Cyber-Physical Systems — the convergence of computation, networking, and physical processes in smart grids, autonomous vehicles, medical devices, and industrial robots — present a unique security challenge where a cybersecurity failure has direct physical consequences, and where the closed-loop nature of control means that an attacker with network access can cause immediate physical harm. NIST SP 800-82r3 and the EU CRA both extend cybersecurity requirements to CPS product classes, treating authentication, integrity, and access control as safety requirements rather than IT hygiene.
Related: Zero Trust for OT · IEC-62443 · DDS · Medical Devices · CRA