ISA Security Compliance Institute News Release
Wurldtech’s Achilles Satellite™ Gains Formal Recognition for Use in ISASecure EDSA Communications Robustness Testing
Research Triangle Park, North Carolina, USA (17 February 2011) – The ISA Security Compliance Institute (ISCI) announced that Wurldtech received formal recognition for ISASecure Test Suites in their Achilles Satellite network robustness testing platform Level 2 Build 3.3.16344 for inclusion in the ISASecure™ EDSA (Embedded Device Security Assurance) Certification program. The Achilles Satellite is the first network test tool recognized for use by ISASecure accredited labs to perform the Communication Robustness Testing (CRT) portion of embedded device security certifications.
The ISASecure EDSA Certification consists of three elements: a device Functional Security Assessment (FSA), a device Communication Robustness Test (CRT), and an organizational Software Development Security Assessment (SDSA).
ISCI’s technical team evaluated ISASecure test suites in the Achilles Satellite test platform against published ISASecure EDSA Communication Robustness Test (CRT) specifications in accordance with ISO/IEC Guide 65 conformance scheme procedures and determined that the tool’s test capabilities satisfied testing requirements necessary to gain formal recognition.
“The Achilles test suites continue to play an important role in improving the network resiliency and robustness of global critical infrastructures," said Dr. Nate Kube, Wurldtech CTO. “Our collaboration with ISCI raises the bar once again, providing industrial stakeholders with additional criteria for verifying and validating resilient industrial control systems,” he concluded.
“Wurldtech made ISASecure a priority and worked collaboratively with our technical evaluation team to ensure that all ISASecure CRT specifications were fully addressed while meeting some pretty aggressive project timelines,” stated Andre Ristaino, ISCI managing director. “We are pleased with the outcome.”
About ISASecure EDSA Certification
The ISASecure program has been developed by the ISA Security Compliance Institute (ISCI) with a goal to accelerate industry-wide improvement of cybersecurity for Industrial Automation and Control Systems (IACS). It achieves this goal by offering a common industry-recognized set of device and process requirements that drive device security, simplifying procurement for asset owners and device assurance for equipment vendors.
ISASecure Embedded Device Security Assurance Certification (ISASecure EDSA), the first ISASecure certification, focuses on security of embedded devices and addresses device characteristics and supplier development practices for those devices. Through this certification, an embedded device that meets the requirements of the ISASecure specifications receives the ISASecure EDSA certification—a trademarked designation that provides instant recognition of product security characteristics and capabilities. ISASecure EDSA offers three certification levels for a device based on increasing levels of device security assurance: ISASecure Level 1 for Devices, ISASecure Level 2 for Devices, and ISASecure Level 3 for Devices.
The ISASecure EDSA certification is an ISO/IEC Guide 65 conformance scheme supporting ISCI’s goal to operate a globally recognized industrial automation controls cybersecurity certification program. This third-party accreditation by ANSI/ACLASS enhances the credibility and value of the ISASecure certification by attesting to the competence and qualification of ISCI certification bodies and laboratories. Visit www.ansi.org/isasecure for details on the ISASecure ANSI/ACLASS accreditation process.
About Wurldtech Security Technologies
Wurldtech Security Technologies provides proactive technology solutions designed to identify the presence of, and mitigate against, cyber vulnerabilities that can impact safe, secure and reliable industrial operations.
Wurldtech's product portfolio is designed for suppliers of industrial devices, systems and applications used in, and the end users/operators of, high-availability process control networks primarily in critical infrastructure sectors such as energy (oil and gas) and power (electric utilities, nuclear).
About the ISA Security Compliance Institute
Founded in 2007, the ISA Security Compliance Institute’s mission is to provide the highest level of assurance possible for the cyber security of industrial automation control systems.
The Institute was established by thought leaders from major organizations in the industrial automation controls community seeking to improve the cyber security posture of Critical Infrastructure for generations to come. Founding Members include Chevron, ExxonMobil Research and Engineering, Honeywell, Invensys, Siemens, and Yokogawa. Key Technical Members include Exida, Mu Dynamics, and Rockwell Automation.
The Institute’s goals are realized through industry standards compliance programs, education, technical support, and improvements in suppliers’ development processes and users’ life cycle management practices. The Institute’s ISASecure™ designation ensures that industrial automation control products conform to industry consensus cyber security standards, providing confidence to users of ISASecure™ products and systems and creating product differentiation for suppliers conforming to the ISASecure™ specification. www.isasecure.org