More information about the IEC 62443
The IEC 62443 standard offers your organizations guidance for improving the digital security and safety of OT/ICS/SCADA environments. The standard addresses the interests of all stakeholders (asset owners, system integrators and suppliers) and the contribution they can make to improving digital resilience.
The IEC 62443 standard consists of four categories: ‘General’, ‘Policies & Procedures’, ‘System’ and ‘Component’:
IEC 62443 1-X: General
This category contains foundational information regarding concepts, models and terminology. These parts of the standard are used as basis for the other categories of the IEC 62443 standard; ‘Policies & Procedures’, ‘System’ and ‘Component’.
IEC 62443 2-X: Policies & Procedures
The ‘Policies & Procedures’ category is mostly aimed at ‘End Users’ & ‘Solution Providers’ and comprises the different aspects for creating and maintaining an effective Cyber Security Management System (CSMS).
IEC 62443 3-X: System
The parts of the standard in this category describes the technical requirements for system design and they provide guiding principles for the secure development and integration of systems. The focus of this category is on the ‘Solution Providers’ and at the center of this category is the zone and conduit model.
IEC 62443 4-X: Component
The last category contains all the technical guidelines for developing products, by ‘Manufacturers’ for example, to be used in the IACS environment. ‘System Integrators’ and ‘End Users’ can still make use of this category by taking the requirements in these standards as basis for selecting and purchasing safe components to be used in their systems.