IEC certification for Kaspersky Industrial CyberSecurity for Networks. Kaspersky technology meets all requirements for a secure software development lifecycle for industrial business solutions.
Kaspersky Industrial CyberSecurity for Networks has received IEC certification in accordance with the international standard IEC 62443-4-1 for a secure software development life cycle of industrial business solutions based on an independent assessment by TÜV AUSTRIA. This is awarded to those software products that meet a number of requirements for the protection of industrial process control systems in modern production plants.
The needs and expectations of the industrial sector in the area of cybersecurity are high as the smooth and efficient operation of production lines and manufacturing processes is massively impaired when critical systems are affected by cyber threats. Having a reliable and robust cybersecurity solution is vital here. The addition 4-1 of the IEC 62443 standard gives manufacturers, integrators and system operators the certainty that the software measures they take to minimize risks in industrial environments meet the highest standards in terms of product design, quality, security, implementation and decommissioning.
A successful audit results in processes that conform to the guidelines
In order to receive this IEC certification, Kaspersky Industrial CyberSecurity for Networks was subjected to an independent audit by TÜV AUSTRIA, which checked the entire life cycle of the product as well as the secure and structured approach to software development. The assessment is based on an evaluation of more than four dozen metrics regarding the degree of maturity of the solution. The criteria included design, compliant implementation, testing and validation, elimination of defects and safe decommissioning.
"TÜV AUSTRIA is one of the first institutions to close the gap between IT and OT security and offer a holistic audit approach that covers all aspects," comments Detlev Henze, Head of TÜV TRUST IT GmbH of the TÜV AUSTRIA Group. “IEC62443 defines a new level of reliability for OT security process networks, with an emphasis also on high-quality software development that covers the entire lifecycle. When conducting the audits, we found a highly qualified and professional software development environment that lays the foundation for high-quality software products. The successfully conducted audits show that Kaspersky's software development processes ensure a high level of quality to meet the different levels of risk and vulnerability in the industrial sector."
IEC certification: International standard becomes the key to the market
"Conformity with the international standard IEC62443 is without question the key to enable broad access to the high-tech world markets and to integrate software products into high-level industrial automation systems of Industry 4.0," adds Dmitry Yartsev, Director General of TÜV AUSTRIA- Offices in the CIS.
Kaspersky Industrial CyberSecurity for Networks has thus reached the third level of maturity for secure development processes and has demonstrated documented processes that are repeatable and consistently followed. The solution has also already met many of the level 4 criteria relating to optimization processes.
Create trust through comprehensive quality management
“The independent and expert certification of security solutions provides those working in the industrial space with complete confidence in the cybersecurity approach they have chosen and the assurance that the solutions they are implementing are robust and reliable,” emphasizes Kirill Naboyshchikov, Business Development Manager , Kaspersky Industrial Cyber Security at Kaspersky. “Achieving this certification is a testament to the commitment and quality of the solutions we develop at Kaspersky, as well as our rigorous approach to design, testing, documentation and decommissioning. We are aware that any level of risk or vulnerability can be very costly to the industrial sector. That is why we carry out comprehensive and independent tests to verify and validate the high level of quality and safety of all our products.”
More on this at Kaspersky.de
About Kaspersky Kaspersky is an international cybersecurity company founded in 1997. Kaspersky's in-depth threat intelligence and security expertise serve as the basis for innovative security solutions and services to protect companies, critical infrastructures, governments and private users worldwide. The company's comprehensive security portfolio includes leading endpoint protection as well as a range of specialized security solutions and services to defend against complex and evolving cyber threats. Kaspersky technologies protect over 400 million users and 250.000 corporate customers. More information about Kaspersky can be found at www.kaspersky.com/