TÜV certification demonstrates the security of network components

The foundation for secure networks

Siemens has received TÜV certification in compliance with IEC 62443-4-2 and -4-1 (standards for IT security in industrial automation systems) for network components in the Scalance XB-200, XC-200, XP-200, XF-200BA and XR-300WG product families. The certification demonstrates that the product development process previously certified in compliance with IEC 62443-4-1 has been consequently applied during product development. It also confirms that key technical product requirements stipulated by IEC 62443-4-2 have been taken into account and implemented in the network components. Customers are therefore able to realize secure system architectures, which clearly increases the overall security of a plant.

The certificate is based on standards IEC 62443-4-1:2018 Edition 1 and IEC 62443-4-2:2019 Edition 1 and applies to the specified managed Layer 2 Industrial Ethernet switches, which can be used to create reliable and redundant communication networks. This offers customers numerous advantages. First, the certificate proves the reliability and integrity of the switches in terms of their product development. It is essential to ensure that security-relevant aspects are considered starting from the planning and development phase, so that the security of the entire target system has a stable foundation. Furthermore, the network component certification confirms that technical functionality of these items can also be used for plants and machines that are designed and operated in accordance with the recommendations of IEC 62443-3-3.

An essential factor of the certification of Scalance X switches is the intended use and intended operational environment. Clearly defined general conditions are essential in order to specify which technical requirements of the standard are relevant for the component and how they should be integrated. Since most components by their nature provide a wide functional scope, the application and target environment must be described in order to achieve a meaningful declaration of conformity.

When integrating a component into an overall security concept, the individual requirements must often be prioritized differently. For example, the demands on a component in terms of physical protection would be lower if the target environment calls for operation of the assembly in a closed or monitored area. Conversely, a higher security level for individual components does not automatically mean that the entire system reaches the same degree of security. It is still important for the security of the entire system to consider a component’s intended use and accurate integration by the system integrator of all used components.