Pepperl+Fuchs Development Process Complies with IEC 62443-4-1 for Cybersecurity

Official handover at SPS 2023: Representatives of the company receive the certificate from the TÜV SÜD experts

  • November 24, 2023
  • 60 views
  • Official handover at SPS 2023: Pepperl+Fuchs receives the IEC 62443-4-1 certificate from the TÜV SÜD experts
    Official handover at SPS 2023: Pepperl+Fuchs receives the IEC 62443-4-1 certificate from the TÜV SÜD experts

The Mannheim-based automation specialist, Pepperl+Fuchs, is now certified to IEC 62443-4-1. The experts in industrial sensor technology and electrical explosion protection received the certification document from the testing company, TÜV SÜD, during a presentation ceremony at the SPS trade fair in Nuremberg. This document confirms that Pepperl+Fuchs, as a manufacturer of automation products and solutions, has implemented the necessary cybersecurity measures to ensure a state-of-the-art development process for cybersecure products. The inspection comprises a total of 47 requirements in line with IEC 62443-4-1 and systematically covers the entire product life cycle—from the definition, implementation, and testing of the product through to its application and the handling of subsequently discovered security vulnerabilities in the product or product component.

Coverage of the full life cycle

"The comprehensive audit by TÜV SÜD confirms that system integrators and plant operators at Pepperl+Fuchs receive components that fully comply with the Security by Design principle. In this way, we are responding to the ever-increasing networking of automation components as part of Industry 4.0 and are further reinforcing our position as a reliable partner for our customers in every respect," explains Günter Gabriel, Director Global Compliance at Pepperl+Fuchs.
"Simultaneously, Pepperl+Fuchs proactively addresses the impending regulatory demands of the European Cyber Resilience Act. With this certification, the company is thoroughly equipped to meet the rigorous compliance standards associated with automation solutions throughout their entire life cycle," explains Marcello Walz, Head of Advanced Manufacturing at TÜV SÜD.

Culture of proactive communication

Pepperl+Fuchs has been using this approach for a long time: Since 2015, the company has been proactively communicating on its website any security vulnerabilities discovered in its products and has been actively involved in CERT@VDE—the first platform that supports and advises small and medium-sized German companies about IT security issues. In August 2023, TÜV SÜD also awarded the company with certification to ISO 27000: This IT-focused standard complements the content of the IEC 62443 series of standards and confirms that Pepperl+Fuchs has established an information security management system (ISMS) that protects the company's information, data, and systems.