Security for IoT-Applications

Guidelines VdS 3836 now available in English: VdS makes digital innovations possible - and secure

For networked products, customised security requirements must be applied in order to avoid hacker attacks or risks of disruption and downtime. Together with the relevant associations, VdS has developed the VdS 3836 guidelines, which take a detailed look at the new risk conditions of the "Internet of Things" (IoT) and regulate the information security of fire protection and security technology. The guidelines have now been published in English.


Cologne, 3rd February 2020: In the international context, the IEC 62443 series already exists as a complex work on the information security of industrial products. VdS has adapted and specified the requirements to the applications of fire protection and safety technology. "With the new VdS 3836 guidelines, digitalisation is thus finding its own important and permanent place in the security industry," emphasises VdS Managing Director Thomas Urban.

A special focus was placed on the applicability of the security requirements: "What the industry has lacked so far is a practical framework for testing the information security of fire protection and security technology products. Often the aspect of IT security was only considered in extracts because there were no tangible, practically implementable sets of rules that could cover the topic holistically," explains Thomas Urban.

The new VdS 3836 guidelines, for example, describe comprehensive requirements for user and access management as well as secure data storage and transmission and the validation of interface input by users or other devices. They are applicable as horizontal guidelines in addition to other VdS guidelines.

In addition to the product-specific requirements, for example for a Hazard Detection and Alarm Centre, the aspect of IT security is also specifically tested and certified. Corresponding products are marked with the SecIoT logo. "We are pleased to be able to offer a practical option in the sense of Industry 4.0 with these guidelines, with which modern and innovative services - be it remote access or predictive maintenance - can be brought onto the market securely and comprehensively tested," says Urban.

Further information can be found at