swIDch announced that its OT security solution, OTAC Trusted Access Gateway (TAG), developed in collaboration with MX On, a company specialising in autonomous manufacturing solutions and industrial HMI technologies, has obtained CE certification for the European market.
The certification confirms that the solution meets requirements for user authentication and access control at the stage where equipment control is executed in industrial environments, supporting growing cybersecurity requirements across European industrial sectors.
OTAC Trusted Access Gateway (TAG) combines swIDch’s One-Time Authentication Code (OTAC) technology with industrial hardware designed for OT environments to provide user authentication and access control for OT endpoints including PLCs and RTUs.
Unlike conventional detection-focused security approaches, the solution is designed to provide user authentication and access control at the stage where operational programmes and equipment control are actually executed.
Europe has recently strengthened cybersecurity requirements for industrial infrastructure through regulations including NIS2 and the Cyber Resilience Act (CRA). In particular, authentication-based security requirements — including user verification before equipment control execution, access history management and traceability — are becoming increasingly important in OT environments.
OT systems often face limitations in modifying existing equipment and infrastructure due to operational continuity requirements. OTAC Trusted Access Gateway (TAG) is designed to strengthen user identification and access control while maintaining existing operational environments, making it suitable for industrial environments with network constraints. The solution also supports operational requirements including third-party maintenance access control, prevention of shared account usage and blocking of unauthorised access.
“Security has evolved towards detecting more threats, but actual attacks are often carried out by using legitimate accounts to directly access equipment and modify programmes,” said Yoo Chang-hoon, CEO of swIDch. “What matters is controlling access at the execution stage through user verification before equipment control takes place.”
He added, “This CE certification confirms that OT endpoint access control-based authentication technology has met the conditions required for broader application across global industrial environments.”