Skip to main content
Tagasi

IEC 62443-2-1:2024

Security for industrial automation and control systems - Part 2-1: Security program requirements for IACS asset owners

Üldinfo

Kehtiv alates 07.08.2024
Direktiivid või määrused
puuduvad

Standardi ajalugu

Staatus
Kuupäev
Tüüp
Nimetus
07.08.2024
Põhitekst
10.11.2010
Põhitekst
IEC 62443-2-1:2024 specifies asset owner security program (SP) policy and procedure requirements for an industrial automation and control system (IACS) in operation. This document uses the broad definition and scope of what constitutes an IACS as described in IEC TS 62443‑1‑1. In the context of this document, asset owner also includes the operator of the IACS.
This document recognizes that the lifespan of an IACS can exceed twenty years, and that many legacy systems contain hardware and software that are no longer supported. Therefore, the SP for most legacy systems addresses only a subset of the requirements defined in this document. For example, if IACS or component software is no longer supported, security patching requirements cannot be met. Similarly, backup software for many older systems is not available for all components of the IACS. This document does not specify that an IACS has these technical requirements. This document states that the asset owner needs to have policies and procedures around these types of requirements. In the case where an asset owner has legacy systems that do not have the native technical capabilities, compensating security measures can be part of the policies and procedures specified in this document.
This edition includes the following significant technical changes with respect to the previous edition:
a) revised requirement structure into SP elements (SPEs),
b) revised requirements to eliminate duplication of an information security management system (ISMS), and
c) defined a maturity model for evaluating requirements.

Nõutud väljad on tähistatud *

*
*
*
PDF
491,67 € koos KM-ga
Standardi monitooring

Teised on ostnud veel

Põhitekst

IEC TR 62443-2-3:2015

Security for industrial automation and control systems - Part 2-3: Patch management in the IACS environment
Uusim versioon Kehtiv alates 30.06.2015
Põhitekst

EVS-EN IEC 62443-4-2:2019

Security for industrial automation and control systems - Part 4-2: Technical security requirements for IACS components
Uusim versioon Kehtiv alates 02.05.2019
Põhitekst

EVS-EN IEC 62443-3-2:2020

Security for industrial automation and control systems - Part 3-2: Security risk assessment for system design
Uusim versioon Kehtiv alates 15.09.2020
Põhitekst

EVS-EN IEC 62443-2-4:2024

Security for industrial automation and control systems - Part 2-4: Security program requirements for IACS service providers
Uusim versioon Kehtiv alates 01.02.2024