Rockwell Automation Obtains Highest Level Product Security IEC Security Certification

Rockwell Automation Obtains Highest Level Product Security IEC Security Certification

June 22, 2023

Rockwell Automation, Inc. has recently announced it has been recognized for achieving Maturity Level 4 of the globally recognized The International Electrotechnical Commission (IEC)  62443-4-1 industrial cybersecurity certification, the highest level. Certification of the Rockwell Automation SDL was performed independently by TÜV Rheinland.

This certification by the IEC, a global, not-for-profit membership organization that assesses the needs for standards across various industrial applications, demonstrates Rockwell’s continued commitment to security. It represents the strong practices and protocols in place globally to bring secure solutions to our customers. Maturity Level 4 recognizes the highly mature and ubiquitously deployed cybersecurity practices used around the world. In general, the IEC 62443-4-1 standard defines a secure development lifecycle (SDL) for the purpose of developing and maintaining products that are secure by design, used in industrial automation and control systems. Along with other cybersecurity achievements in recent years, Rockwell Automation stands out as a global leader in this area.

“Cybersecurity continues to be top of mind for customers around the world. The IEC 62443 series of standards and certifications allow for customers to make more informed decisions when sourcing, designing, and building their industrial automation and information solutions,” said Tony Baker, vice president and chief product security officer, Rockwell Automation. “These standards provide customers with confidence that the technologies were designed with security in mind, provide the appropriate security controls to secure their application, and that Rockwell Automation will provide on-going security support throughout the products useful life.”

Tony Baker, vice president and chief product security officer, Rockwell Automation
Rockwell Automation has achieved numerous milestones in recent years in cybersecurity including:
  • Introduction of the world’s first programmable automation controller to be certified compliant with the IEC 62443-4-2 security standard by TÜV Rheinland.
  • Introduction of ODVA CIP Security capable systems for the plant floor.
  • Become a founding member of the ISA Global Cybersecurity Alliance.
  • Achieve IEC 62443-3-3 Process Certification by TÜV Rheinland.
  • Achieve ISO 27001 Certification for remote support through the Standards Institute of Israel.
  • Provide comprehensive cybersecurity services. 

In February 2023, Rockwell Automation was notified that it passed our external audit by TÜV Rheinland. Rockwell product security is now certified to Maturity Level 4 for IEC-62443-4-1 globally. IEC 62443-4-1 defines secure development lifecycle (SDL) cybersecurity requirements for industrial automation, control systems, IIoT, building management, and medical device products. These requirements can be applied to new or existing processes for developing, maintaining, and retiring hardware, software or firmware.

IEC62443 is also based on CMMI with five levels of increasing maturity (summarized in Fig. 1). Maturity Level 4 demonstrates that Rockwell has a highly mature and ubiquitously deployed cybersecurity practice for industrial automation and control systems products.

Source

Related Articles


Changing Scene


Sponsored Content
The Easy Way to the Industrial IoT

The way to the Industrial IoT does not have to be complicated. Whether access to valuable data is required or new, data-driven services are to be generated, Weidmuller enables its customers to go from data to value the easy way. Weidmuller’s comprehensive and cutting-edge IIoT portfolio applies to greenfield and brownfield applications. Weidmuller offers components and solutions from data acquisition, data pre-processing, data communication and data analysis.

Visit Weidmuller’s Industrial IoT Portfolio.


ADVANCED Motion Controls Takes Servo Drives to New Heights (and Depths) with FlexPro Extended Environment Product Line

Advanced Motion Controls is proud to announce the addition of six new CANopen servo drives with Extended Environment capabilities to their FlexPro line. These new drives join AMC’s existing EtherCAT Extended Environment FlexPro drives, making the FlexPro line the go-to solution for motion control applications in harsh environments.

Many motion control applications take place in conditions that are less than ideal, such as extreme temperatures, high and low pressures, shocks and vibrations, and contamination. Electronics, including servo drives, can malfunction or sustain permanent damage in these conditions.

Read More


Service Wire Co. Announces New Titles for Key Executives

Bruce Kesler and Mark Gatewood have been given new titles and responsibilities for Service Wire Co.

Bruce Kesler has assumed the role of Senior Director – Business Development. Bruce will be responsible for Service Wire’s largest strategic accounts and our growing Strategic Accounts Team.

Mark Gatewood has been promoted to the role of Vice President – Sales & Marketing. In this role, Gatewood will lead the efforts of Service Wire Company’s entire sales and marketing organization in all market verticals.

Read More


Tri-Mach Announces the Purchase of an Additional 45,000 sq ft. Facility

Tri-Mach Elmira Facility

Recently, Tri-Mach Inc. was thrilled to announce the addition of a new 45,000 sq ft. facility. Located at 285 Union St., Elmira, ON, this facility expands Tri-Mach’s capabilities, allowing them to better serve the growing needs of their customers.

Positioning for growth, this additional facility will allow Tri-Mach to continue taking on large-scale projects, enhance product performance testing, and provide equipment storage for their customers. The building will also be the new home to their Skilled Trades Centre of Excellence.

Read More


JMP Parent Company, CONVERGIX Acquires AGR Automation, Expanding Global Reach

Convergix Automation Solutions has completed the acquisition of AGR Automation (“AGR”), a UK-based provider of custom, high-performance automation design and systems integration primarily to the life sciences industry.

Following Convergix’s acquisitions of JMP Solutions in August 2021 and Classic Design in February 2022, AGR marks the third investment in Crestview’s strategy to build Convergix into a diversified automation solutions provider targeting the global $500+ billion market, with a particular focus on the $70 billion global systems integration and connectivity segments. Financial terms of the transaction were not disclosed.

Read More


Latest Articles

  • Implementing Functional Safety Requirements

    Implementing Functional Safety Requirements

    The Safety Functional Requirements Specification (SFRS; sometimes referred to as SRS or Safety Requirements Specification) is the plan for the safety controls on a machine and is the second step of the safety lifecycle. The SFRS document serves as a framework for the safety control system design, is informed by prior work done in the… Read More…

  • From Endress+Hauser, 24/7 Digital, Plant-Wide Health Monitoring for Rockwell Systems Optimizes Workflows and Processes

    From Endress+Hauser, 24/7 Digital, Plant-Wide Health Monitoring for Rockwell Systems Optimizes Workflows and Processes

    Endress+Hauser’s Asset Health Monitoring Solution–Rockwell Edition, now available for installation, provides operators with a centralized, digital overview of plant-wide device health to avoid unscheduled shutdowns and accelerate troubleshooting. It not only presents early visibility of problematic devices but distinguishes itself by adding likely causes and remedies to such a report so problems can be fixed… Read More…