Security for industrial automation and control systems, Part 4-2: Technical security requirements for IACS components
|Publication Date:||13 August 2018|
This document in the ISA‑62443 series provides detailed technical control system component requirements (CRs) associated with the seven foundational requirements (FRs) described in ISA‑62443‑1‑1  including defining the requirements for control system capability security levels and their components, SL-C(component).
As defined in ISA‑62443‑1‑1 there are a total of seven Foundational Requirements (FRs):
a) Identification and authentication control (IAC),
b) Use control (UC),
c) System integrity (SI), d) Data confidentiality (DC),
e) Restricted data flow (RDF),
f) Timely response to events (TRE), and
g) Resource availability (RA).
These seven FRs are the foundation for defining control system security capability levels. Defining security capability levels for the control system component is the goal and objective of this document as opposed to SL-T or achieved SLs (SL-A), which are out of scope.
NOTE Refer to ISA‑62443‑2‑1  for an equivalent set of non-technical, program-related, capability requirements necessary for fully achieving a SL-T(control system).