IEC 62443 is an international series of standards for cybersecurity in industrial automation. One of these standards is IEC 62443 2-3, Patch Management in IACS Environments. It aims to close security gaps in operating systems and applications.
We show you which manufacturers already support this patch management standard.
Goals of the IEC 62443
The main goal of IEC 62443 is to identify possible vulnerabilities in industrial control and communication technology and to develop adequate protective measures. Here you will find the structure of the IEC 62443 series of standards:
If you want to learn more about the standard, take a look at our Industrial IT Glossary article or read about it at the International Society of Automation (ISA).
According to the Department of Homeland Security and the “Seven Strategies to Defend ICSs” patch and configuration management is the second most important factor in preventing attacks on industrial systems at 29%. The BSI also has a corresponding component in its IT baseline protection with OPS.1.1.3: “Patch and Change Management.”
IEC 62443-2-3 is therefore an important component within the series of standards and focuses on patch management in IACS environments.
Unfortunately, the patch management process can be very time-consuming, labour-intensive and therefore costly if it is not automated as far as possible.
With IEC 62443-2-3, the ISA99 or IEC has created a “Technical Report” with a standardized XML format, which provides system operators with the results of manufacturer compatibility tests and can be used to automatically release or prevent corresponding updates for affected systems. This not only significantly reduces the amount of manual testing required, but also minimizes the potential for errors when creating and maintaining approved lists in the patch management solution.
Manufacturer overview
Here you will find a regularly updated overview of Vendor Patch Compatibility (VPC), which summarizes the current status of the most important manufacturers and integrators.
These manufacturers carry out internal tests and issue update approvals. They also provide IEC 62443-2-3-compliant XML.
These manufacturers carry out internal tests and issue update approvals. In addition, they make their update information publicly available in various ways.
We are not aware of any regular release process for these manufacturers, but internal compatibility tests are carried out on the updates.
These manufacturers offer their customers special offers and services for update management.
With ondeso SR you are able to patch your production computers automatically after a one-time configuration.
Are you a manufacturer or integrator and do you support the IEC 62443-2-3 standard? Or do you know other manufacturers that should not be missing on this list? Then send us a message and we will be happy to include you in the overview.
Here you can learn more about our company and our expertise as a pioneer and market leader.
Click here for more information about our OT administration software designed for industrial PCs.
Would you like to learn more? Do not hesitate to contact us, we will be happy to help you.