IEC 62443工業資訊安全標準


* / 瀏覽其他服務

IEC 62443是針對「工業通信網路-網路和系統的IT安全性」(Industrial communication networks - IT security for networks and systems)的一系列的國際標準。其中有許多有關控制系統安全性的技術及流程相關議題。其中會將工業應用分為三種不同的角色:操作者、整合者(整合服務及維護服務的提供者)及製造商。每個角色都有其以風險為基礎的研究方式,可以在其活動中管理通訊安全相關的風險。

 

這些標準會由許多不同產業的從業人員使用,以此來設計和評估自動化系統,以提高網絡安全性。許多標準已用在個人、工程流程、產生以及系統網路安全驗證計劃(cybersecurity certification programs,也稱為合格評定計劃,conformity assessment program)中。

 

n   Industrial IT security for control technology systems in Industry 4.0

 

The standard IEC 62443 (Industrial Communication Networks – Networks and System Security) has become established as an internationally recognised standard for certificates of compliance in the area of the process and automation industry. Today, due to missing standardization specifications, many additional industrial sectors rely on this standard. In this way, IEC 62443 becomes the central standard for Industry 4.0.

 

n   Application areas of this standard and contents of the test

 

The standard series currently comprises eleven partial standards. They address the logical levels of organization/processes, system and components as well as process-related and functional requirements. The IEC 62443 thus represents the verification of contemporary functional security for operators, integrators and manufacturers.

 

n   Your path to Industry 4.0 readiness

 

The linking of the various different levels within the company itself and with customers and suppliers outside the organization requires a combined security review. If you supplement your certification in accordance with IEC 62443 with a further certification in accordance with ISO 27001, you will achieve the current maximum possible security standard (Industry 4.0 readiness). Our integrated risk management Security4Safety already identifies in advance of a certification any digital vulnerabilities at the level of components, products and processes.

 

n   Your advantages

 

·       Certification of your security standards vis-à-vis your customers and business partners using the neutral verification provided by TÜV NORD CERT

·       Minimization of the risk of errors and damage to reputation (risk management).

·       Reduction of costs and risks by identifying and eliminating digital security loopholes in advance.

·       Your customer orientation, performance capability as well as your quality and security will become visible to external parties.

·       Transparent feedback by competent TÜV NORD security experts for the further development of your learning organization.