IEC TS 62443-1-1-2009 PDF

Full title and description

IEC TS 62443-1-1:2009 — Industrial communication networks — Network and system security — Part 1-1: Terminology, concepts and models. This Technical Specification defines the core terminology, high-level concepts and reference models used across the IEC 62443 series for securing Industrial Automation and Control Systems (IACS). It establishes a common vocabulary and conceptual foundation for subsequent parts of the 62443 family.

Abstract

IEC TS 62443-1-1:2009 provides the definitions, concepts and reference models necessary to describe and analyse security for industrial automation and control systems. It introduces key terms, the IACS reference architecture and the zones-and-conduits model, roles and responsibilities, and the baseline concepts on which the remainder of the IEC 62443 standards are built.

General information

• Status: Published (Technical Specification)
• Publication date: 30 July 2009
• Publisher: International Electrotechnical Commission (IEC)
• ICS / categories: 25.040.40 (Industrial process measurement and control); 33.040.40 (Data communication networks); 35.040.01 (Information coding in general)
• Edition / version: Edition 1.0 (2009)
• Number of pages: 81

Scope

This Technical Specification defines the terminology and conceptual models used to describe security for Industrial Automation and Control Systems (IACS). It is intended to create a consistent language and framework for other parts of IEC 62443 and for stakeholders (owners, operators, vendors, integrators and assessors) to communicate requirements, architectures and roles related to industrial cybersecurity. The document does not prescribe detailed technical controls; rather it establishes the concepts, definitions and models that support the detailed requirements contained in other parts of the series.

Key topics and requirements

• Standardized terminology and definitions for IACS security (actors, assets, threats, vulnerabilities, etc.).
• Reference models and conceptual architecture for IACS, including typical system components and boundaries.
• Zones-and-conduits model for segmentation and communication control between logical/physical areas.
• Security levels and concept of layered defence (context for later, prescriptive parts of the series).
• Roles and responsibilities (asset owner, integrator, product supplier, assessor) and their interactions.
• High-level guidance on risk, threats and the lifecycle approach to IACS security (basis for program and product requirements).

Typical use and users

IEC TS 62443-1-1:2009 is used as a foundational reference by a wide range of stakeholders involved in industrial cybersecurity: plant and asset owners, control-system engineers, OT/ICS security teams, system integrators, product vendors, auditors and regulators. It is typically consulted when creating policies, architectures, specifications, procurements and training materials to ensure consistent terminology and conceptual alignment across projects and organizations.

Related standards

This Technical Specification is the foundational part of the IEC 62443 series. Other related parts include (but are not limited to) IEC 62443-2-x (security programs and operational requirements for asset owners), IEC 62443-3-x (system-level and zone/conduit guidance and technical requirements), and IEC 62443-4-x (product development and component requirements). It is also commonly used alongside industry guidance such as ANSI/ISA-62443 (original ISA family), ISO/IEC 27001 (information security management), and national/regional guidance for industrial control system security (for example NIST SP 800-82 in the United States).

Keywords

IACS, IEC 62443, industrial cybersecurity, terminology, concepts, models, zones and conduits, security levels, OT security, reference architecture.

FAQ

Q: What is this standard?

A: IEC TS 62443-1-1:2009 is a Technical Specification that defines the terminology, high-level concepts and reference models for security of Industrial Automation and Control Systems (IACS). It provides the common vocabulary and conceptual basis used across the IEC 62443 series.

Q: What does it cover?

A: It covers definitions, conceptual models (including a reference IACS architecture and the zones-and-conduits model), roles and responsibilities, and high-level concepts such as security levels and lifecycle considerations. It does not specify prescriptive technical controls — those are addressed in other parts of the IEC 62443 family.

Q: Who typically uses it?

A: Asset owners, control-system and OT security engineers, system integrators, product vendors, compliance auditors and policymakers use this specification to align on terminology and high-level models when designing, procuring, operating and auditing industrial control systems.

Q: Is it current or superseded?

A: IEC TS 62443-1-1:2009 is the original 2009 edition of Part 1-1 and remains the foundational terminology and conceptual specification for the IEC 62443 series. Other parts of the series have been published and updated since 2009; users should consult the most recent editions of relevant parts for prescriptive requirements or updated guidance. (Publication date of this part: 30 July 2009.)

Q: Is it part of a series?

A: Yes. It is Part 1-1 of the IEC 62443 series (Security for industrial automation and control systems). The series contains multiple parts addressing policy and program requirements, system architecture and technical requirements, and secure product development.

Q: What are the key keywords?

A: IACS, industrial control systems, IEC 62443, cybersecurity, terminology, zones and conduits, reference model, security levels, OT security.