Interface Category 10: Interface between Control Systems and Non-control/Corporate Systems

Logical Interface Characteristics

Description of Interface Category Types of Data Standards used for these Categories Cybersecurity Requirements Cybersecurity Concerns and Failures

Category 10:

Interface between control systems and non-control/corporate systems, e.g.

  • Between a Work Management System and a Geographic Information System

Logical Interfaces:

  • U131

Real-time power system data:

  • alarms
  • status
  • measurements
  • control settings
  • control commands

Maintenance data:

  • equipment health data
  • event logs
  • updated settings
  • configuration updates
  • software updates

Information standards:

  • IEC 61968

 

Network standards:

  • Web services

 

Cybersecurity standards

 

Cybersecurity requirements::

  • Availability = H
  • Integrity = H
  • Confidentiality = L
  • Privacy = L

NISTIR 7628 Catalog of Security Requirements

  • SG.AC-14 Permitted Actions without Identification or Authentication
  • SG.IA-4 User Identification and Authentication
  • SG.IA-5 Device Identification and Authentication
  • SG.IA-6 Authenticator Feedback
  • SG.SC-3 Security Function Isolation
  • SG.SC-5 Denial-of-Service Protection
  • SG.SC-7 Boundary Protection
  • SG.SC-8 Communication Integrity
  • SG.SC-9 Communication Confidentiality (?)
  • SG.SI-7 Software and Information Integrity

Cybersecurity Concerns & Failures:

  • Denial of service
  • Lost data
  • Modified data
  • Unvalidated data
  • Late data
  • Lack of data quality information
  • Lack of alarms or event notifications
  • Lack of alternate sources of critical information
  • Invalid commands