Try searching by key words, order- or product code or serial number e.g. “CM442” or “Technical information”
Enter at least 2 characters to start the search.

Endress+Hauser meets highest cyber security standard

IEC 62443-4-1 certification demonstrates product development in line with highest security requirements

Publication date: 08.04.2021

Measurement instruments and components from Endress+Hauser make certain that numerous process engineering systems around the world operate securely and reliably. For industrial plants and Industrial Internet of Things (IIoT) environments, cybersecurity is becoming a growing focus. With networking and connectivity becoming increasingly prevalent, it’s imperative that companies protect their production systems and automation technology from unauthorized access.

To optimally protect its customers’ production systems, Endress+Hauser lays the foundation for secure operation as early as the planning and development phases of its products and services. In March, TÜV Rheinland, one of the world’s leading testing service providers, issued a certification in line with the IEC 62443-4-1 norm confirming that this product development process, as well as the product life cycle, meets the highest international standards.

“This is a testament to the quality of our work, which we are extremely pleased about,” says Mirko Brcic, Product Security Officer at Endress+Hauser. “In light of ongoing technical advances – you only have to think about the advanced physical layer or IIoT products – for us it’s very important that we not only accelerate digitalization but continue to safeguard the security of our instruments and software at the same pace.”

Stringent requirements for automation technology

By aligning the processes with IEC 62443-4-1, among other things Endress+Hauser ensures that products are developed from the beginning with all security requirements in mind and that the components it delivers pose no risks. Added to that are other measures such as code analyses and reviews, penetration tests and the installation of security updates. A total of eight different areas define what a secure product development process should look like:

  • Security management

  • Security requirements specification

  • Secure design guidelines

  • Secure implementation guidelines

  • Verification and validation of security properties

  • Vulnerabilities management

  • Creation and publication of security updates

  • Security product documentation

Strong capacity for innovation

“With IEC 62443-4-1, a proven certification standard in industrial automation, we ensure that all employees involved in these internal processes are working at the same level of security. That allows us to lay the cornerstone to be able to offer high-quality measurement, automation and IIoT products for connected production environments, now and in the future,” adds Mirko Brcic.

Endress+Hauser has a long tradition of investing in innovation. Last year the IETF recommended for standardization the innovative CPace security technology developed by Endress+Hauser, which provides password-protected instrument access. Patent applications are regularly at high levels as well. The Group currently boasts a portfolio of 8,900 patents and patent filings.

Mirko Brcic, Product Security Officer at Endress+Hauser.

“This is a testament to the quality of our work, which we are extremely pleased about.”

Mirko Brcic, Product Security Officer
Read more about similar topics:



Press list

Receive the next press releases and news directly in your mailbox. Stay up to date by subscribing to the Endress+Hauser press list.

Endress+Hauser press list

Endress+Hauser regularly sends out press releases on current topics and company information to media professionals.

Select the topics you are interested in:  *
Select the industries you are interested in: *

Personal Data

Fields marked with * are required. You will receive an email with a confirmation of your subscription. The information enlisted is voluntary and your data will only be used for personalizing your newsletters and not be passed onto any third party. For statistical reasons we will perform anonymous link tracking.