7. Regulatory aspects
Cybersecurity legislation in Europe has become increasingly stringent in recent years, and regulatory compliance is becoming an important issue for companies. The threat of heavy financial penalties for non-compliance is real.
In addition to the regulations applicable to all information systems, industrial facilities may be affected by specific texts if they belong to an operator of vital importance (OIV), a term defined below. In this case, they fall under the Military Programming Law (LPM) supplemented by the NIS Directive (EU) 2016/1148 of July 6, 2016. If the facility is one of the Seveso-classified establishments, it is also concerned by Directive 2012/18/EU of July 4, 2012, known as the "Seveso 3 Directive".
The law creates obligations for OIVs, as a cyber attack can lead to an inability to produce or provide required services, and...
Exclusive to subscribers. 97% yet to be discovered!
You do not have access to this resource.
Click here to request your free trial access!
Already subscribed? Log in!
The Ultimate Scientific and Technical Reference
This article is included in
Design and production
This offer includes:
Knowledge Base
Updated and enriched with articles validated by our scientific committees
Services
A set of exclusive tools to complement the resources
Practical Path
Operational and didactic, to guarantee the acquisition of transversal skills
Doc & Quiz
Interactive articles with quizzes, for constructive reading
Regulatory aspects
Bibliography
- (1) - WILLIAMS (T.J.) - A Reference Model for Computer Integrated Manufacturing from the Viewpoint of Industrial Automation. - IFAC Proceedings Volumes. 23 (1990). http://281-291. 10.1016/S1474-6670(17)51748-6
- ...
Standards and norms
- Series of standards on Industrial Automation and Control Systems Security. - ISA/IEC 62443 -
- Functional safety of electrical/electronic/programmable electronic safety-related systems - EC 61508-1 - 2010
- Industrial communication networks – Network and system security – Part 1-1: terminology, concepts and models - CEI/TS 62443-1-1 - 2009
- Industrial communication networks – Network and system security...
Regulations
Seveso III, Directive 2012/18/EU of the European Parliament and of the Council of 4 July 2012 on the control of major-accident hazards involving dangerous substances, amending and subsequently repealing Council Directive 96/82/EC,
NIS, Directive (EU) 2016/1148 of the European Parliament and of the Council of 6 July 2016 concerning measures for a high common level of security of network and information...
Directory
Organizations – Federations – Associations (non-exhaustive list)
ANSSI (French National Agency for Information Systems Security) https://www.ssi.gouv.fr
Software
Exclusive to subscribers. 97% yet to be discovered!
You do not have access to this resource.
Click here to request your free trial access!
Already subscribed? Log in!
The Ultimate Scientific and Technical Reference