PRICES include / exclude VAT
Homepage>BS Standards>25 MANUFACTURING ENGINEERING>25.040 Industrial automation systems>25.040.40 Industrial process measurement and control>DD IEC/PAS 62443-3:2008 Security for industrial process measurement and control Network and system security
Sponsored link
immediate downloadReleased: 2008-08-29
DD IEC/PAS 62443-3:2008 Security for industrial process measurement and control Network and system security

DD IEC/PAS 62443-3:2008

Security for industrial process measurement and control Network and system security

Format
Availability
Price and currency
English Secure PDF
Immediate download
370.26 EUR
You can read the standard for 1 hour. More information in the category: E-reading
Reading the standard
for 1 hour
37.03 EUR
You can read the standard for 24 hours. More information in the category: E-reading
Reading the standard
for 24 hours
111.08 EUR
English Hardcopy
In stock
370.26 EUR
Standard number:DD IEC/PAS 62443-3:2008
Pages:56
Released:2008-08-29
ISBN:978 0 580 62208 3
Status:Standard
DESCRIPTION

DD IEC/PAS 62443-3:2008


This standard DD IEC/PAS 62443-3:2008 Security for industrial process measurement and control is classified in these ICS categories:
  • 35.030 IT Security
  • 25.040.40 Industrial process measurement and control
  • 35.110 Networking

This PAS establishes a framework for securing information and communication technology aspects of industrial process measurement and control systems including its networks and devices on those networks, during the operational phase of the plant’s life cycle.

This PAS provides guidance on a plant’s operational security requirements and is primarily intended for automation system owners/operators (responsible for ICS operation)

Furthermore, the operational requirements of this PAS may interest ICS stakeholders such as:

  1. automation system designers;

  2. manufacturers (vendors) of devices, subsystems, and systems;

  3. integrators of subsystems and systems.

    The PAS allows for the following concerns:

  4. graceful migration/evolution of existing systems;

  5. meeting security objectives with existing COTS technologies and products;

  6. assurance of reliability/availability of the secured communications services;

  7. applicability to systems of any size and risk (scalability);

  8. coexistence of safety, legal and regulatory and automation functionality requirements with security requirements.

NOTE 1 Plants and systems may contain safety critical components and devices. Any safety-related security components may be subject to certification based on IEC 61508 and according to the SILs therein. This PAS does not guarantee that its specifications are all or in part appropriate or sufficient for the security of such safety critical components and devices.

NOTE 2 This PAS does not include requirements for security assurance evaluation and testing.

NOTE 3 The measures provided by this PAS are rather process-based and general in nature than technically specific or prescriptive in terms of technical countermeasures and configurations.

NOTE 4 The procedures of this PAS are written with the plant owner/operator's mind set.

NOTE 5 This PAS does not cover the concept, design and implementation live cycle processes, i.e. requirements on control equipment manufacturer's future product development cycle.

NOTE 6 This PAS does not cover the integration of components and subsystems into a system.

NOTE 7 This PAS does not cover procurement for integration into an existing system, i.e. procurement requirements for owner/operators of a plant.

NOTE 8 This PAS will be extended into a 3-part International Standard to cover most of the restrictions expressed in the previous notes; for the planned scope of the extended standards, refer to Annex A.