Exida offers combined certification for safety, security

Making the case for its integrated testing and certification program, exida argues that discrete testing and safety standard approaches may not adequately reflect more complex needs of users in critical applications.

11/02/2009


exida FIC

Functional Integrity Certification combines three areas.


Exida, a global supplier of functional safety, security, and alarm management services and certifications, has begun offering an integrated testing package, which the company says evaluates the most important attributes of an automation product - functional safety, functional security, and availability. The move could help improve safety, functional security, and availability related to automation system integration and process control software upgrades implementations.

Exida says its Functional Integrity Certification is the only independent, third party assessment that examines functional safety, security, and availability attributes of an automation product through assessment of its design, testing and manufacturing. The program also scrutinizes how a product performs under stress, in the field and over time.

"Functional Integrity Certification helps automation suppliers demonstrate the safety, security and reliability of their products," says Dr. William Goble, exida principal partner. "This also saves engineering time and money through a streamlined, single source assessment process. In turn, prospective buyers are provided with objective information to help guide their purchasing decisions."

Rainer Faller, exida principal partner and CEO adds, "This program follows our open assessment policy. Technical assessment reports are openly available on the exida web site ."

For functional safety, a product and its development process are evaluated per the international standard IEC 61508 to determine its Safety Integrity Level (SIL). The SIL level is a measure of the probability that a product will perform its intended protection function when needed.

Functional security assesses a product's resiliency to intentional or accidental manipulation that could cause it to behave differently than was intended. A combination of network robustness testing, security feature assessment, and software development process assessment helps detect and avoid vulnerabilities and systematic design faults. The certification is based on the ISA Security Compliance Institute (ISCI) Embedded Controller Security Assurance (ECSA) test specification.

Finally, an availability assessment ensures the dependability of automation products in critical applications. Exida uses modeling and probabilistic methods, combined with empirical data, to help predict product reliability.

Exida's contention is that while all three testing methods are important in their own context, certifying a product using them together reflects the real-life situation of a device and control network having to withstand stresses from multiple directions at the same time. For example, the ability of a safety device to fulfill its functions could be compromised by security threats and bad traffic on a network. Integrated testing and certification is intended to reflect these more complex relationships. The success of this approach will depend on customers accepting the idea and requiring such testing from their vendor communities.

Also see other:

- Control Engineering security coverage ; and

- Control Engineering functional safety coverage.

-Edited by Peter Welander, process industries editor, PWelander@cfemedia.com
Control Engineering Process & Advanced Control Monthly eNewsletter
Register here to select your choice of free eNewsletters .





No comments
The Engineers' Choice Awards highlight some of the best new control, instrumentation and automation products as chosen by...
Each year, a panel of Control Engineering editors and industry expert judges select the System Integrator of the Year Award winners.
The Engineering Leaders Under 40 program identifies and gives recognition to young engineers who...
Learn how to increase device reliability in harsh environments and decrease unplanned system downtime.
This eGuide contains a series of articles and videos that considers theoretical and practical; immediate needs and a look into the future.
Learn how to create value with re-use; gain productivity with lean automation and connectivity, and optimize panel design and construction.
Go deep: Automation tackles offshore oil challenges; Ethernet advice; Wireless robotics; Product exclusives; Digital edition exclusives
Lost in the gray scale? How to get effective HMIs; Best practices: Integrate old and new wireless systems; Smart software, networks; Service provider certifications
Fixing PID: Part 2: Tweaking controller strategy; Machine safety networks; Salary survey and career advice; Smart I/O architecture; Product exclusives
The Ask Control Engineering blog covers all aspects of automation, including motors, drives, sensors, motion control, machine control, and embedded systems.
Look at the basics of industrial wireless technologies, wireless concepts, wireless standards, and wireless best practices with Daniel E. Capano of Diversified Technical Services Inc.
Join this ongoing discussion of machine guarding topics, including solutions assessments, regulatory compliance, gap analysis...
This is a blog from the trenches – written by engineers who are implementing and upgrading control systems every day across every industry.
IMS Research, recently acquired by IHS Inc., is a leading independent supplier of market research and consultancy to the global electronics industry.

Find and connect with the most suitable service provider for your unique application. Start searching the Global System Integrator Database Now!

Case Study Database

Case Study Database

Get more exposure for your case study by uploading it to the Control Engineering case study database, where end-users can identify relevant solutions and explore what the experts are doing to effectively implement a variety of technology and productivity related projects.

These case studies provide examples of how knowledgeable solution providers have used technology, processes and people to create effective and successful implementations in real-world situations. Case studies can be completed by filling out a simple online form where you can outline the project title, abstract, and full story in 1500 words or less; upload photos, videos and a logo.

Click here to visit the Case Study Database and upload your case study.