2 ISA/IEC 62443 for Product Suppliers

To build products that are certifiable according to ISA/IEC 62443, Product Suppliers must consider the contents of the two work products belonging to Tier 4 of the standard:

• The Product Supplier’s processes must meet the requirements set forth in part 4-1 of the standard (”Secure Product Development Lifecycle Requirements”), which defines a set of “Practices” and ranks the readiness of the PS’s processes in terms of “Maturity Levels”.
• The specific product that certification is sought for needs to meet the technical requirements set forth in part 4-2 of the standard (”Technical Security Requirements for IACS Components”), which defines a set of “Foundational Requirements” and ranks the security capabilities of the PS’s product in terms of “Security Levels”.

The content of this document is mainly focused on how to address the latter and aimed to simplify the 200-page part 4-2 of the standard by highlighting how Microchip secure elements and Security Pattern can help your product meet compliance.