Last updated on August 8 2024, first published on March 16 2023 / PL / Reading time: 3 min.

IEC 62443-2-3: These manufacturers support the standard

IEC 62443 is an international series of standards for cybersecurity in industrial automation. One of these standards is IEC 62443 2-3, Patch Management in IACS Environments. It aims to close security gaps in operating systems and applications.

We show you which manufacturers already support this patch management standard.

 

Goals of the IEC 62443

The main goal of IEC 62443 is to identify possible vulnerabilities in industrial control and communication technology and to develop adequate protective measures. Here you will find the structure of the IEC 62443 series of standards:

 

If you want to learn more about the standard, take a look at our Industrial IT Glossary article or read about it at the International Society of Automation (ISA).

 

 

IEC 62443-2-3: Patch Management in IACS Environments

According to the Department of Homeland Security and the “Seven Strategies to Defend ICSs” patch and configuration management is the second most important factor in preventing attacks on industrial systems at 29%. The BSI also has a corresponding component in its IT baseline protection with OPS.1.1.3: “Patch and Change Management.”

IEC 62443-2-3 is therefore an important component within the series of standards and focuses on patch management in IACS environments.

Unfortunately, the patch management process can be very time-consuming, labour-intensive and therefore costly if it is not automated as far as possible.

With IEC 62443-2-3, the ISA99 or IEC has created a “Technical Report” with a standardized XML format, which provides system operators with the results of manufacturer compatibility tests and can be used to automatically release or prevent corresponding updates for affected systems. This not only significantly reduces the amount of manual testing required, but also minimizes the potential for errors when creating and maintaining approved lists in the patch management solution.

 

 

Manufacturer overview

Vendor Patch Compatibility of IEC 62443-2-3

Here you will find a regularly updated overview of Vendor Patch Compatibility (VPC), which summarizes the current status of the most important manufacturers and integrators.

 

 

IEC 62443-2-3-compatible manufacturers

These manufacturers carry out internal tests and issue update approvals. They also provide IEC 62443-2-3-compliant XML.

 


Manufacturer with publicly accessible update information

These manufacturers carry out internal tests and issue update approvals. In addition, they make their update information publicly available in various ways.

 


Manufacturer with compatibility tests

We are not aware of any regular release process for these manufacturers, but internal compatibility tests are carried out on the updates.

 


Manufacturers with their own services

These manufacturers offer their customers special offers and services for update management.

 

Do you need help with patch management?

With ondeso SR you are able to patch your production computers automatically after a one-time configuration.

update-software-verteilung-ondeso-industrial-it
Are you missing a manufacturer or integrator? Write to us!

Are you a manufacturer or integrator and do you support the IEC 62443-2-3 standard? Or do you know other manufacturers that should not be missing on this list? Then send us a message and we will be happy to include you in the overview.

flur-ueber-ondeso

About ondeso

Here you can learn more about our company and our expertise as a pioneer and market leader.

ondeso-sr-small-new

ondeso SR

Click here for more information about our OT administration software designed for industrial PCs.

kontakt-ondeso-it

Contact us

Would you like to learn more? Do not hesitate to contact us, we will be happy to help you.