ČSN EN IEC 62443-2-4-ed.2 (180304)

Security for industrial automation and control systems - Part 2-4: Security program requirements for IACS service providers

Translate name

STANDARD published on 1.6.2024


Language
Format
AvailabilityIN STOCK
Price31.80 USD excl. VAT
31.80 USD

The information about the standard:

Designation standards: ČSN EN IEC 62443-2-4-ed.2
Classification mark: 180304
Catalog number: 519128
Publication date standards: 1.6.2024
SKU: NS-1186246
The number of pages: 100
Approximate weight : 331 g (0.73 lbs)
Country: Czech technical standard
Category: Technical standards ČSN

Annotation of standard text ČSN EN IEC 62443-2-4-ed.2 (180304):

This part of IEC 62443 specifies a comprehensive set of requirements for security-related processes that IACS service providers can offer to the asset owner during integration and maintenance activities of an Automation Solution. Because not all requirements apply to all industry groups and organizations, Subclause 4.1.4 provides for the development of "profiles" that allow for the subsetting of these requirements. Profiles are used to adapt this document to specific environments, including environments not based on an IACS.

NOTE 1 - The term "Automation Solution" is used as a proper noun (and therefore capitalized) in this document to prevent confusion with other uses of this term.

Collectively, the security processes offered by an IACS service provider are referred to as its Security Program (SP) for IACS asset owners. In a related specification, IEC 62443-2-1 describes requirements for the Security Management System of the asset owner.

NOTE 2 - In general, these security capabilities are policy, procedure, practice and personnel related.

Figure 1 illustrates the integration and maintenance security processes of the asset owner, service provider(s), and product supplier(s) of an IACS and their relationships to each other and to the Automation Solution. Some of the requirements of this document relating to the safety program are associated with security requirements described in IEC 62443-3-3 and IEC 62443 4 2.

NOTE 3 - The IACS is a combination of the Automation Solution and the organizational measures necessary for its design, deployment, operation, and maintenance.

NOTE 4 - Maintenance of legacy system with insufficient security technical capabilities, implementation of policies, processes and procedures can be addressed through risk mitigation

We recommend:

Technical standards updating

Do you want to make sure you use only the valid technical standards?
We can offer you a solution which will provide you a monthly overview concerning the updating of standards which you use.

Would you like to know more? Look at this page.




Cookies Cookies

We need your consent to use the individual data so that you can see information about your interests, among other things. Click "OK" to give your consent.

You can refuse consent here.

Here you can customize your cookie settings according to your preferences.

We need your consent to use the individual data so that you can see information about your interests, among other things.