Cybersecurity compliance

Cybersecurity for AVEVA industrial software, in compliance with IEC 62433 and ANSSI standards, is essential to ensure the reliability, security, and continuity of operations in industrial environments.

IEC 62433, ANSSI

A Look at the Data We Secure Daily

prev next

+100,000

sites deployed worldwide

10+ Trillion

industrial transactions processed per day

20 Billion

industrial parameters

12,000 TB

of information stored and managed per year

prev next

Presentation

Think About Your Cybersecurity Before Choosing the Right Industrial Software

Identify the right reasons to be concerned about cybersecurity when selecting your IT solution. We have outlined a few reasons:

System Complexity: Industrial software interacts with a multitude of devices and systems, making the attack surface larger and more complex.
Aging Systems: Many industrial software systems rely on outdated technologies and were not designed with robust security measures, making them vulnerable to cyberattacks.
Increased Interconnectivity: The Internet of Things (IoT) and Industry 4.0 have increased the interconnectivity of industrial systems, thereby raising the risk of attack propagation.
Lack of Regular Updates: Industrial software can be difficult to update regularly due to production constraints and the need to maintain operational continuity.
Sensitivity to Service Interruptions: Attacks on industrial software can lead to costly and potentially dangerous service interruptions for industrial operations.

IEC 62433 & ANSSI Certifications for AVEVA Software Solutions

Since 2019, AVEVA software solutions have been certified according to IEC 62443/ISA 99, enabling better management of cybersecurity risks in industrial installations. Additionally, our SCADA and Historian software have successfully passed the CSPN certification by ANSSI (Agence Nationale de la Sécurité des Systèmes d’Information).

IEC62443-ANSSI-cybersecurity

Access the ANSSI certification

Your challenge and Stakes

Contact

Refer to the IEC 62433 standard

IEC 62433 provides guidelines for integrating cyber security into industrial control systems. It aims to reduce the risks associated with cyber threats and to ensure the reliability of systems in industrial environments. The standard provides recommendations for risk management, data protection, continuous monitoring and response to security incidents. By following the principles of IEC 62433, AVEVA is strengthening the resilience of industrial systems in the face of growing cyber security threats.

Follow the best practices of ANSSI

As the national authority for cybersecurity, the ANSSI develops recommendations and best practices specific to France's needs. Its aim is to strengthen the security of information systems and critical infrastructures, including industrial software. These recommendations cover various aspects of IT security, such as authentication, encryption, intrusion detection and vulnerability management. AVEVA System Platform and AVEVA Historian are certified by ANSSI.

Adopt a comprehensive approach to cybersecurity

Certification of industrial software is not an absolute guarantee of protection against cyber threats. They can give users a false sense of security, leading them to neglect other crucial aspects of industrial software protection, such as continuous monitoring, regular updates and employee awareness. To strengthen the security of industrial software, it is essential to adopt a global approach to cyber security. This means integrating security practices into the design of the technical architecture, putting in place incident detection and response mechanisms, and investing in employee training and awareness.

prev next

Think cybersecurity, think AVEVA software

Development cycle

AVEVA's Safety Development Life Cycle (SDL) is central to our Software Development Process (SwDP). Our Quality Management System (QMS) and SwDP are regularly evaluated to integrate efficient processes, improve safety and quality, and deliver better value to our customers. The SDL applies to all our product offerings, guaranteeing secure development from design to testing on a variety of architectures.

Certifications

Since 2019, AVEVA has been IEC 62443/ISA 99 certified. This international certification is essential in the industrial cyber security sector. The IEC 62443 standard is a link between the IT (ISO 27 000) and OT (IEC 61 508) standards. In addition to this international certification, AVEVA has successfully passed ANSSI (Agence Nationale de la Sécurité des Systèmes d'Information) CSPN certification.

Patch management

Managing patches, particularly from Microsoft, is a major challenge. You need to be able to keep your systems up to date while avoiding any operational problems linked to the application of a patch. AVEVA constantly keeps its operational systems up to date so that it can test all security updates.

prev next

More on the latest in industrial computing news

prev next

Supervisory and Control

HMI/SCADA in the Cloud: some Figures... Published on 19/06/2024

Operations Management

How do you manage your factory production orders? Published on 11/06/2024

Supervisory and Control

Visualize your operations outside the control room Published on 11/06/2024

Supervisory and Control

Supervision InTouch 2023, what are the good reasons to migrate your old applications? Published on 10/06/2024

Supervisory and Control

Procter & Gamble speeds time-to-market with AVEVA software Published on 10/06/2024

Supervisory and Control

How does Starbucks gain visibility in its factories thanks to AVEVA solutions? Published on 10/06/2024

Supervisory and Control

[Interview] How does AVEVA support the cosmetics and pharmaceutical industries in their digitalization? Published on 10/06/2024

Operations Management

How do you track product traceability and genealogy at the factory? Published on 10/06/2024

Operations Management

How do you manage material stocks in the factory? Published on 10/06/2024

prev next