ISA announces newly published ISA/IEC 62443-4-1-2018 security standard

March 28, 2018 - The ISA/IEC 62443 series of standards, developed by the ISA99 committee as American National Standards and adopted globally by the International Electrotechnical Commission (IEC), is designed to provide a flexible framework to address and mitigate current and future security vulnerabilities in industrial automation and control systems (IACS).
A newly published standard in the series, ISA/IEC 62443-4-1-2018, Security for Industrial Automation and Control Systems Part 4-1: Product Security Development Life-Cycle Requirements, specifies process requirements for the secure development of products used in an IACS. It defines a secure development life-cycle for developing and maintaining secure products. This life-cycle includes security requirements definition, secure design, secure implementation (including coding guidelines), verification and validation, defect management, patch management and product end-of-life.
These requirements can be applied to new or existing processes for developing, maintaining and retiring hardware, software or firmware for new or existing products. The requirements apply to the developer and maintainer of a product, but not to the integrator or user of the product.
The ISA99 standards committee draws on the input and knowledge of IACS security experts from across the globe to develop consensus standards that are applicable to all industry sectors and critical infrastructure. Previous documents in the ISA/IEC 62443 series cover terminology, concepts, and models; establishment of an IACS security program; patch management; and system security requirements and security levels. All may be accessed at www.isa.org/findstandards .
For more information on ISA99 and the ISA/IEC 62443 series of standards, contact Eliana Brazda, ISA Standards, [email protected] or +1-919-990-9200.
About ISA
The International Society of Automation is a nonprofit professional association that sets the standard for those who apply engineering and technology to improve the management, safety, and cybersecurity of modern automation and control systems used across industry and critical infrastructure. Founded in 1945, ISA develops widely used global standards; certifies industry professionals; provides education and training; publishes books and technical articles; hosts conferences and exhibits; and provides networking and career development programs for its 40,000 members and 400,000 customers around the world.
ISA owns Automation.com, a leading online publisher of automation-related content, and is the founding sponsor of The Automation Federation, an association of non-profit organizations serving as “The Voice of Automation.” Through a wholly owned subsidiary, ISA bridges the gap between standards and their implementation with the ISA Security Compliance Instituteand the ISA Wireless Compliance Institute

Check out our free e-newsletters
to read more great articles.
MORE INDUSTRY NEWS
-
Seeq announces achievement of Amazon Web Services (AWS) Industrial Software Competency status
To receive the AWS Industrial Software Competency designation, APN Partners undergo rigorous AWS technical validation related to industry specific...
-
Pepperl+Fuchs Comtrol and Callisto Integration announce strategic partnership
Pepperl+Fuchs Comtrol and Callisto work with each manufacturing customer to deliver initial solutions that have tangible results, and then collect...
-
ST Robotics providing hands-on robotics training to university students
More than 30 other educational institutions have benefited from ST Robotics’ systems. These include: MIT, Cambridge University, Ecole Nationale...
-
Senet announces partnership with Zenseio
Senet has certified the Zenseio LSMP2 - Professional Multi-purpose Telemetry Station, providing the agriculture market with a pre-integrated,...
-
Arena Solutions announces strategic partnership with PRG
This deepened strategic partnership expands PRG’s services for Arena customers that desire assistance or simply have limited internal resources....
RELATED
-
Augmented Intelligence
By Mark Howard, EU Automation
Augmented intelligence is one of the few technologies named on the Gartner Hype Cycle for Emerging Technologies,... -
PLC Programming Preference Survey: Insights & User Comments
By Bill Lydon, Automation.com
The PLCopen organization and Automation.com conducted a joint survey of PLC programming preferences. Here are some... -
ODVA announces enhancements to EtherNet/IP Specification
The published enhancements to The EtherNet/IP Specification outline integration of NAMUR NE 107 diagnostics for process automation into CIP...
-
Robots or Cobots: Which to Choose?
By Jonathan Wilkins, EU Automation
Today’s plant managers are faced with a dearth of automation technologies but it’s not always obvious what... -
IDTechEx Report: Autonomous cars could accout for 4 trillion miles of road travel by 2040
IDTechEx has recently seen competitors joining hands and forming some unlikely-sounding alliances to reduce the cost of autonomous driving...