ISA-TR62443-2-3:2015

ISA-TR62443-2-3:2015

Security for industrial automation and control systems Part 2-3: Patch management in the IACS environment

273,00 €

Détails

ISA-TR62443-2-3 describes requirements for asset owners and industrial automation and control system (IACS) product suppliers that have established and are now maintaining an IACS patch management program.



This technical report recommends a defined format for the distribution of information about security patches from asset owners to IACS product suppliers, a definition of some of the activities associated with the development of the patch information by IACS product suppliers and deployment and installation of the patches by asset owners. The exchange format and activities are defined for use in security related patches, however, it may also be applicable for non-security related patches or updates.



The technical report does not differentiate between patches made available for the operating systems (OSs), applications or devices. It does not differentiate between the product suppliers that supply the infrastructure components or the IACS applications, it provides guidance for all patches applicable to the IACS. Additionally, the type of patch can be for the resolution of bugs, reliability issues, operability issues or security vulnerabilities.

Informations supplémentaires

Auteur International Society of Automation (ISA)
Edité par ISA
Type de document Norme
ICS 35.040 : Jeux de caractères et codage de l'information
35.240.50 : Applications des TI dans l'industrie
Nombre de pages 70
Historique
Mot-clé ISA TR62443,ISA-TR62443,ISA-TR62443-2,TR62443,ISA-TR62443-2-3-2015