Beruflich Dokumente
Kultur Dokumente
Andre Ristaino
ASCI Managing Director
May 2014
www.isasecure.org
Mission
Establish a set of well-engineered specifications and processes
for the testing and certification of industrial automation and
control systems products
11
11 ISA Security Compliance Institute
Objective of ISASecure
13
13 ISA Security Compliance Institute
ISASecure™
Embedded Device Security
Assurance (EDSA)
• Currently available
• Available as of Q1 2014
An organization’s
Security Development Lifecycle product development
Assessment process is certified
once per the SDLA
requirements
Security Security
Development Development
Lifecycle Lifecycle
Assessment Assessment Individual products are
certified which includes
an assessment to verify
Functional Security
Assessment
… Functional Security
Assessment
the certified SDLA
process was followed.
Product #1 Product #n
Security Level 3
Secure Development
Lifecycle Assessment
Security Level 2 Secure Development
Lifecycle Assessment
Secure Development
Security Level 1
Lifecycle Assessment
Secure Development
Lifecycle Assessment Functional Security
Functional Security Assessment
Functional Security Assessment
Functional Security Assessment
Assessment
Robustness Testing
Eric Cosman
Co-Chairman ISA99 Committee
eric.cosman@gmail.com
Jim Gilsinn
Co-Chairman ISA99 Committee
jimgilsinn@gmail.com
Andre Ristaino
Managing Director, ASCI
Phone: 919-990-9222
Fax: 919-549-8288
Email: aristaino@isa.org
Website: http://www.isasecure.org