• Your shopping cart is empty!

PDF Preview

BS PD IEC/TR 62443-2-3:2015

Security for industrial automation and control systems-Patch management in the IACS environment

BSI Group, 07/31/2015

Publisher: BS

File Format: PDF

$175.00$350.52


Published:31/07/2015

Pages:66

File Size:1 file , 2.3 MB

Note:This product is unavailable in Ukraine, Russia, Belarus

BS PD IEC/TR 62443-2-3:2015, which is a Technical Report, describes requirements for asset owners and industrial automation and control system (IACS) product suppliers that have established and are now maintaining an IACS patch management program.

This Technical Report recommends a defined format for the distribution of information about security patches from asset owners to IACS product suppliers, a definition of some of the activities associated with the development of the patch information by IACS product suppliers and deployment and installation of the patches by asset owners. The exchange format and activities are defined for use in security related patches; however, it may also be applicable for non-security related patches or updates.

The Technical Report does not differentiate between patches made available for the operating systems (OSs), applications or devices. It does not differentiate between the product suppliers that supply the infrastructure components or the IACS applications; it provides guidance for all patches applicable to the IACS. Additionally, the type of patch can be for the resolution of bugs, reliability issues, operability issues or security vulnerabilities.

NOTE 1 This Technical Report does not provide guidance on the ethics and approaches for the discovery and disclosure of security vulnerabilities affecting IACS. This is a general issue outside the scope of this report.

NOTE 2 This Technical Report does not provide guidance on the mitigation of vulnerabilities in the period between when the vulnerability is discovered and the date that the patch resolving the vulnerability is created. For guidance on multiple countermeasures to mitigate security risks as part of an IACS security management system (IACS-SMS), refer to, Annexes B.4.5, B.4.6 and B.8.5 in this Technical Report and other documents in the IEC 62443 series.


Cross References:
IEC TS 62443-1-1
IEC 62443-2-1
IEC 62443-2-1
IEC 62443-2-4
IEC 62443-4-1
ISO 639-1:2002
ISO 3166-1:2006
ISO 3166-2:2007
ISO 4217:2008
ISO 8601:2004
ECE/TRADE/C/CEFACT/2009/24
ECE/TRADE/C/CEFACT/2009/25


All current amendments available at time of purchase are included with the purchase of this document.

More BS standard pdf

BS 03/100165 DC

BS 03/100165 DC

IEC 60603-7-2. Ed.1.0. Connectors for electronic equipment. Part 7-2: Detail specification for 8-way, unshielded, free and fixed connectors, for data transmission with frequencies up to 100 MHz

$113.00 $227.94

BS 03/100166 DC

BS 03/100166 DC

IEC 60603-7-5. Ed.1.0. Connectors for electronic equipment. Part 7-5: Detail specification for 8-way, shielded, free and fixed connectors, for data transmissions with frequencies up to 250 MHz

$120.00 $241.64

BS 04/614028 DC

BS 04/614028 DC

ISO 18629-12. Industrial automation systems and integration. Process specification language. Outer core

$135.00 $270.80

BS PD IEC TR 61292-2:2003

BS PD IEC TR 61292-2:2003

Optical amplifier technical reports-Theoretical background for noise figure evaluation using the electrical spectrum analyzer

$90.00 $180.34