درباره ما
UL SUBJECT 2900-2-2
English -- Outline of Investigation for Software Cybersecurity for Network-Connectable Products, Part 2-2: Particular Requirements for Inducstrial Control Systems - Issue 1
Organization:
UL - UL
Year: 2016
Abstract: Scope: This security evaluation outline applies to the evaluation of industrial control systems components. It applies to, but is not limited to, the following products: a) Programmable Logic Controllers (PLC); b) Distributed Control Systems (DCS); c) Process control systems; d) Data acquistion systems; e) Historians, data loggers and data storage systems; f) Control servers; g) SCADA servers; h) Remote Terminal Units (RTU); i) Intelligent Electronic Devices (IED); j) Human-Machine Interfaces (HMI); k) Input/Output (IO) servers; l) Fieldbuses; m) Networking equipment for ICS systems; n) Data radios; o) Smart sensors; p) Controllers; and q) Embedded system/controllers. This outline does not contain any requirements regarding functional testing of products unless where expressly specified. This outline also describes requirements for the product risk management process carried out by the vendor of the product, including a list of security controls that the product (or the vendor, as applicable) shall comply with unless a risk assessment done by the vendor shows that the risk of not implementing one of these security controls is acceptable.
Collections
:
-
Statistics
UL SUBJECT 2900-2-2
Show full item record
| contributor author | UL - UL | |
| date accessioned | 2017-10-18T11:05:13Z | |
| date available | 2017-10-18T11:05:13Z | |
| date copyright | 2016.03.30 | |
| date issued | 2016 | |
| identifier other | RSPVQFAAAAAAAAAA.pdf | |
| identifier uri | https://lib.yabesh.ir/std/handle/yse/234760 | |
| description abstract | Scope: This security evaluation outline applies to the evaluation of industrial control systems components. It applies to, but is not limited to, the following products: a) Programmable Logic Controllers (PLC); b) Distributed Control Systems (DCS); c) Process control systems; d) Data acquistion systems; e) Historians, data loggers and data storage systems; f) Control servers; g) SCADA servers; h) Remote Terminal Units (RTU); i) Intelligent Electronic Devices (IED); j) Human-Machine Interfaces (HMI); k) Input/Output (IO) servers; l) Fieldbuses; m) Networking equipment for ICS systems; n) Data radios; o) Smart sensors; p) Controllers; and q) Embedded system/controllers. This outline does not contain any requirements regarding functional testing of products unless where expressly specified. This outline also describes requirements for the product risk management process carried out by the vendor of the product, including a list of security controls that the product (or the vendor, as applicable) shall comply with unless a risk assessment done by the vendor shows that the risk of not implementing one of these security controls is acceptable. | |
| language | English | |
| title | UL SUBJECT 2900-2-2 | num |
| title | English -- Outline of Investigation for Software Cybersecurity for Network-Connectable Products, Part 2-2: Particular Requirements for Inducstrial Control Systems - Issue 1 | en |
| type | standard | |
| page | 14 | |
| status | Active | |
| tree | UL - UL:;2016 | |
| contenttype | fulltext |