Yokogawa Electric says that its control system development organisation has obtained ISASecure Security Development Lifecycle Assurance (SDLA) certification from the ISA Security Compliance Institute (ISCI).
This certification assures, through a third-party evaluation, that its control system development processes meet the requirements for developing secure products.
Yokogawa is the first control system product supplier to obtain this certification in Japan.
Recent cyber attacks targeting industrial control devices have disrupted production operations and resulted in the theft of data. Oil, petrochemical, natural gas, power, and other industries who operate critical infrastructure are increasingly paying special attention to the evaluation of cybersecurity features before deploying control systems and devices.
Yokogawa already has obtained ISASecure EDSA certification from the ISCI for the CENTUM VP integrated production control system and ProSafe-RS safety instrumented system, both of which are solutions in the OpreXControl and Safety System family.
This latest certification is for compliance with version 2.0.0 of the ISASecure SDLA certification specifications, and it has been granted to the organisation at the Yokogawa head office that develops control system products.
This certification was granted based on an examination that ascertained the organisation is in compliance with the IEC 62443-4-1 standard and certain other requirements.
In order to protect plants and other facilities against security threats and ensure stable and secure operations, it is essential to continuously engage in the study, design, operation, and evaluation of security measures.
Yokogawa provides solutions that support its customers’ security activities through every phase of the plant lifecycle, starting with product design and development and proceeding through to implementation of security measures in the system integration phase and security management in the operation phase. Yokogawa will continue to improve the cybersecurity solutions that it provides to ensure secure operations at its customers’ plants.
The ISCI is comprised mainly of members of the International Society of Automation (ISA) who are involved in industrial control system and device security. The ISCI’s ISASecure SDLA certification program was developed to evaluate the security development processes of organisations.
The ISASecure SDLA Version 2.0.0 specifications were released in February 2018. These specifications are based on the IEC 62443-4-1 industrial automation and control system development standard established by the International Electrochemical Commission (IEC).