Which Security Level (SL) would be MOST appropriate for a system that requires protection against attackers with high motivation and extended resources using sophisticated means?
ISA/IEC 62443 defines Security Levels (SL 0–4) based on attacker capability, motivation, and resources.
Step 1: Understanding SL 4
SL 4 is defined as protection against intentional violations using sophisticated means with extended resources. This includes highly motivated attackers, potentially well-funded and highly skilled.
Step 2: Why SL 4 applies
The question explicitly mentions:
High motivation
Extended resources
Sophisticated means
This description exactly matches the formal definition of SL 4 in ISA/IEC 62443-3-3 and 4-2.
Step 3: Why lower SLs are insufficient
SL 1–3 do not assume extended resources or the highest attacker sophistication.
Thus, SL 4 is the correct target.
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit