ISA and the ISA Security Compliance Institute (ISCI) reported June 27 that the Open Group's Open Process Automation Forum will use ISASecure cybersecurity certification specifications to test OPAF's prototype O-PAS-compliant components. Their agreement licenses ISASecure for use by OPAF as the basis for conducting assessments and issuing reports.
ISASecure independently certifies to the internationally adopted ISA/IEC 62443 industrial cybersecurity standards. They're designed to make sure that automation, control systems and IoT devices are free of known vulnerabilities, robust against network attacks, and meet the security capabilities defined in the standards.
Under this arrangement, prototype O-PAS components will receive assessment reports based on ISASecure. Also, the first ISASecure, ISO 17065-accredited certification body, exida, will conduct O-PAS cybersecurity assessments via a special arrangement with ISASecure. When market-ready O-PAS components become available, they can be submitted for certification testing to any one of the ISASecure, ISO 17065 accredited certification bodies, and receive globally recognized ISASecure certificates of conformance to ISA/IEC 62443.