IEC 62351 Cybersecurity Standards
Description
The scope of the IEC 62351 series is information security for power system control operations. The primary objectives are two-fold:
- Undertake the development of standards for security of the communication protocols defined by IEC TC 57, specifically the IEC 60870-5 series, the IEC 60870-6 series, the IEC 61850 series, the IEC 61970 series, and the IEC 61968 series.
- Undertake the development of standards and/or technical reports on end-to-end security issues.
Specific objectives include:
- IEC 62351-1 provides an introduction to the remaining parts of the standard, primarily to introduce the reader to various aspects of information security as applied to power system operations.
- IEC 62351-3 to IEC 62351-6 specify security standards for the IEC TC 57 communication protocols. These can be used to provide various levels of protocol security, depending upon the protocol and the parameters selected for a specific implementation. They have also been design for backward compatibility and phased implementations.
- IEC 62351-7 addresses one area among many possible areas of end-to-end information security, namely the enhancement of overall management of the communications networks supporting power system operations.
- Other parts are expected to follow to address more areas of information security.
Mapping of IEC 61850 to IEC 62351
Scope
Standard Part | Elc | 1 | 2 | 3 | 4 | 5-7 | Sv | Sm | Bu | In | Cs | Gu | Tst |
IEC 62351-1 Security for TC57 Standards and End-to-End Security | X | X | |||||||||||
IEC 62351-2 Glossary | X | X | |||||||||||
IEC 62351-3 Security Using Transport Layer Security (TLS) | X | X | |||||||||||
IEC 62351-4 Security for Manufacturing Messaging Specification (MMS) | X | X | |||||||||||
IEC 62351-5 Security for IEC 60870-5 and DNP3 | X | X | X | X | X | ||||||||
IEC 62351-6 Security for IEC 61850 | X | X | X | X | |||||||||
IEC 62351-7 Network and System Management Objects | X | X | X | ||||||||||
IEC 62351-8 Role-based Access Control | X | X | X | ||||||||||
IEC 62351-9 Cyber security key management for power system equipment (pending) | X | X | X | X | X | X | |||||||
IEC 62351-10 Security Architecture Guidelines for TC 57 Systems | X | X | X | ||||||||||
IEC 62351-11 Security for XML Files (pending) | X | X | X | X |
NIST CSWG Cybersecurity Assessment
Link to CSWG Cybersecurity assessment