ISA/IEC 62443 recommends using a firewall to segment and protect the plant floor (Operational Technology or OT network) from the rest of the company’s Information Technology (IT) networks. Firewalls enforce security policies by controlling and monitoring traffic, helping to prevent unauthorized access and potential threats from traversing between business and control networks. Hubs and switches do not provide security; routers may offer some basic filtering, but firewalls are explicitly designed for this purpose.
[Reference: ISA/IEC 62443-3-3:2013, Section 4.2.3 (Use of network segmentation and firewalls); ISA/IEC 62443-3-2:2020, Section 4.4 (Zones and Conduits)., , ]
Submit