{"id":34834,"date":"2023-06-13T10:40:53","date_gmt":"2023-06-13T09:40:53","guid":{"rendered":"https:\/\/www.gt-engineering.it\/?post_type=approfondimento&#038;p=34834"},"modified":"2023-06-29T14:01:30","modified_gmt":"2023-06-29T13:01:30","slug":"it-security","status":"publish","type":"approfondimento","link":"https:\/\/www.gt-engineering.it\/en\/insights\/machinery-directive\/machinery-product-regulation\/it-security\/","title":{"rendered":"IT Security"},"content":{"rendered":"\n\n    \n        <section\n            data-name=\"Contenuto testuale con immagine\"\n            class=\"bow-gte-testo-media u-spacer-base\"\n            id=\"\"\n        >\n            \n<div class=\"o-text-media px-side-spacer sm:px-side-spacer-sm lg:px-side-spacer-tablet 2xl:px-side-spacer-desktop flex flex-wrap items-start md:block\">\n\n    \n        \n                    <div\n                class=\"h-auto mb-6 md:mb-4 lg:mb-8 xl:mb-9 float-left mr-6 md:mr-4 lg:mr-8 xl:mr-9  overflow-hidden shadow-content-image w-full md:w-1\/2\"\n            >\n                \r\n\r\n    \r\n        \r\n            \r\n                \r\n                    <picture\r\n                        class=\"\"\r\n                                            >\r\n                                                                                                        <source\r\n                                media=\"(max-width: 150px)\"\r\n                                width=\"150\"\r\n                                height=\"150\"\r\n                                srcset=\"https:\/\/www.gt-engineering.it\/wp-content\/uploads\/2023\/06\/Cybersecurity-2-150x150.jpg.webp\"\r\n                                type=\"image\/webp\"\r\n                            \/>\r\n                                                                                <source\r\n                                media=\"(max-width: 300px)\"\r\n                                width=\"300\"\r\n                                height=\"169\"\r\n                                srcset=\"https:\/\/www.gt-engineering.it\/wp-content\/uploads\/2023\/06\/Cybersecurity-2-300x169.jpg.webp\"\r\n                                type=\"image\/webp\"\r\n                            \/>\r\n                                                                                <source\r\n                                media=\"(max-width: 768px)\"\r\n                                width=\"768\"\r\n                                height=\"432\"\r\n                                srcset=\"https:\/\/www.gt-engineering.it\/wp-content\/uploads\/2023\/06\/Cybersecurity-2-768x432.jpg.webp\"\r\n                                type=\"image\/webp\"\r\n                            \/>\r\n                                                                                <source\r\n                                media=\"(max-width: 1000px)\"\r\n                                width=\"1000\"\r\n                                height=\"563\"\r\n                                srcset=\"https:\/\/www.gt-engineering.it\/wp-content\/uploads\/2023\/06\/Cybersecurity-2.jpg.webp\"\r\n                                type=\"image\/webp\"\r\n                            \/>\r\n                                                                            <img\r\n                            class=\"a-image transparent border-image h-auto  w-full\"\r\n                                                        srcset=\"https:\/\/www.gt-engineering.it\/wp-content\/uploads\/2023\/06\/Cybersecurity-2.jpg.webp\"\r\n                                                        title=\"Cybersecurity\"\r\n                                                        type=\"image\/webp\"\r\n                        \/>\r\n                    <\/picture>\r\n\r\n                \r\n\r\n                    \r\n    \r\n            <\/div>\n        \n                    <div class=\"relative w-full\">\n                \n<div class=\"a-text font-text text-base normal mt-8 first:mt-0 space-y-4\">\n    <p>A new Essential Health and Safety Requirement was added to deal with the issue that the safety of a Machinery <strong>might be affected by IT security attacks<\/strong> related to the direct or remote access to a safety-related control system by persons for intentional abuse (unintended uses).<\/p>\n<p>The aim is not that the machinery is so well protected that a breach into its control system is impossible. The aim is that:<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<ul>\n<li>The machine is <strong>adequately protected<\/strong> against attacks that have an impact on its EHSR<\/li>\n<li>In case of a breach, the machine detects it.<\/li>\n<li>The software and the data used by the control system that have an impact on the machinery EHSR is first of all identified and than <strong>adequately protected<\/strong><\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<blockquote><p><strong><em>[MPR: 2023 text] 1.1.9. Protection against corruption <\/em><\/strong><\/p>\n<p><em>The machinery or related product shall be designed and constructed so that the connection to it of another device, via any feature of the connected device itself or via any remote device that communicates with the machinery or related product <strong>does not lead to a hazardous situation. <\/strong><\/em><\/p>\n<p><em>A hardware component transmitting signal or data, relevant for connection or access to software that is critical for the compliance of the machinery or related product with the relevant essential health and safety requirements shall be designed so that it is <strong>adequately protected <\/strong>against accidental or intentional corruption. The machinery or related product shall collect evidence of a legitimate or illegitimate intervention in that hardware component, when relevant for connection or access to software that is critical for the compliance of the machinery or related product. <\/em><\/p>\n<p><strong><em>Software and data<\/em><\/strong><em> that are critical for the compliance of the machinery or related product with the relevant essential health and safety requirements shall be identified as such and shall be adequately protected against accidental or intentional corruption. <\/em><\/p>\n<p><em>The machinery or related product shall identify the software installed on it that is necessary for it to operate safely, and shall be able to provide that information at all times in an easily accessible form.<\/em><\/p><\/blockquote>\n<p>Different standards deal with IT Security issues:<\/p>\n<ul>\n<li><strong>IEC\/TS 62443 series: <\/strong>Industrial communication networks \u2013 Network and system security<\/li>\n<li><strong><a href=\"https:\/\/www.gt-engineering.it\/en\/technical-standards\/en-iec-standards\/iec-ts-63074-2023\/\">IEC\/TR 63074<\/a>:<\/strong> 2023 Safety of machinery \u2013 Security aspects related to functional safety of safety-related control systems.<\/li>\n<li><strong>ISO\/TR 22053:<\/strong> Safety of machinery \u2014 Safeguarding supportive system<\/li>\n<li><strong><a href=\"https:\/\/www.gt-engineering.it\/en\/technical-standards\/en-iso-standards\/iso-tr-22100-4-2018-guidance-to-machinery-manufacturers\/\">ISO\/TR 22100-4<\/a>:<\/strong> 2018 &#8211; Safety of machinery \u2014 Relationship with ISO 12100 \u2014 Part 4: Guidance to machinery manufacturers for consideration of related IT-security (cyber security) aspects.<\/li>\n<\/ul>\n<p><strong>None of those standards<\/strong> is harmonised to the Machinery Directive <strong>nor will be harmonised to the Machinery Regulation<\/strong>. A working group was started in <strong>May 2023<\/strong> with the assignment of\u00a0 writing an IEC standard, to be eventually harmonised to the Machinery Regualtion.<\/p>\n<\/div>            <\/div>\n        \n        \n                <div class=\"clear-both\"><\/div>\n        \n\n    <\/div>\n        <\/section>\n\n    \n","protected":false},"excerpt":{"rendered":"","protected":false},"author":2,"featured_media":37015,"parent":1925,"menu_order":1,"template":"","meta":{"_acf_changed":false,"footnotes":""},"tipologia_approfondimento":[46],"class_list":["post-34834","approfondimento","type-approfondimento","status-publish","has-post-thumbnail","hentry","tipologia_approfondimento-machinery-directive"],"acf":{"sottotitolo":"","allegati":null},"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.2 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>IT Security - Gt-Engineering<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.gt-engineering.it\/en\/insights\/machinery-directive\/machinery-product-regulation\/it-security\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"IT Security - Gt-Engineering\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.gt-engineering.it\/en\/insights\/machinery-directive\/machinery-product-regulation\/it-security\/\" \/>\n<meta property=\"og:site_name\" content=\"Gt-Engineering\" \/>\n<meta property=\"article:modified_time\" content=\"2023-06-29T13:01:30+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.gt-engineering.it\/wp-content\/uploads\/2023\/06\/Cybersecurity-1.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1000\" \/>\n\t<meta property=\"og:image:height\" content=\"563\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.gt-engineering.it\/en\/insights\/machinery-directive\/machinery-product-regulation\/it-security\/\",\"url\":\"https:\/\/www.gt-engineering.it\/en\/insights\/machinery-directive\/machinery-product-regulation\/it-security\/\",\"name\":\"IT Security - Gt-Engineering\",\"isPartOf\":{\"@id\":\"https:\/\/www.gt-engineering.it\/en\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.gt-engineering.it\/en\/insights\/machinery-directive\/machinery-product-regulation\/it-security\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.gt-engineering.it\/en\/insights\/machinery-directive\/machinery-product-regulation\/it-security\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.gt-engineering.it\/wp-content\/uploads\/2023\/06\/Cybersecurity-1.jpg\",\"datePublished\":\"2023-06-13T09:40:53+00:00\",\"dateModified\":\"2023-06-29T13:01:30+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.gt-engineering.it\/en\/insights\/machinery-directive\/machinery-product-regulation\/it-security\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.gt-engineering.it\/en\/insights\/machinery-directive\/machinery-product-regulation\/it-security\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.gt-engineering.it\/en\/insights\/machinery-directive\/machinery-product-regulation\/it-security\/#primaryimage\",\"url\":\"https:\/\/www.gt-engineering.it\/wp-content\/uploads\/2023\/06\/Cybersecurity-1.jpg\",\"contentUrl\":\"https:\/\/www.gt-engineering.it\/wp-content\/uploads\/2023\/06\/Cybersecurity-1.jpg\",\"width\":1000,\"height\":563},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.gt-engineering.it\/en\/insights\/machinery-directive\/machinery-product-regulation\/it-security\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.gt-engineering.it\/en\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Insights\",\"item\":\"https:\/\/www.gt-engineering.it\/en\/approfondimenti\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Machinery Directive\",\"item\":\"https:\/\/www.gt-engineering.it\/en\/insights\/machinery-directive\/\"},{\"@type\":\"ListItem\",\"position\":4,\"name\":\"The Machinery Regulation (EU) 2023\/1230\",\"item\":\"https:\/\/www.gt-engineering.it\/en\/insights\/machinery-directive\/machinery-product-regulation\/\"},{\"@type\":\"ListItem\",\"position\":5,\"name\":\"IT Security\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.gt-engineering.it\/en\/#website\",\"url\":\"https:\/\/www.gt-engineering.it\/en\/\",\"name\":\"Gt-Engineering\",\"description\":\"bizonweb\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.gt-engineering.it\/en\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"IT Security - Gt-Engineering","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.gt-engineering.it\/en\/insights\/machinery-directive\/machinery-product-regulation\/it-security\/","og_locale":"en_US","og_type":"article","og_title":"IT Security - Gt-Engineering","og_url":"https:\/\/www.gt-engineering.it\/en\/insights\/machinery-directive\/machinery-product-regulation\/it-security\/","og_site_name":"Gt-Engineering","article_modified_time":"2023-06-29T13:01:30+00:00","og_image":[{"width":1000,"height":563,"url":"https:\/\/www.gt-engineering.it\/wp-content\/uploads\/2023\/06\/Cybersecurity-1.jpg","type":"image\/jpeg"}],"twitter_card":"summary_large_image","schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.gt-engineering.it\/en\/insights\/machinery-directive\/machinery-product-regulation\/it-security\/","url":"https:\/\/www.gt-engineering.it\/en\/insights\/machinery-directive\/machinery-product-regulation\/it-security\/","name":"IT Security - Gt-Engineering","isPartOf":{"@id":"https:\/\/www.gt-engineering.it\/en\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.gt-engineering.it\/en\/insights\/machinery-directive\/machinery-product-regulation\/it-security\/#primaryimage"},"image":{"@id":"https:\/\/www.gt-engineering.it\/en\/insights\/machinery-directive\/machinery-product-regulation\/it-security\/#primaryimage"},"thumbnailUrl":"https:\/\/www.gt-engineering.it\/wp-content\/uploads\/2023\/06\/Cybersecurity-1.jpg","datePublished":"2023-06-13T09:40:53+00:00","dateModified":"2023-06-29T13:01:30+00:00","breadcrumb":{"@id":"https:\/\/www.gt-engineering.it\/en\/insights\/machinery-directive\/machinery-product-regulation\/it-security\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.gt-engineering.it\/en\/insights\/machinery-directive\/machinery-product-regulation\/it-security\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.gt-engineering.it\/en\/insights\/machinery-directive\/machinery-product-regulation\/it-security\/#primaryimage","url":"https:\/\/www.gt-engineering.it\/wp-content\/uploads\/2023\/06\/Cybersecurity-1.jpg","contentUrl":"https:\/\/www.gt-engineering.it\/wp-content\/uploads\/2023\/06\/Cybersecurity-1.jpg","width":1000,"height":563},{"@type":"BreadcrumbList","@id":"https:\/\/www.gt-engineering.it\/en\/insights\/machinery-directive\/machinery-product-regulation\/it-security\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.gt-engineering.it\/en\/"},{"@type":"ListItem","position":2,"name":"Insights","item":"https:\/\/www.gt-engineering.it\/en\/approfondimenti\/"},{"@type":"ListItem","position":3,"name":"Machinery Directive","item":"https:\/\/www.gt-engineering.it\/en\/insights\/machinery-directive\/"},{"@type":"ListItem","position":4,"name":"The Machinery Regulation (EU) 2023\/1230","item":"https:\/\/www.gt-engineering.it\/en\/insights\/machinery-directive\/machinery-product-regulation\/"},{"@type":"ListItem","position":5,"name":"IT Security"}]},{"@type":"WebSite","@id":"https:\/\/www.gt-engineering.it\/en\/#website","url":"https:\/\/www.gt-engineering.it\/en\/","name":"Gt-Engineering","description":"bizonweb","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.gt-engineering.it\/en\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"}]}},"_links":{"self":[{"href":"https:\/\/www.gt-engineering.it\/en\/wp-json\/wp\/v2\/approfondimento\/34834","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.gt-engineering.it\/en\/wp-json\/wp\/v2\/approfondimento"}],"about":[{"href":"https:\/\/www.gt-engineering.it\/en\/wp-json\/wp\/v2\/types\/approfondimento"}],"author":[{"embeddable":true,"href":"https:\/\/www.gt-engineering.it\/en\/wp-json\/wp\/v2\/users\/2"}],"version-history":[{"count":16,"href":"https:\/\/www.gt-engineering.it\/en\/wp-json\/wp\/v2\/approfondimento\/34834\/revisions"}],"predecessor-version":[{"id":37211,"href":"https:\/\/www.gt-engineering.it\/en\/wp-json\/wp\/v2\/approfondimento\/34834\/revisions\/37211"}],"up":[{"embeddable":true,"href":"https:\/\/www.gt-engineering.it\/en\/wp-json\/wp\/v2\/approfondimento\/1925"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.gt-engineering.it\/en\/wp-json\/wp\/v2\/media\/37015"}],"wp:attachment":[{"href":"https:\/\/www.gt-engineering.it\/en\/wp-json\/wp\/v2\/media?parent=34834"}],"wp:term":[{"taxonomy":"tipologia_approfondimento","embeddable":true,"href":"https:\/\/www.gt-engineering.it\/en\/wp-json\/wp\/v2\/tipologia_approfondimento?post=34834"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}