The IEC 62443-4-1 certification demonstrates that product development meets the highest safety requirements.
With its certification, the German certification body T-V Rheinland has confirmed that the development processes and product life cycles at Endress-Hauser are in line with the international industrial standard IEC 62443-4-1 for cybersecurity. By adhering to this certified directive, the company ensures that its products contribute to the reliability and safety of its customers' facilities.
Endress-Hauser's measurement instruments and components ensure that the many process engineering systems around the world operate safely and reliably. For industrial facilities and industrial Internet of Things (IIoT) environments, cybersecurity is becoming a growing concern. As networking and connectivity become more widespread, it is imperative that companies protect their production systems and automation technology from unauthorized access.
To optimally protect the production systems of its customers, Endress-Hauser lays the foundations for a secure operation from the planning and development stages of its products and services. In March, one of the world's leading testing service providers, T-V Rheinland, issued an IEC 62443-4-1 certification that this product development process, along with the product lifecycle, meets the highest international standards.
"It's a testament to the quality of our work, which we are extremely pleased with,"says Mirko Brcic, Head of Product Safety at Endress-Hauser. In light of the technical advances underway - just think of the advanced physical layer or the IIoT products - it is very important for us not only to accelerate digitization, but also to continue to keep our instruments and software safe at the same pace.
Strict requirements for automation technologies
By aligning the processes with IEC 62443-4-1, Endress-Hauser ensures that products are developed from the outset with all safety requirements in mind and that the components it delivers pose no risk. In addition, other measures include code scans and revisions, penetration tests and the installation of security updates. In total, eight different areas define what a secure product development process should look like:
- Security management
- Specification of security requirements
- Secure design guidelines
- Secure implementation guidelines
- Checking and validating security properties
- Vulnerability management
- Creating and publishing security updates
- Documentation of security products
Strong capacity for innovation
"With IEC 62443-4-1, a proven certification standard in the field of industrial automation, we ensure that all employees involved in these internal processes work at the same level of safety. This allows us to lay the foundation for high-quality measurements, IIoT products and automation for connected production environments, now and in the future,"adds Mirko Brcic.
Endress-Hauser has a long tradition of investing in innovation. Last year, the IETF recommended the standardization of the innovative CPace security technology developed by Endress-Hauser, which allows access to password-protected instruments. Patent applications are also regularly at a high level. The group currently has a portfolio of 8,900 patents and patent applications.
Photo © Endress-Hauser