Westermo is proud to announce that the Viper-3000 series, a versatile range of over 40 variants of Ethernet switches for train networks and rolling stock, together with its operating system WeOS 5, is now certified according to the international cybersecurity standard IEC 62443-4-2, Security Level 2 (SL2). This certification marks a significant milestone in the company’s cybersecurity journey and reinforces Westermo’s commitment to delivering secure, reliable solutions for mission-critical infrastructure.
“In accordance with our structured secure development practices under IEC 62443-4-1, we are now proud to deliver our first IEC 62443-4-2 Security Level 2 certified products. These include advanced security features such as Secure Boot, Encrypted Key Handling, and Integrity-Validated Configuration.” says Niklas Mörth, CISO at Westermo.
What the IEC 62443-4-2 certification means for customers
-
Faster system certification
With components already certified to IEC 62443-4-2, it becomes easier to achieve system-level certification under IEC 62443-3-3.
-
Enhanced protection in critical environments
Viper-3000 is engineered to meet the stringent security demands found in environments such as railway, onboard trains, and industrial settings, helping safeguard operations against threats.
-
Transparency and assurance
Westermo provide comprehensive documentation and official certificates to demonstrate compliance, ensuring confidence in the security of networking devices.
“The IEC 62443-4-2 certification for the Viper-3000 series, together with WeOS 5, is the result of years of engineering focus on secure design principles. It validates our commitment to delivering products that not only meet but exceed the cybersecurity expectations of our rail customers. This milestone empowers our users to build secure, resilient and future-ready networks with confidence.” says Anders Hanberg, product manager at Westermo.
Why IEC 62443-4-2 matters
IEC 62443-4-2 is a global standard that defines technical cybersecurity requirements for industrial components, including embedded devices, network components, host systems, and software applications. It covers key areas such as authentication, access control, data integrity, and protection against unauthorised access. IEC 62443 is a horizontal standard, accepted by many industry domains, including rail transportation, energy and utilities, and industrial automation.
