Functional safety and cybersecurity certification provider, exida, certified Cisco System’s CSDL (Cisco Secure Development Lifecycle) engineering process for cybersecurity meets the requirements for IEC 62443.
exida is a recognized ISO 17025 test lab / ISO 17065 accredited Certification Body (CB).
The Cisco Secure Development Lifecycle (CSDL) was designed to ensure Cisco produces secure and resilient products by identifying and implementing specific processes or tools to enable engineers to detect, fix, mitigate and prevent design and code weaknesses that could become exploitable.
“Cisco has long been a thought leader in the area of cybersecurity. They have been following a security development lifecycle many years before the IEC 62443-4-1 standard came out and were active contributors to the development of this standard. This certification shows that they have incorporated security throughout their development process to develop products that are secure by design,” said Mike Medoff, exida director of cybersecurity certification.
IEC-62443 is a series of standards including technical reports to secure Industrial Automation and Control Systems (IACS). It provides a systematic and practical approach to cybersecurity for industrial systems. Every stage and aspect of industrial cybersecurity is covered, from risk assessment through operations.
Using the techniques described in IEC 62443, industrial stakeholders can assess the cybersecurity risks to each system and decide how to address those risks. Recognizing that not every system is equally critical, IEC 62443 defines five security levels (SLs): from SL 0 (no security) to SL 4 (resistant against nation-state attacks).