See regulations list
Go to content

prEN 50742:2025 Safety of machinery – Electrotechnical aspects – Protection against corruption


The draft standard states that the design and construction of machinery must prevent dangerous situations caused by connections, understood as any interface capable of exchanging information, for example:

  • Network connections (LAN, WAN)
  • Wi-Fi connections
  • Signal or power cables
  • Optical connections (e.g. fibre)
  • Card reader interfaces
  • Connections to external systems:
    • Networks of buildings
    • Cloud services
    • Maintenance or diagnostic devices
Note 1: Connectivity may be ensured by means of permanent or temporary devices (during installation, use, maintenance or dismantling).
 
Note 2: Non-connected machines (e.g. a simple drill without data interfaces) do not enter into the scope of this standard.

Compliance paths in prEN 50742

Compliance can be achieved through two alternative approaches:
 
  1. Clauses 5 and 7 – for machines not designed according to the IEC 62443 series
  2. Clauses 6 and 8 – for machines compliant with the IEC 62443 series on industrial IT security
 

Process requirements

The standard requires a structured process to ensure that the integrity of data and software is not compromised throughout the machine's life cycle, through cyber risk management practices.

Monitoring of information and changes

The following types of intervention must be tracked when they affect safety-related behaviour:
 
  • Safety parameterisation/configuration, identified by CRC or other means
 
Example: connection/disconnection of USB or SD keys containing configuration or log data
 

  • Updates or modifications to SRESW (safety-related embedded software), tracked by version/CRC
  • Updates or modifications to SRASW (safety-related application software), also tracked
  • HMI parameterisation, if it can introduce hazards
  • Software used to display safety instructions, which must be reliable and non-alterable
     

Risk assessment

The manufacturer shall carry out a cyber risk assessment to identify and mitigate risks related to:
 
  • accidental or malicious data corruption
  • unauthorised access
  • breaches of system or log integrity
   

Conclusions and next steps

prEN 50742 is proposed as a harmonised standard under the Machinery Regulation and will be a reference for CE conformity in the field of industrial cybersecurity.
 
 
Key deadlines:
 
  • 2025: draft available for public comment
  • 2026: publication as EN
  • 2027: likely inclusion in the list of harmonised standards
     
 
(source - https://www.assaabloyentrance.com/)

Back to content