The SCADA system shall support security features in accordance with IEC 62443, as well as the VDI 3699 and DIN 19235 guidelines.

Regarding IEC 62443 the software shall be certified based on IEC 62443 4-1 and on IEC 62443 4-2. The conformity of the process control system to the security standards IEC 62443-4-1 and IEC 62443-4-2 must be certified by an international technical testing organization.

Comprehensive security measures and functions to safeguard plant operation must be guaranteed.

Compliance with the product certifications according to IEC 62443-4-1 must be tested and confirmed by an international technical testing organization for the system. Regular, recurring audits should also ensure in the future that the system continues to meet the required standards and concepts and that the certificate can be continued.

With these certificates, the company documents its security approach for automation products and offers integrators and operators transparent insight into its implemented industrial security measures.

Used as a SCADA system it controls and monitors processes continuously. Since a plant shutdown can have massive consequences, functional safety as well as industrial security measures are very important in terms of availability, integrity and confidentiality.

SSL/TLS shall be available for security in the network.

Archived and written data shall not be modifiable; supplements or marked corrections shall nevertheless be possible.

Increased security requirements are imposed on the SCADA system: It shall be possible to use encrypted communication not only between the system components but also in the direction of the user interface.

It shall be possible to decrypt software components that have already been encrypted, such as images or scripts, in order to make minor changes in the system, and then store them again in encrypted form.

According to 21 CFR Part 11, certain FDA requirements must be met when using electronic recordings and signatures. The system must comply with these.

The SCADA system shall provide communication via open standard protocols such as OPC UA and MQTT, which guarantees secure communication using authentication via certificates.

In addition, it shall be possible to change the data model used without having to perform a restart.