IEC TR 62443-3-1:2009

Current

Current The latest, up-to-date edition.

Industrial communication networks - Network and system security - Part 3-1: Security technologies for industrial automation and control systems

Available format(s): Hardcopy, PDF, PDF 3 Users, PDF 5 Users, PDF 9 Users

Language(s): English

Published date: 30-07-2009

Publisher: International Electrotechnical Committee

Table of Contents - (Show below) - (Hide below)

FOREWORD
INTRODUCTION
1 Scope
2 Normative references
3 Terms, definitions and acronyms
   3.1 Terms and definitions
   3.2 Acronyms
4 Overview
5 Authentication and authorization technologies
   5.1 General
   5.2 Role-based authorization tools
   5.3 Password authentication
   5.4 Challenge/response authentication
   5.5 Physical/token authentication
   5.6 Smart card authentication
   5.7 Biometric authentication
   5.8 Location-based authentication
   5.9 Password distribution and management technologies
   5.10 Device-to-device authentication
6 Filtering/blocking/access control technologies
   6.1 General
   6.2 Network firewalls
   6.3 Host-based firewalls
   6.4 Virtual Networks
7 Encryption technologies and data validation
   7.1 General
   7.2 Symmetric (secret) key encryption
   7.3 Public key encryption and key distribution
   7.4 Virtual private networks (VPNs)
8 Management, audit, measurement, monitoring, and
   detection tools
   8.1 General
   8.2 Log auditing utilities
   8.3 Virus and malicious code detection systems
   8.4 Intrusion detection systems (IDS)
   8.5 Vulnerability scanners
   8.6 Forensics and analysis tools (FAT)
   8.7 Host configuration management tools (HCM)
   8.8 Automated software management tools (ASM)
9 Industrial automation and control systems computer
   software
   9.1 General
   9.2 Server and workstation operating systems
   9.3 Real-time and embedded operating systems
   9.4 Web technologies
10 Physical security controls
   10.1 General
   10.2 Physical protection
   10.3 Personnel security
Annex A (informative) Trade name declarations
Bibliography

Abstract - (Show below) - (Hide below)

IEC/TR 62443-3-1:2009(E) provides a current assessment of various cybersecurity tools, mitigation counter-measures, and technologies that may effectively apply to the modern electronically based IACSs regulating and monitoring numerous industries and critical infrastructures. It describes several categories of control system-centric cybersecurity technologies, the types of products available in those categories, the pros and cons of using those products in the automated IACS environments, relative to the expected threats and known cyber vulnerabilities, and, most important, the preliminary recommendations and guidance for using these cybersecurity technology products and/or countermeasures.

General Product Information - (Show below) - (Hide below)

Development Note	Stability Date: 2018. (10/2012)
Document Type	Technical Report
ISBN
Pages
Published
Publisher	International Electrotechnical Committee
Status	Current

International Equivalents – Equivalent Standard(s) & Relationship - (Show below) - (Hide below)

Equivalent Standard(s)	Relationship
SANS SATR 62443-3-1 : 1ED 2016	Identical
CAN/CSA-IEC/TR 62443-3-1:17	Identical

Standards Referenced By This Book - (Show below) - (Hide below)

CAN/CSA-IEC 62443-2-1:17	Industrial communication networks — Network and system security — Part 2-1: Establishing an industrial automation and control system security program (Adopted IEC 62443-2-1:2010, first edition, 2010-11) \| Réseaux industriels de communication — Sécurité dans les réseaux et les systèmes — Partie 2-1 : Établissement d’un programme de sécurité pour les systèmes d’automatisation et de commande industrielles (norme IEC 62443-2-1:2010 adoptée, première édition, 2010-11)
AAMI TIR57 : 2016	PRINCIPLES FOR MEDICAL DEVICE SECURITY - RISK MANAGEMENT
EN IEC 62443-4-1:2018	Security for industrial automation and control systems - Part 4-1: Secure product development lifecycle requirements
API RP 554-2:2023	Process Control Systems— Process Control System Design
PD IEC/TR 61850-90-12:2015	Communication networks and systems for power utility automation Wide area network engineering guidelines
IEC 62443-2-1:2010	Industrial communication networks - Network and system security - Part 2-1: Establishing an industrial automation and control system security program
PD IEC/TS 62872:2015	Industrial-process measurement, control and automation system interface between industrial facilities and the smart grid
BS IEC 62443-2-1 : 2010	INDUSTRIAL COMMUNICATION NETWORKS - NETWORK AND SYSTEM SECURITY - PART 2-1: ESTABLISHING AN INDUSTRIAL AUTOMATION AND CONTROL SYSTEM SECURITY PROGRAM
18/30267404 DC : 0	BS EN 62443-3-2 - SECURITY FOR INDUSTRIAL AUTOMATION AND CONTROL SYSTEMS - PART 3-2: SECURITY RISK ASSESSMENT AND SYSTEM DESIGN
CAN/CSA-IEC 62443-3-3:17	Industrial communication networks — Network and system security — Part 3-3: System security requirements and security levels (Adopted IEC 62443-3-3:2013, first edition, 2013-08)
I.S. EN IEC 62443-4-1:2018	SECURITY FOR INDUSTRIAL AUTOMATION AND CONTROL SYSTEMS - PART 4-1: SECURE PRODUCT DEVELOPMENT LIFECYCLE REQUIREMENTS
BS IEC 62443-3-3:2013	Industrial communication networks. Network and system security System security requirements and security levels
IEC TS 62872:2015	Industrial-process measurement, control and automation system interface between industrial facilities and the smart grid

Standards Referencing This Book - (Show below) - (Hide below)

FIPS PUB 140 : 0001	SECURITY REQUIREMENTS FOR CRYPTOGRAPHIC MODULES
IEEE 802.1Q-2014	IEEE Standard for Local and metropolitan area networks--Bridges and Bridged Networks
ISO/IEC 17799:2005	Information technology Security techniques Code of practice for information security management

Categories associated with this Standard - (Show below) - (Hide below)

Sub-Categories associated with this Standard - (Show below) - (Hide below)

Add To Cart

Product Format

Quantity

Buy now

Add to cart

Create account