BS EN IEC 62443‑4‑2 is part fourth of the multi-series standard IEC 62443 that provides detailed technical control system component requirements (CRs) associated with the seven foundational requirements (FRs) described in IEC TS 62443-1-1 including defining the requirements for control system capability security levels and their components, SL-C(component). As defined in IEC TS 62443-1-1 there are a total of seven foundational requirements (FRs):
These seven FRs are the foundation for defining control system security capability levels.
Defining security capability levels for the control system component is the goal and objective of this document as opposed to SL-T or achieved SLs (SL-A), which are out of scope.
BS EN IEC 62443‑4‑2 on technical security requirements for IACS components is applicable to:
You can use BS EN IEC 62443‑4‑2 to understand the requirements placed on control system components for specific security capability levels (SL-C) of those components. A component may not provide a required capability itself but may be designed to integrate with a higher-level entity and thus benefit from that entity’s capability – for example an embedded device may not be maintaining a user directory itself, but may integrate with a system wide authentication and authorization service and thus still meet the requirements to provide individual user authentication, authorization and management capabilities.
BS EN IEC 62443‑4‑2 guides you as to which requirements can be allocated and which requirements should be native in the components. As defined in Practice 8 of IEC 62443‑4‑1, the product supplier will provide documentation on how to properly integrate the component into a system to meet a specific SL-T.
EN 62443-4-2 Ed 1.0
IEC 62443-4-2 Ed.1.0
CLC/TR 50173-99-2:2010