Skip to main content
Back

EVS-EN IEC 62351-4:2018

Power systems management and associated information exchange - Data and communications security - Part 4: Profiles including MMS and derivatives

General information

Valid from 03.01.2019
Base Documents
IEC 62351-4:2018; EN IEC 62351-4:2018
Directives or regulations
None

Standard history

Status
Date
Type
Name
02.10.2020
Amendment
03.01.2019
Main
1.1 General
This part of IEC 62351 extends the scope of IEC TS 62351-4:2007 [1]1 by specifying a compatibility mode that provides interoperation with implementation based on IEC TS 62351- 4:2007 and by specifying extended capabilities referred to as native mode.
This part of IEC 62351 specifies security requirements both at the transport layer and at the application layer. While IEC TS 62351-4:2007 primarily provided some limited support at the application layer for authentication during handshake for the Manufacturing Message Specification (MMS) based applications, this document also provides support for extended integrity and authentication both for the handshake phase and for the data transfer phase. It provides for shared key management and data transfer encryption at the application layer and it provides security end-to-end (E2E) with zero or more intermediate entities. While IEC TS 62351-4:2007 only provides support for systems based on the MMS, i.e. systems using an Open Systems Interworking (OSI) protocol stack, this document also provides support for application protocols using other protocol stacks, e.g. an Internet protocol suite (see 4.1).
This support is extended to protect application protocols using XML encoding. This extended security at the application layer is referred to as E2E-security.
In addition to E2E security, this part of IEC 62351 also provides mapping to environmental protocols carrying the security related information. Only OSI and XMPP environments are currently considered.
It is intended that this part of IEC 62351 be referenced as a normative part of standards that have a need for using application protocols, e.g., MMS, in a secure manner. It is anticipated that there are implementations, in particular Inter-Control Centre Communications Protocol (ICCP) implementations that are dependent on the IEC TS 62351- 4:2007 specifications of the T-profile and the A-security-profile. The specifications from IEC TS 62351-4:2007 are therefore included in this part of IEC 62351. Implementations supporting these specifications will interwork with implementation based on IEC TS 62351-4:2007.
NOTE The A-security-profile is in the strict sense not a profile, but the term is here kept for historical reasons.
This document represents a set of mandatory and optional security specifications to be implemented to protect application protocols.
The initial audience for this document is the members of the working groups developing or making use of protocols. For the measures described in this part of IEC 62351 to take effect, they shall be accepted and referenced by the specifications for the protocols themselves.
The subsequent audience for this document is the developers of products that implement these protocols and the end user that want to specify requirements for its own environment.
Portions of this document may also be of use to managers and executives in order to understand the purpose and requirements of the work.

Required fields are indicated with *

*
*
*
PDF
39.04 € incl tax
Paper
39.04 € incl tax
Browse standard from 2.44 € incl tax
Standard monitoring

Customers who bought this item also bought

Amendment

EVS-EN IEC 62351-4:2018/A1:2020

Power systems management and associated information exchange - Data and communications security - Part 4: Profiles including MMS and derivatives
Newest version Valid from 02.10.2020
Main

EVS-EN IEC 62351-6:2020

Power systems management and associated information exchange - Data and communications security - Part 6: Security for IEC 61850
Newest version Valid from 15.12.2020
Main

EVS-EN IEC 61869-13:2021

Instrument transformers - Part 13: Stand-alone merging unit (SAMU)
Newest version Valid from 03.08.2021
Main

EVS-EN IEC 62351-5:2023

Power systems management and associated information exchange - Data and communications security - Part 5: Security for IEC 60870-5 and derivatives
Newest version Valid from 01.03.2023