ISA99 Cyber Security Standard now available

Jan. 6, 2008

Research Triangle Park, N.C. January 7 -  A new American National Standard and an update of a widely used technical report on cyber security technologies have been published by ISA and may be obtained at www.isa.org/isa9900012007 and www.isa.org/isatr9900012007

The new standard, ANSI/ISA-99.00.01-2007, Security for Industrial Automation and Control Systems Part 1: Terminology, Concepts, and Models, is the first in a series of ISA standards that addresses cyber security for industrial automation and control systems (IACS). This Part 1 standard focuses on key concepts, terminology and models, and will serve as a foundation for additional standards currently in development in the ISA99 series.

The updated technical report, ANSI/ISA-TR99.00.01-2007, Security Technologies for Industrial Automation and Control Systems, provides an assessment of currently available cyber security tools, mitigation countermeasures, and technologies. The guidelines provided apply to existing and new IACSs used in regulating and monitoring numerous industries and critical infrastructures.

The technical report describes key categories of cyber security technologies, the types of products available in those categories, and the pros and cons of using those products in IACS environments relative to expected threats and known cyber vulnerabilities. Additionally, it provides recommendations and guidance for using those cyber security technology products and countermeasures.

Closely related to the work of the industry-leading ISA99 committee is a new initiative undertaken by ISA. The ISA Security Compliance Institute will identify and promote security standards-compliant products and systems in IACS applications. Compliant products or systems will be entitled to carry the ISASecure designation, providing instant recognition of the security characteristics to asset owners, integrators, and the buying public. For more information, visit www.isa.org/ISASecure