New Test Tool Certified for ISASecure Industrial Control Systems

July 14, 2014
FFR Raven for ICS joins other cybersecurity tools approved as a CRT (Communication Robustness Testing) tool by the ISA Security Compliance Institute.

The ISA Security Compliance Institute (ISCI) announced that the FFR Raven for ICS has been recognized as an approved CRT (Communication Robustness Testing) tool for ISASecure control systems certification programs.

CRT testing tools must meet a rigorous set of requirements to ensure consistent and credible test results when utilized by ISCI Chartered Labs for certifying industrial control systems and components. ISCI Chartered Labs are now authorized to use the Raven for ICS CRT tool for use in the communication robustness test element of ISASecure product certifications.

“Suppliers seeking ISASecure certifications can be confident that the Raven for ICS tool will properly reflect expected CRT test results from ISCI Chartered Labs,” said Andre Ristaino, ISCI managing director. “Achieving recognition for ISASecure CRT test requirements is a big commitment from FFRI, and we value their confidence in the ISASecure certification scheme.”

Ryoji Kanai, chief technology officer of Tokyo-based FFRI, said his company,  “look[s] forward to working with ISCI, helping suppliers improve the robustness of their ICS devices and systems,” and welcomes inquiries for more information. FFRI, Inc. joins products from Codenomicon and Wurldtech as Recognized test platforms for the Communication Robustness Testing (CRT) portion of the EDSA cyber security certification.

As the first ISASecure certification, ISASecure Embedded Device Security Assurance Certification (ISASecure EDSA) focuses on security of embedded devices and addresses device characteristics and supplier development practices for those devices. The second and third ISASecure ICS cybersecurity certifications include the System Security Assurance (SSA) and Security Development Life Cycle Assurance (SDLA).

Ristaino said the ISA Security Compliance Institute recommends that suppliers use ISCI recognized CRT test tools during the product development and testing phases to identify and mitigate network-based security vulnerabilities.  Using recognized CRT tools during the development process also aids suppliers in preparing for the formal ISASecure EDSA certification assessment, he said.

Companies in this Article