1、TECHNICAL IEC SPECIFICATION TS 62351-1 First edition2007-05 Power systems management and associated information exchange Data and communications security Part 1:Communication network and system security Introduction to security issues Reference number IEC/TS 62351-1:2007(E)LICENSED TO MECON Limited.
2、-RANCHI/BANGALOREFOR INTERNAL USE AT THIS LOCATION ONLY,SUPPLIED BY BOOK SUPPLY BUREAU.THIS PUBLICATION IS COPYRIGHT PROTECTED Copyright 2007 IEC,Geneva,Switzerland All rights reserved.Unless otherwise specified,no part of this publication may be reproduced or utilized in any form or by any means,el
3、ectronic or mechanical,including photocopying and microfilm,without permission in writing from either IEC or IECs member National Committee in the country of the requester.If you have any questions about IEC copyright or have an enquiry about obtaining additional rights to this publication,please co
4、ntact the address below or your local IEC member National Committee for further information.IEC Central Office 3,rue de Varemb CH-1211 Geneva 20 Switzerland Email:inmailiec.chWeb:www.iec.ch About the IEC The International Electrotechnical Commission(IEC)is the leading global organization that prepar
5、es and publishes International Standards for all electrical,electronic and related technologies.About IEC publications The technical content of IEC publications is kept under constant review by the IEC.Please make sure that you have the latest edition,a corrigenda or an amendment might have been pub
6、lished.?Catalogue of IEC publications:www.iec.ch/searchpub The IEC on-line Catalogue enables you to search by a variety of criteria(reference number,text,technical committee,).It also gives information on projects,withdrawn and replaced publications.?IEC Just Published:www.iec.ch/online_news/justpub
7、 Stay up to date on all new IEC publications.Just Published details twice a month all new publications released.Available on-line and also by email.?Customer Service Centre:www.iec.ch/webstore/custserv If you wish to give us your feedback on this publication or need further assistance,please visit t
8、he Customer Service Centre FAQ or contact us:Email:csciec.chTel.:+41 22 919 02 11 Fax:+41 22 919 03 00 LICENSED TO MECON Limited.-RANCHI/BANGALOREFOR INTERNAL USE AT THIS LOCATION ONLY,SUPPLIED BY BOOK SUPPLY BUREAU.TECHNICAL IEC SPECIFICATION TS 62351-1 First edition2007-05 Power systems management
9、 and associated information exchange Data and communications security Part 1:Communication network and system security Introduction to security issues V Commission Electrotechnique InternationaleInternational Electrotechnical Commission PRICE CODE For price,see current catalogueLICENSED TO MECON Lim
10、ited.-RANCHI/BANGALOREFOR INTERNAL USE AT THIS LOCATION ONLY,SUPPLIED BY BOOK SUPPLY BUREAU.2 TS 62351-1 IEC:2007(E)CONTENTS FOREWORD.4 1 Scope and object.6 1.1 Scope.6 1.2 Object.6 2 Normative references.7 3 Terms,definitions and abbreviations.7 4 Background for information security standards.7 4.1
11、 Rationale for addressing information security in power system operations.7 4.2 IEC TC 57 data communications protocols.8 4.3 History of the Development of these Security Standards.8 5 Security issues for the IEC 62351 series.9 5.1 General information on security.9 5.2 Types of security threats.9 5.
12、3 Security requirements,threats,vulnerabilities,attacks,and countermeasures.12 5.4 Importance of security policies.19 5.5 Security risk assessment.20 5.6 Understanding the security requirements and impact of security measures on power system operations.20 5.7 Five-step security process.21 5.8 Applyi
13、ng security to power system operations.23 6 Overview of the IEC 62351 series.24 6.1 Scope of the IEC 62351 series.24 6.2 Authentication as key security requirement.24 6.3 Objectives of the IEC 62351 series.24 6.4 Relationships between the IEC 62351 parts and IEC protocols.25 6.5 IEC 62351-1:Introduc
14、tion.26 6.6 IEC 62351-2:Glossary of terms.26 6.7 IEC 62351-3:Profiles including TCP/IP.26 6.8 IEC 62351-4:Security for profiles that include MMS.28 6.9 IEC 62351-5:Security for IEC 60870-5 and derivatives.28 6.10 IEC 62351-6:Security for IEC 61850 Profiles.29 6.11 IEC 62351-7:Security through networ
15、k and system management.31 7 Conclusions.34 Bibliography.35 Figure 1 Security requirements,threats,and possible attacks.14 Figure 2 Security categories,typical attacks,and common countermeasures.14 Figure 3 Confidentiality security countermeasures.16 Figure 4 Integrity security countermeasures.16 Fi
16、gure 5 Availability security countermeasures.17 Figure 6 Non-repudiation security countermeasures.17 Figure 7 Overall security:security requirements,threats,countermeasures,and management.18 LICENSED TO MECON Limited.-RANCHI/BANGALOREFOR INTERNAL USE AT THIS LOCATION ONLY,SUPPLIED BY BOOK SUPPLY BUREAU.TS 62351-1 IEC:2007(E)3 Figure 8 General security process continuous cycle.22 Figure 9 Correlation between the IEC 62351 series and IEC TC 57 profile standards.26 Figure 10 Authentication security