IEC TR 63074-2019 pdf free.Safety of machinery – Security aspects related to functional safety of safety related control systems.
This Technical Report gives guidance on the use of lEC 62443 (all parts) related to thoseaspects of security threats and vulnerabilities that could influence functional safetyimplemented and realized by safety-related control systems (scS) and could lead to the lossof the ability to maintain safe operation of a machine.
NOTE1 For example, an attack on a machine (safety function) such that it affects the availability of the machineand can result in a safety function being bypassed.
Considered security aspects of the machine with potential relation to scs are:
vulnerabilities of the scs either directly or indirectly through the other parts of themachine which can be exploited by security threats that can result in security attacks(security breach);
influence on the safety characteristics and ability of the scs to properly perform itsfunction(s);
typical use case definition and application of a corresponding threat model.
NOTE2 For other aspects of security threats and vulnerabilities, the provisions of the IEC 62443 (all parts) canapply.
2 Normative references
The following documents are referred to in the text in such a way that some or all of theircontent constitutes requirements of this document. For dated references,only the editioncited applies.For undated references, the latest edition of the referenced document(includingany amendments) applies.
IEC 62061,Safety of machinery – Functional safety of safety-related electrical, electronic andprogrammable electronic control systems
ISO 12100:2010,Safety of machinery – General principles for design — Risk assessment andrisk reduction
ISO 13849-1:2015,Safety of machinery – Safety-related parts of control systems – Part 1:General principles for design
3Terms and definitions
For the purposes of this document, the following terms and definitions apply.
Iso and lEC maintain terminological databases for use in standardization at the followingaddresses:
lEC Electropedia: available at
ISO Online browsing platform: available at http://www.iso.orglobp
4.1 General
The relationship between safety and security aspects can be characterized as follows:- a machine has appropriate protective measures;
security countermeasures applied for a machine are to be appropriate in order to avoiddegradation of the performance of protective measures that implement safety function(s).
NOTE Persons who are qualified to implement security countermeasures are not necessarily the same peoplewho are qualified to implement SCS.Therefore it is reasonable to mutually exchange information and support.
4.2 Safety objectives
Safety of machinery is based on (safety) risk assessment according to IS012100,or byfollowing a type-C standard for specific machine types, in combination with the derived riskreduction measures which can be performed by safety function(s).
NOTE The risk assessment including the implemented risk reduction measures is applied by the designers duringthe development of machinery to enable the design of machines that are safe for their intended use.
Safety function(s) that are performed by a scs shall achieve a safety integrity levelequivalent to SlL according to lEC 62061 or PL according to lSO 13849-1.
4.3Security objectives
In general terms security is focused mainly on achieving three objectives: confidentiality,integrity and availability.
NOTE 1 Security objectives are for example:
– Integrity against manipulations;
– Confidentiality by means of methods commonly accepted by both the security and industrial automationcommunities;
– Availability (usually and very generally) of machine(s)(including safety functions).
Security risks will be evaluated by using a security risk assessment in order to identify thesecurity objectives.
A security risk assessment is based on a product / system in its environment on which threatsand known vulnerabilities are applied.The aim of this activity is to derive relevant securitycountermeasures applied for a machine to fulfil the overall security objectives.
NOTE 2 See also 5.5 of lEC TS 62443-1-1:2009.
ln the context of safety of machinery,the security countermeasures are intended to protectthe ability to maintain safe operation of a machine and their implementation should notadversely affect any safety function (see Figure 1).
NOTE 3 Essential functions according to lEC 62443-3-3 include safety functions.
Due to the nature of threats and known vulnerabilities, the security risk assessment should beevent driven or periodic (periodic security review), see also Annex B.IEC TR 63074 pdf download.