iTeh StandardsiTeh Standards
EURUSD
Your shopping cart is empty.
IEC

IEC TR 62443-2-3:2015

(Main)

Security for industrial automation and control systems - Part 2-3: Patch management in the IACS environment

Security for industrial automation and control systems - Part 2-3: Patch management in the IACS environment

IEC TR 62443-2-3:2015(E) describes requirements for asset owners and industrial automation and control system (IACS) product suppliers that have established and are now maintaining an IACS patch management program. This Technical Report recommends a defined format for the distribution of information about security patches from asset owners to IACS product suppliers, a definition of some of the activities associated with the development of the patch information by IACS product suppliers and deployment and installation of the patches by asset owners. The exchange format and activities are defined for use in security related patches; however, it may also be applicable for non-security related patches or updates.

General Information

Status
Published
Publication Date
29-Jun-2015
ICS
25.040.40 - Industrial process measurement and control
35.040.40 - Coding of audio, video, multimedia and hypermedia information
35.100.05 - Multilayer applications
Technical Committee
TC 65 - Industrial-process measurement, control and automation
Drafting Committee
WG 10 - TC 65/WG 10
Current Stage
PPUB - Publication issued
Start Date
30-Sep-2015
Completion Date
30-Jun-2015
Ref Project

Buy Standard

IEC TR 62443-2-3:2015 - Security for industrial automation and control systems - Part 2-3: Patch management in the IACS environmentIEC TR 62443-2-3:2015 - Security for industrial automation and control systems - Part 2-3: Patch management in the IACS environment
PreviousNext
Technical report
IEC TR 62443-2-3:2015 - Security for industrial automation and control systems - Part 2-3: Patch management in the IACS environment
English language
61 pages
sale 15% off
Preview
sale 15% off
Preview

Standards Content (Sample)

IEC TR 62443-2-3
®

Edition 1.0 2015-06
TECHNICAL
REPORT

colour
inside


Security for industrial automation and control systems –
Part 2-3: Patch management in the IACS environment
IEC TR 62443-2-3:2015-06(en)

---------------------- Page: 1 ----------------------
THIS PUBLICATION IS COPYRIGHT PROTECTED
Copyright © 2015 IEC, Geneva, Switzerland

All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized in any form
or by any means, electronic or mechanical, including photocopying and microfilm, without permission in writing from
either IEC or IEC's member National Committee in the country of the requester. If you have any questions about IEC
copyright or have an enquiry about obtaining additional rights to this publication, please contact the address below or
your local IEC member National Committee for further information.


IEC Central Office Tel.: +41 22 919 02 11
3, rue de Varembé Fax: +41 22 919 03 00
CH-1211 Geneva 20 info@iec.ch
Switzerland www.iec.ch

About the IEC
The International Electrotechnical Commission (IEC) is the leading global organization that prepares and publishes
International Standards for all electrical, electronic and related technologies.

About IEC publications
The technical content of IEC publications is kept under constant review by the IEC. Please make sure that you have the
latest edition, a corrigenda or an amendment might have been published.

IEC Catalogue - webstore.iec.ch/catalogue Electropedia - www.electropedia.org
The stand-alone application for consulting the entire The world's leading online dictionary of electronic and
bibliographical information on IEC International Standards, electrical terms containing more than 30 000 terms and
Technical Specifications, Technical Reports and other definitions in English and French, with equivalent terms in 15
documents. Available for PC, Mac OS, Android Tablets and additional languages. Also known as the International
iPad. Electrotechnical Vocabulary (IEV) online.

IEC publications search - www.iec.ch/searchpub IEC Glossary - std.iec.ch/glossary
The advanced search enables to find IEC publications by a More than 60 000 electrotechnical terminology entries in
variety of criteria (reference number, text, technical English and French extracted from the Terms and Definitions
committee,…). It also gives information on projects, replaced clause of IEC publications issued since 2002. Some entries
and withdrawn publications. have been collected from earlier publications of IEC TC 37,

77, 86 and CISPR.
IEC Just Published - webstore.iec.ch/justpublished
Stay up to date on all new IEC publications. Just Published IEC Customer Service Centre - webstore.iec.ch/csc
details all new publications released. Available online and If you wish to give us your feedback on this publication or
also once a month by email. need further assistance, please contact the Customer Service
Centre: csc@iec.ch.

---------------------- Page: 2 ----------------------
IEC TR 62443-2-3

®


Edition 1.0 2015-06




TECHNICAL



REPORT









colour

inside










Security for industrial automation and control systems –

Part 2-3: Patch management in the IACS environment



























INTERNATIONAL

ELECTROTECHNICAL


COMMISSION





ICS : 25.040.40; 35.040; 35.100 ISBN 978-2-8322-2768-8




  Warning! Make sure that you obtained this publication from an authorized distributor.


® Registered trademark of the International Electrotechnical Commission

---------------------- Page: 3 ----------------------
– 2 – IEC TR 62443-2-3:2015 © IEC 2015
CONTENTS
FOREWORD . 5
INTRODUCTION . 7
1 Scope . 8
2 Normative references. 8
3 Terms, definitions, abbreviated terms and acronyms . 8
3.1 Terms and definitions . 8
3.2 Abbreviated terms and acronyms . 9
4 Industrial automation and control system patching . 11
4.1 Patching problems faced in industrial automation and control systems . 11
4.2 Impacts of poor patch management . 11
4.3 Obsolete IACS patc
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

This May Also Interest You

IEC
IEC TR 62443-3-1:2009(Main)
Industrial communication networks - Network and system security - Part 3-1: Security technologies for industrial automation and control systems

IEC/TR 62443-3-1:2009(E) provides a current assessment of various cybersecurity tools, mitigation counter-measures, and technologies that may effectively apply to the modern electronically based IACSs regulating and monitoring numerous industries and critical infrastructures. It describes several categories of control system-centric cybersecurity technologies, the types of products available in those categories, the pros and cons of using those products in the automated IACS environments, relative to the expected threats and known cyber vulnerabilities, and, most important, the preliminary recommendations and guidance for using these cybersecurity technology products and/or countermeasures.

  • Technical report
    102 pages
    English language
    sale 15% off
IEC
IEC TR 62443-3-1:2009(Main)
Industrial communication networks - Network and system security - Part 3-1: Security technologies for industrial automation and control systems

IEC/TR 62443-3-1:2009(E) provides a current assessment of various cybersecurity tools, mitigation counter-measures, and technologies that may effectively apply to the modern electronically based IACSs regulating and monitoring numerous industries and critical infrastructures. It describes several categories of control system-centric cybersecurity technologies, the types of products available in those categories, the pros and cons of using those products in the automated IACS environments, relative to the expected threats and known cyber vulnerabilities, and, most important, the preliminary recommendations and guidance for using these cybersecurity technology products and/or countermeasures.

  • Technical report
    102 pages
    English language
    sale 15% off
IEC
IEC 62386-104:2019/AMD1:2023(Amendment)
Amendment 1 - Digital addressable lighting interface - Part 104: General requirements - Wireless and alternative wired system components
  • Standard
    6 pages
    English and French language
    sale 15% off
IEC
IEC 61851-24:2023(Main)
Electric vehicle conductive charging system - Part 24: Digital communication between a DC EV supply equipment and an electric vehicle for control of DC charging

IEC 61851-24:2023, together with IEC 61851-23, applies to digital communication between a DC EV supply equipment and an electric road vehicle (EV) for control of conductive DC power transfer, with a rated supply voltage up to 1 000 V AC or up to 1 500 V DC and a rated output voltage up to 1 500 V DC.
This document also applies to digital communication between the DC EV charging/discharging station and the EV for system A, as specified in Annex A.
The EV charging mode is mode 4, according to IEC 61851-23.
Annex A, Annex B, and Annex C give descriptions of digital communications for control of DC charging specific to DC EV charging systems A, B and C as defined in IEC 61851-23.
This second edition cancels and replaces the first edition published in 2014. This edition constitutes a technical revision.
This edition includes the following significant technical changes with respect to the previous edition:
- Annex A and Annex B have been updated in line with IEC 61851-23:2023 and relevant standards.

  • Standard
    105 pages
    English and French language
    sale 15% off
IEC
IEC 62977-2-11:2023(Main)
Electronic displays - Part 2-11: Measurement of optical characteristics - Local luminance and uniformity

IEC 62977-2-11:2023 specifies the local luminance and uniformity measurement methods of emissive displays. The light measuring device’s (LMD) measurement field will cover more than 500 pixels of TVs, monitors or signage displays. The local luminance and uniformity measurement methods identify optical variations within the local block where over 500 emission pixels are regularly placed.

  • Standard
    20 pages
    English language
    sale 15% off
IEC
IEC 61851-23:2023(Main)
Electric vehicle conductive charging system - Part 23: DC electric vehicle supply equipment

IEC 61851-23:2023 applies to the EV supply equipment to provide energy transfer between the supply network and electric vehicles (EVs), with a rated maximum voltage at side A of up to 1 000 V AC or up to 1 500 V DC and a rated maximum voltage at side B up to 1 500 V DC.
This document specifies the EV supply equipment of system A, system B and system C as defined in Annex AA, Annex BB and Annex CC. Other systems are under consideration.
This document provides the requirements for bidirectional power transfer (BPT) EV supply equipment for system A, with a rated maximum voltage at side A up to 1 000 V AC or 1 500 V DC. The requirements for reverse power transfer (RPT) and BPT for system B and system C are under consideration and are not specified in this document.
This second edition cancels and replaces the first edition published in 2014. This edition constitutes a technical revision. This edition includes the following significant technical changes with respect to the previous edition:
a) the structure has been rearranged according to IEC 61851-1:2017;
b) electrical safety requirements in Clause 8 and Clause 12 have been revised based on the requirements in IEC 62477-1 and inspired by the hazard based safety approach of IEC 62368-1;
c) test methods for checking conformity to the stated requirements have been mostly added; general provisions for compliance tests have been specified in Clause 102;
d) specific requirements and/or information for the following functions have been added: energy transfer with thermal management system (101.2), bi-directional power transfer control (Annex DD), multi- side B separated EV supply equipment (Annex FF), and communication and energy transfer process (Annex GG);
e) Annex AA (system A), Annex BB (system B) and Annex CC (system C) have been updated including additions in conjunction with b) and c). This document has been limited to be applicable to system A, system B and system C;
f) the former Annex DD and Annex EE have been deleted. A new Annex EE, with the requirements for the artificial test load, has been added.
g) a new informative annex for the touch current and the touch impulse current (Annex HH) has been added

  • Standard
    383 pages
    English language
    sale 15% off
IEC
IEC 62056-6-1:2023(Main)
Electricity metering data exchange - The DLMS®/COSEM suite - Part 6-1: Object Identification System (OBIS)

IEC 62056-6-1:2023 is available as IEC 62056-6-1:2023 RLV which contains the International Standard and its Redline version, showing all changes of the technical content compared to the previous edition.IEC 62056-6-1:2023 specifies the overall structure of the OBject Identification System (OBIS) and the mapping of all commonly used data items in metering equipment to their identification codes.OBIS provides a unique identifier for all data within the metering equipment, including not only measurement values, but also abstract values used for configuration or obtaining information about the behaviour of the metering equipment. The ID codes defined in this document are used for the identification of:
- logical names of the various instances of the ICs, or objects, as defined in IEC 62056‑6‑2:2023;
- data transmitted through communication lines;
- data displayed on the metering equipment, see Clause A.2 in Annex A.
This document applies to all types of metering equipment, such as fully integrated meters, modular meters, tariff attachments, data concentrators, etc.
To cover metering equipment measuring energy types other than electricity, combined metering equipment measuring more than one type of energy or metering equipment with several physical measurement channels, the concepts of medium and channels are introduced. This allows meter data originating from different sources to be identified. While this document fully defines the structure of the identification system for other media, the mapping of non-electrical energy related data items to ID codes is completed separately
This fourth edition cancels and replaces the third edition of IEC 62056-6-1, published in 2017. This edition constitutes a technical revision. The main technical changes with respect to the previous edition are listed in Annex B (informative).

  • Standard
    87 pages
    English and French language
    sale 15% off
IEC
IEC 60228:2023(Main)
Conductors of insulated cables

IEC 60228:2023 specifies the nominal cross-sectional areas, in the range 0,5 mm2 to 3 500 mm2, for conductors in electric power cables and cords of a wide range of types. Requirements for numbers and sizes of wires and resistance values are also included. These conductors include solid, stranded and Milliken, copper, aluminium and aluminium alloy conductors in cables for fixed installations and flexible copper conductors. This document does not apply to conductors for telecommunication purposes. The applicability of this document to a particular type of cable is as specified in the standard for the type of cable. Unless specified otherwise in a particular clause, IEC 60028 ED4 relates to the conductors in the finished cable and not to the conductor as made or supplied for inclusion into a cable. Conductors described in this document are specified in metric sizes. Informative annexes provide supplementary information covering temperature correction factors for resistance measurement (Annex B) and guidance on dimensional limits of circular conductors (Annex C). This document has the status of a horizontal publication in accordance with IEC Guide 108.

  • Standard
    70 pages
    English language
    sale 15% off
IEC
IEC 60335-2-4:2023(Main)
Household and similar electrical appliances - Safety - Part 2-4: Particular requirements for spin extractors

IEC 60335-2-4:2023 is available as IEC 60335-2-4:2023 RLV which contains the International Standard and its Redline version, showing all changes of the technical content compared to the previous edition.IEC 60335-2-4:2023 deals with the safety of:
- stand-alone electric spin extractors, and
- spin extractors incorporated in washing machines that have separate containers for washing and spin extraction
for household and similar purposes that have a capacity not exceeding 10 kg of dry cloth and a drum peripheral speed not exceeding 50 m/s, their rated voltages being not more than 250 V for single-phase appliances and 480 V for other appliances including direct current (DC) supplied appliances and battery-operated appliances.
Appliances not intended for normal household use but which nevertheless can be a source of danger to the public, such as spin extractors intended to be used by laymen in shops, in light industry and on farms and spin extractors for communal use in blocks of flats or in launderettes, are within the scope of this standard.
As far as is practicable, this standard deals with the reasonably foreseeable hazards presented by appliances that are encountered by all persons. However, in general, it does not take into account:
- persons (including children) whose physical, sensory or mental capabilities; or lack of experience and knowledge prevents them from using the appliance safely without supervision or instruction;
- children playing with the appliance.
Attention is drawn to the fact that:
- for appliances intended to be used in vehicles or on board ships or aircraft, additional requirements can be necessary;
- in many countries, additional requirements are specified by the national health authorities, the national authorities responsible for the protection of labour, the national water supply authorities and similar authorities.
This standard does not apply to:
- appliances intended exclusively for industrial purposes;
- appliances intended to be used in locations where special conditions prevail, such as the presence of a corrosive or explosive atmosphere (dust, vapour or gas).
This eighth edition cancels and replaces the seventh edition published in 2021. This edition constitutes a technical revision.
This edition includes the following significant technical changes with respect to the previous edition:
a) alignment with IEC 60335-1:2020;
b) conversion of some notes to normative text (20.103, 20.104, 22.101);
c) addition of test probe 19 for accessibility of live parts and moving parts (8.1.1, 20.2);
d) addition of accessible surface temperature limits (11.3, 11.8);
e) specified operating conditions for battery operated appliances (B.11.1).
This part 2 is to be used in conjunction with the latest edition of IEC 60335-1 and its amendments unless that edition precludes it; in that case, the latest edition that does not preclude it is used. It was established on the basis of the sixth edition (2020) of that standard.

  • Standard
    47 pages
    English and French language
    sale 15% off
IEC
IEC TR 62899-304-1:2023(Main)
Printed electronics - Part 304-1: Equipment - Sintering - Temperature measurement method for photonic sintering system

IEC TR 62899-304-1:2023, which is a technical report, provides technical information relating to surface temperature measurement of the substrate containing the printed patterns and films applicable to the photonic sintering system used in the printed electronics industry.

  • Technical report
    16 pages
    English language
    sale 15% off