IEC 62443 gateways: an integrated hardware and software solution

Eurotech has recently achieved IEC 62443-4-2 and IEC 62443-4-1 Security Level 2 certification on its integrated hardware and software solution based on the IIoT Edge Gateway ReliaGATE 10-14, the operating system Everyware Linux and its IoT Edge Framework, ESF (Everyware Software Framework). This enables secure products and services compliant with best-in-class cybersecurity standards, like our IEC 62443 gateways.
Adding to and building upon ISO 27001 and other security related standards like PSA Certified Level 1, the compliance with IEC 62443 is a further confirmation of Eurotech’s capability to satisfy the strictest cybersecurity requirements.
Compliance with both the product-related and process-related standards confirms Eurotech’s commitment towards a “cybersecurity by design” approach.

What is IEC 62443?

IEC 62443 is a series of internationally recognized standards that specify the process and product requirements for the secure development of Industrial Automation and Control Systems (IACS). It therefore addresses Industry 4.0 operators, system integrators and product manufacturers and their compliance to cybersecurity best practices.
In particular, the IEC 62443-4-1 (process related) and IEC 62443-4-2 (product related) standards highlight the importance of choosing vendors that provide hardened hardware components built with a “security by design” approach, ensuring that security best practices are followed throughout the entire product lifecycle, from PoC to full production to decommissioning phases.

IEC 62443-4-1

The IEC 62443-4-1 certification specifies process requirements for the secure development of products. These certifications ensure the highest levels of cybersecurity throughout the whole product and application lifecycle. This certificate confirms that Eurotech’s integrated solution follows a “cybersecurity by design” approach, embedding security best practices in its DNA and ensuring safety at every stage of the product lifecycle management, including vulnerability response assessments.

IEC 62443-4-2

The IEC 62443-4-2 standard is particularly important for Eurotech, as it addresses the security of the components (hardware and software) that have to be integrated into industrial automation and control systems. An important concept highlighted in this standard is the one of “hardening”, which implies that devices and software must integrate specific security features to ensure a further level of protection against cyber-attacks.

Why Eurotech’s gateways are compliant with IEC 62443-4-1 and IEC 62443-4-2?

The ReliaGATE 10-14 is an Industrial IoT Edge Gateway with sophisticated security features like Secure Boot, Anti Tampering and TPM 2.0 and already PSA Certified Level 1. To be compliant with the IEC 62443 standard – and with IEC 62443-4-2 in particular – it has been provided with specific device hardening features to furtherly enhance security.
Integrated with Eurotech’s IoT Edge Framework ESF – also PSA Certified Level 1 and integrating advanced security features such as device identity management, encrypted configuration and storage and secure OTA updates for all software components on a device – it enables industrial-grade gateway solutions compliant with IEC 62443-4-2 standard.
To achieve this particular component-related certification, it was necessary to first achieve compliance with IEC 62443-4-1. This confirms that Eurotech’s integrated solution follows the “cybersecurity by design” approach highlighted in the IEC standard, embedding cybersecurity best practices in its DNA and ensuring safety at every stage of the product lifecycle.

Eurotech’s IEC 62443 gateways: the ReliaGATE 10-14 and DynaGATE 10-14

Leading Edge computing and IoT connectivity with a safe IoT Edge Framework