BS EN IEC 62443-3-3:2019
Industrial communication networks. Network and system security System security requirements and security levels
| Standard number: | BS EN IEC 62443-3-3:2019 |
| Pages: | 86 |
| Released: | 2019-05-07 |
| ISBN: | 978 0 539 01944 5 |
| Status: | Standard |
BS EN IEC 62443-3-3:2019
This standard BS EN IEC 62443-3-3:2019 Industrial communication networks. Network and system security is classified in these ICS categories:
- 25.040.40 Industrial process measurement and control
- 35.110 Networking
This part of the IEC 62443 series provides detailed technical control system requirements (SRs) associated with the seven foundational requirements (FRs) described in IEC 62443‑1‑1 including defining the requirements for control system capability security levels, SL-C(control system). These requirements would be used by various members of the industrial automation and control system (IACS) community along with the defined zones and conduits for the system under consideration (SuC) while developing the appropriate control system target SL, SL-T(control system), for a specific asset.
As defined in IEC 62443‑1‑1 there are a total of seven FRs:
-
Identification and authentication control (IAC),
-
Use control (UC),
-
System integrity (SI),
-
Data confidentiality (DC),
-
Restricted data flow (RDF),
-
Timely response to events (TRE), and
-
Resource availability (RA).
These seven requirements are the foundation for control system capability SLs, SL-C (control system). Defining security capability at the control system level is the goal and objective of this standard as opposed to target SLs, SL-T, or achieved SLs, SL-A, which are out of scope.
See IEC 62443‑2‑1 for an equivalent set of non-technical, program-related, capability SRs necessary for fully achieving a control system target SL.
Security for industrial automation and control systems Security risk assessment for system design
Security for industrial automation and control systems Patch management in the IACS environment