The Automation Controller

Weidmüller’s u-control 2000: The Automation Controller

Weidmüller’s scalable engineering software, u-control 2000, adapts individually to your requirements. And, the u-control is powerful, compact and fully compatible with Weidmüller’s I/O system u-remote. This article looks at what makes u-control the heart of your automation.

Programmable logic controllers (PLCs) are one of the main components of any automated system. A typical control system has inputs, outputs, controllers (i.e., PLCs), and some type of human interaction with the system, a human machine interface (HMI), for example.

Read More

Latest Articles

  • For Systems Integrators: Embracing Vendor-Agnostic Network Technologies

    September 3, 2024 All-in-one platforms can add flexibility to a system integrator’s offerings The COVID-19 pandemic presented system integrators with a unique opportunity to evaluate manufacturer performance during a global disruption. Throughout this period, there have been numerous instances where end users have successfully utilized their diversified supply chains to enhance production by integrating more… Read More…

  • Understanding ABB Circuit Breakers

    September 3, 2024 A circuit breaker is an electrical safety device designed to protect an electrical circuit from damage caused by excess current. It functions as a switch that automatically interrupts the flow of electricity when it detects a fault, such as an overload or a short circuit, thereby preventing damage to the circuit, appliances, or electrical… Read More…