FR 1 — Identification & Authentication Control (IAC)

    IEC 62443 FR 1 — Identification & Authentication Control (IAC): how QuantLayer implements IAC controls with OT-safe enforcement and audit-ready evidence.

    IEC 62443
    FR 1
    OT/ICS
    6 min
    Last updated: 2026-01-22

    Overview

    Ensure every human, device, and workload is uniquely identified and strongly authenticated before access is allowed.

    QuantLayer control mapping

    • Hardware-rooted device identity and enrollment with attestation
    • Passwordless authentication options (machine fingerprint / strong factors)
    • Identity inventory with last-seen, posture, and verification history
    • Step-up verification for sensitive OT operations (engineering access, remote maintenance)

    Implementation steps

    • Scope by zone: identify where this FR is most critical (e.g., safety zone, engineering access, remote vendor conduit).
    • Start in observe mode: baseline behavior and identify necessary exceptions.
    • Enforce gradually: enable controls in phases aligned to maintenance windows; document exceptions.
    • Continuously verify: monitor drift and anomalies; automate response where safe.

    Evidence checklist

    • Enrollment records and attestation results
    • Authentication event logs (success/fail, method, device identity)
    • Identity lifecycle changes (rotation, revoke, re-enroll)
    Implementation note
    IEC 62443 compliance is achieved through a combination of people, process, and technology controls. QuantLayer helps you operationalize the technical controls (identity, segmentation, integrity, telemetry, response) while producing audit-ready evidence to support your CSMS and assurance activities.