Cart (0)
  • No items in cart.
Total
$0
There is a technical issue about last added item. You can click "Report to us" button to let us know and we resolve the issue and return back to you or you can continue without last item via click to continue button.
Home
Content
Tour
eLibrary
Store
Search book title
Filters:
FORMAT
BOOKS
All Books
PACKAGES
All Packages
EDITION
to
PUBLISHER
AABC
(1)
AAMI
(338)
ACI
(589)
AECDAILY
(599)
AISC
(55)
ASA
(234)
ASCE
(1006)
ASHRAE
(690)
ASME
(2183)
ASSE
(117)
ASTM
(95207)
AWC
(63)
AWWA
(575)
BHMA
(124)
BICSI
(33)
BIFMA
(21)
BOMA
(20)
BSI
(95391)
CHD
(3)
CRSI
(17)
IAHSS
(1)
IAPMO
(374)
ICC
(322)
IEEE
(6938)
IES
(241)
ISEA
(21)
Joint Commission
(184)
Joint Commission Int.
(1)
NETA
(6)
NFPA
(1667)
TCNA
(17)
TMS
(19)
USGBC
(28)
WILEY
(4)
 
AR
(6)
AZ
(7)
CA
(115)
CT
(3)
FL
(57)
ID
(5)
IL
(5)
IN
(1)
KY
(1)
LA
(2)
MI
(25)
MN
(27)
NC
(27)
NJ
(13)
NY
(61)
OH
(24)
OR
(22)
PA
(7)
RI
(8)
SC
(20)
SD
(1)
TX
(3)
VA
(50)
VT
(6)
WA
(33)
CONTENT TYPE
 Act
 Admin Code
 Announcements
 Bill
 Book
 CADD File
 CAN
 CEU
 Charter
 Checklist
 City Code
 Code
 Commentary
 Comprehensive Plan
 Conference Paper
 County Code
 Course
 DHS Documents
 Document
 Errata
 Executive Regulation
 Federal Guideline
 Firm Content
 Guideline
 Handbook
 Interpretation
 Journal
 Land Use and Development
 Law
 Legislative Rule
 Local Amendment
 Local Code
 Local Document
 Local Regulation
 Local Standards
 Manual
 Model Code
 Model Standard
 Notice
 Ordinance
 Other
 Paperback
 PASS
 Periodicals
 PIN
 Plan
 Policy
 Product
 Product - Data Sheet
 Program
 Provisions
 Requirements
 Revisions
 Rules & Regulations
 Standards
 State Amendment
 State Code
 State Manual
 State Plan
 State Standards
 Statute
 Study Guide
 Supplement
 Sustainability
 Technical Bulletin
 All
  • BSI
    PD IEC/TR 62443-2-3:2015 Security for industrial automation and control systems - Patch management in the IACS environment
    Edition: 2015
    $526.05
    / user per year

Description of PD IEC/TR 62443-2-3:2015 2015

This part of This part of IEC 62443 , which is a Technical Report, describes requirements for asset owners and industrial automation and control system (IACS) product suppliers that have established and are now maintaining an IACS patch management program.

This Technical Report recommends a defined format for the distribution of information about security patches from asset owners to IACS product suppliers, a definition of some of the activities associated with the development of the patch information by IACS product suppliers and deployment and installation of the patches by asset owners. The exchange format and activities are defined for use in security related patches; however, it may also be applicable for non-security related patches or updates.

The Technical Report does not differentiate between patches made available for the operating systems (OSs), applications or devices. It does not differentiate between the product suppliers that supply the infrastructure components or the IACS applications; it provides guidance for all patches applicable to the IACS. Additionally, the type of patch can be for the resolution of bugs, reliability issues, operability issues or security vulnerabilities.

NOTE 1

This Technical Report does not provide guidance on the ethics and approaches for the discovery and disclosure of security vulnerabilities affecting IACS. This is a general issue outside the scope of this report.

NOTE 2

This Technical Report does not provide guidance on the mitigation of vulnerabilities in the period between when the vulnerability is discovered and the date that the patch resolving the vulnerability is created. For guidance on multiple countermeasures to mitigate security risks as part of an IACS security management system (IACS-SMS), refer to, Annexes B.4.5, B.4.6 and B.8.5 in this Technical Report and other documents in the IEC 62443 series.



Standard NumberPD IEC/TR 62443-2-3:2015
TitleSecurity for industrial automation and control systems - Patch management in the IACS environment
StatusDefinitive
Publication Date2015-07-31
Identical National Standard OfIEC TR 62443-2-3:2015
DescriptorsData security, Industrial, Risk assessment, Communication networks, Access control (data), Data processing, Information exchange, Management, Data storage protection, Security, Process control, Computer networks, Control systems, Automatic control systems
ICS35.040.40 Coding of audio, video, multimedia and hypermedia information, 35.100.05 Multilayer applications, 35.030 IT Security, 35.100.01 Open systems interconnection in general, 25.040.40 Industrial process measurement and control
CommitteeGEL/65
ISBN978 0 580 83544 5
PublisherBSI
Pages66

About BSI

BSI Group, also known as the British Standards Institution is the national standards body of the United Kingdom. BSI produces technical standards on a wide range of products and services and also supplies certification and standards-related services to businesses.
GROUPS
X