Seclab Xport meets the removable media control requirements of IEC 62443 and NERC CIP through electronic USB port isolation, non-bypassable hardware access control, and built-in audit evidence.

IEC 62443 compliance: removable media control

The IEC 62443 standard identifies removable media as a potential attack vector in industrial environments. It requires strict control over their use, including restriction of authorized file types, port access control, and enforcement of the principle of least privilege. Seclab Xport addresses these requirements through:

  • Physical isolation of the USB port: the device has no direct access to the system.
  • Access control via cryptographic signature: only pre-validated files are allowed through.
  • Blocking of protocol-level attacks (BadUSB): neutralized by the physical break.
  • Least privilege enforcement: only explicitly authorized file types and transfer directions are permitted.

NERC CIP compliance: hardware isolation and auditability

For operators of electrical infrastructure subject to NERC CIP, Seclab Xport provides a hardware-based isolation and access control mechanism that cannot be bypassed—even by users with administrative privileges. The device generates auditable logs for each transfer (authorized file, rejected file, timestamp, device identity), which can be used to demonstrate compliance during regulatory audits.

Key takeaway — Seclab Xport covers IEC 62443 and NERC CIP requirements for removable media: physical isolation, hardware-based access control, BadUSB protection, least privilege enforcement, and full audit traceability.