Our annual stock-take will take place on 24-25th November. No Orders will be shipped on these days, please plan your orders accordingly. We apologise for any inconvenience this may cause.
Phoenix Contact awarded IEC 62443 certificate for PLCnext Control by TÜV SÜD
Phoenix Contact is the first company to receive a certification for a controller (PLC) in accordance with IEC 62443-4-1 ML 3 Full Process Profile in combination with IEC 62443-4-2. This confirms that the secure development life cycle was fully applied in developing the PLCnext Control devices.
As a result, the PLCnext Control product family of AXC F 1152, AXC F 2152, and AXC 3152 has been certified by TÜV SÜD. By activating the Security Profile, users have access to a more comprehensive scope of Security Level 2 (SL2) functions. This certification emphasizes Phoenix Contact’s strategy of offering standardized security in products, industry solutions, and consultation services to ensure the future-proof operation of machines, systems, and infrastructures.
“The IEC 62443 standard series defines the security requirements for the development process and the functional product characteristics. Integrating these into an open platform such as PLCnext was a true challenge, which was solved elegantly by introducing the Security Profile,” explains Enrico Seidel, Senior OT Security Expert at TÜV SÜD. “Product certification in accordance with IEC 62443-4-1/-4-2 shows users that a product was developed securely and provides information on which technical security requirements have been implemented. Our Certificate Report describes which product characteristic achieved which Security Level,” adds Heiko Adamczyk from TÜV SÜD. “Collaboration with TÜV SÜD during development was very goal-oriented, allowing the time requirements of the complex project to be taken into account on an individual basis.
Implementation of the development-side 4-1 process requirements, for instance with the definition of the security context, threat analysis, secure-by-design concepts and implementations, vulnerability management, and the establishment of security test methods, were the key building blocks of the certification,” confirms Boris Waldeck, IEC 62443 Certification Project Manager at Phoenix Contact.
“Implementing the security functions of IEC 62443-4-2 in accordance with the standard required close collaboration with TÜV SÜD, since requirements in 4-2 are often only described in very general terms,” adds Stefan Hausmann, Product Solution & Security Expert (PSSE) at Phoenix Contact.
In automation, IEC 62443, “IT Security for Industrial Automation Systems”, plays a key role, since it considers security holistically from the perspectives of the operator, system integrator, and device manufacturer. The more products are developed in the long-term in accordance with IEC 62443, the easier it is for operators and system integrators to implement security when integrating and operating automation systems and to ensure security throughout the entire life cycle.
About Phoenix Contact
Phoenix Contact is a global market leader for components, systems, and solutions in the fields of electrical engineering, electronics, and automation. Today, the family-owned company employs around 17,100 people worldwide, with sales of €2.4 billion in 2020. The company’s headquarters are in Blomberg, Germany. The Phoenix Contact Group is made up of 15 German and four international companies, as well as 55 sales subsidiaries throughout the world. Internationally, Phoenix Contact is represented in more than 100 countries.
About TÜV SÜD
TÜV SÜD is the reliable partner for solutions in the areas of functional security and IT security. The organization specializes in testing, certification, auditing, and consulting services, and has remained true to its corporate purpose since 1866: protecting people, the environment, and material assets against technical risks. Today, TÜV SÜD is present worldwide at over 1,000 locations, with its corporate headquarters in Munich. With over 24,000 employees, it creates added value for customers and partners by evaluating and reducing risks and opening up access to markets.