Japan’s Control System Security Center joins ISA Security Compliance Institute
Research Triangle Park, North Carolina, USA (26 November 2013) – Japan’s Control System Security Center (CSSC, President Dr. Seiichi Shin) announced today that it has joined the ISA Security Compliance Institute (ISCI) as an Associate member. As an Associate ISCI member, CSSC will participate in the ongoing development and promotion of ISASecure® industrial controls cybersecurity certification programs.
CSSC is the hub of Japan’s critical infrastructure protection initiatives, providing research and development and cybersecurity testing of industrial control components and systems comprising Japan’s critical infrastructure. CSSC’s mission is to enhance ICS (industrial control system) security of critical infrastructure. CSSC functions are organized into operational areas that address R&D, international standardization, certification, human resource development, promotion and security verification of individual control systems.
CSSC has adopted the ISASecure industrial controls certification scheme as part of Japan’s critical infrastructure protection program, addressing the cybersecurity of industrial control systems. CSSC is slated to commence ISASecure EDSA certifications in early 2014, and commence subsequent ISASecure certifications as they become available.
"CSSC will soon receive independent accreditation by the Japan Accreditation Board as an ISCI-chartered lab in accordance with the ISASecure Guide 65 conformance scheme. We look forward to working with CSSC as an ISASecure certification body (CB) and as an ISCI member," said Andre Ristaino, ISCI Managing Director.
About the Control System Security Center
Control System Security Center (CSSC), a technology research association, was established in March 2012 as an authorized corporation approved by the Minister of Economics, Trade and Industry in accordance with the "Technology Research Association Law" with eight founding corporate members (relating to control systems) that support people's lives. Its mission is to strengthen security and authenticate security in the control systems field. www.css-center.or.jp/en
About ISASecure® EDSA Certification
The ISASecure™ program has been developed by the ISA Security Compliance Institute (ISCI) with a goal to accelerate industry-wide improvement of cybersecurity for Industrial Automation and Control Systems (IACS). It achieves this goal by offering a common industry-recognized set of device and process requirements that drive device security, simplifying procurement for asset owners and device assurance for equipment vendors.
ISASecure Embedded Device Security Assurance Certification (ISASecure EDSA), the first ISASecure certification, focuses on security of embedded devices and addresses device characteristics and supplier development practices for those devices. Through this certification, an embedded device that meets the requirements of the ISASecure specifications receives the ISASecure EDSA certification—a trademarked designation that provides instant recognition of product security characteristics and capabilities. ISASecure EDSA offers three certification levels for a device based on increasing levels of device security assurance: ISASecure Level 1 for Devices, ISASecure Level 2 for Devices, and ISASecure Level 3 for Devices.
The ISASecure EDSA certification is an ISO/IEC Guide 65 conformance scheme supporting ISCI’s goal to operate a globally recognized industrial automation controls cybersecurity certification program. This third-party accreditation by ANSI/ACLASS, JAB and other AB’s enhances the credibility and value of the ISASecure certification by attesting to the competence and qualification of ISCI certification bodies and laboratories. Visit www.ansi.org/isasecure for details on the ISASecure ANSI/ACLASS accreditation process.
About the ISA Security Compliance Institute
Founded in 2007, the ISA Security Compliance Institute’s mission is to provide the highest level of assurance possible for the cyber security of industrial automation control systems.
The Institute was established by thought leaders from major organizations in the industrial automation controls community seeking to improve the cyber security posture of Critical Infrastructure for generations to come. Founding Members include Chevron, ExxonMobil Research and Engineering, Honeywell, Invensys, Siemens, and Yokogawa. Key Technical Members include exida, IPA-Japan, CSSC and, RTP Corp.
The Institute’s goals are realized through industry standards compliance programs, education, technical support, and improvements in suppliers’ development processes and users’ life cycle management practices. The Institute’s ISASecure™ designation ensures that industrial automation control products conform to industry consensus cyber security standards, providing confidence to users of ISASecure products and systems and creating product differentiation for suppliers conforming to the ISASecure specification. www.isasecure.org.
ISASecure® EDSA Certification is a trademark of the ISA Security Compliance Institute.
ISCI press contact: