TÜV Süd certified the development processes of the automation company Pilz in accordance with the international security standard IEC 62443-4-1. Pilz thus develops demonstrably secure: Security properties are systematically considered from the design phase of products, risks are identified and ideally already eliminated in the product. This extension to the existing Functional Safety Management certification promises Pilz customers double safety with immediate effect.
The normative framework for industrial security in automation is provided by the international IEC 62443 series of standards. For “secure” product development, the subordinate standard IEC 62443-4-1 describes requirements for a so-called “Security Development Lifecycle process” (SDL process). It is designed to ensure that vulnerabilities are identified and eliminated throughout the lifecycle of the system and individual components. To this end, the process also requires, for example, that developers are appropriately qualified and trained, that the security requirements are traceable right through to implementation, and that all necessary security tests are carried out.
TÜV Süd has audited Pilz’s development processes. The result: Pilz meets the requirements of the standard, looks ahead at possible risks and thus ensures the security of its products as early as the development stage.
Industrial Security in the focus of Pilz Safety
Pilz has had its functional safety management (FSM), i.e. “safety”, tested and certified by TÜV Süd for around 20 years.
“As a manufacturer of safety components, our process was already well designed and documented. So adding the security requirements was comparatively easy,” explains Thomas Pilz, Managing Partner of Pilz GmbH & Co. “The certification underlines the importance of industrial security and is of equal strategic importance as the certifications for functional safety. Security protects safety and safety protects people. This chain is closed by the certification of our development activities according to IEC 62443-4-1 that has now taken place, thus offering our customers the Industrial Security that industry needs in the age of international data networking.”
The Pilz Group is a global supplier of products, systems and services for automation technology. The family-owned company with headquarters in Ostfildern employs around 2,500 people. With 42 subsidiaries and branches, Pilz creates safety for man, machine and environment worldwide. The technology leader offers complete automation solutions comprising sensors, control and drive technology – including systems for industrial communication, diagnostics and visualization. An international range of services including consulting, engineering and training rounds off the portfolio. Solutions from Pilz are used in numerous industries beyond mechanical and plant engineering, such as wind energy, railroad technology and robotics.