EN IEC 62443-4-1:2018

Security for industrial automation and control systems - Part 4-1: Secure product development lifecycle requirements EN IEC 62443-4-1:2018

Publication date:   Jun 14, 2018

General information

60.60 Standard published   Mar 23, 2018

CENELEC

CLC/TC 65X Industrial-process measurement, control and automation

European Norm

25.040.40   Industrial process measurement and control | 35.030   IT Security

Buying

Published

Language in which you want to receive the document.

Scope

IEC 62443-4:2018(E) specifies the process requirements for the secure development of products used in industrial automation and control systems. This specification is part of a series of standards that addresses the issue of security for industrial automation and control systems (IACS). IEC 62443-4 defines secure development life-cycle (SDL) requirements related to cyber security for products intended for use in the industrial automation and control systems environment and provides guidance on how to meet the requirements described for each element. The life-cycle description includes security requirements definition, secure design, secure implementation (including coding guidelines), verification and validation, defect management, patch management and product end-of-life. These requirements can be applied to new or existing processes for developing, maintaining and retiring hardware, software or firmware.

Note that these requirements only apply to the developer and maintainer of the product, and are not applicable to the integrator or the user of the product. A summary list of the requirements is provided in Annex B.

Life cycle

NOW

PUBLISHED
EN IEC 62443-4-1:2018
60.60 Standard published
Mar 23, 2018