DD IEC/TS 62351-4:2007
Current
The latest, up-to-date edition.
Power systems management and associated information exchange. Data and communications security Profiles including MMS
Hardcopy , PDF
English
07-31-2007
1 Scope and object
1.1 Scope
1.2 Object
2 Normative References
3 Terms and definitions
4 Security issues addressed by this technical specification
4.1 Security for application and transport profiles
4.2 Security threats countered
4.3 Attack methods countered
5 A-Profile security
5.1 MMS
5.2 Logging
5.3 ACSE
5.3.1 Peer entity authentication
5.3.2 AARQ
5.3.3 AARE
6 T-Profile security
6.1 TCP T-Profiles
6.1.1 Conformance to this technical specification
6.1.2 Use of TLS in TCP T-Profiles
6.1.3 TP0
6.1.4 RFC 1006
6.1.5 TLS requirements
6.1.6 Use of TLS
6.2 OSI T-Profiles
6.3 Certificate authority support
7 Conformance
7.1 General conformance
7.2 Conformance of IEC 60870-6 TASE.2 security
Bibliography
Specifies procedures, protocol extensions, and algorithms to facilitate securing ISO 9506 - Manufacturing Message Specification (MMS) based applications.
Committee |
PEL/57
|
DocumentType |
Standard
|
Pages |
18
|
PublisherName |
British Standards Institution
|
Status |
Current
|
This part of IEC 62351 specifies procedures, protocol extensions, and algorithms to facilitate securing ISO 9506 – Manufacturing Message Specification (MMS) based applications. It is intended that this technical specification be referenced as a normative part of other IEC TC 57 standards that have the need for using MMS in a secure manner.
This technical specification represents a set of mandatory and optional security specifications to be implemented for applications when using ISO/IEC 9506 (Manufacturing Automation Specification).
NOTE Within the scope of IEC TC 57, there are two identified standards that may be impacted: IEC 61850-8-1 and IEC 60870-6.
This specification contains a set of specifications that are to be used by referencing standards in order to secure information transferred when using MMS. The recommendations are based upon specific communication profile protocols used in order to convey MMS information.
IEC 61850-8-1 and IEC 60870-6 make use of MMS in a 7-layer connection-oriented mechanism. Each of these standards is used over either the OSI or TCP profiles.
Standards | Relationship |
IEC TS 62351-4:2007 | Identical |
ISO/ISP 14226-1:1996 | Industrial automation systems — International Standardized Profile AMM11: MMS General Applications Base Profile — Part 1: Specification of ACSE, Presentation and Session protocols for use by MMS |
ISO 8650:1988 | Information processing systems — Open Systems Interconnection — Protocol specification for the Association Control Service Element |
ISO 9506-2:2003 | Industrial automation systems Manufacturing Message Specification Part 2: Protocol specification |
IEC TS 62351-3:2007 | Power systems management and associated information exchange - Data and communications security - Part 3: Communication network and system security - Profiles including TCP/IP |
ISO 9506-1:2003 | Industrial automation systems Manufacturing Message Specification Part 1: Service definition |
ISO/IEC 9594-8:2017 | Information technology Open Systems Interconnection The Directory Part 8: Public-key and attribute certificate frameworks |
IEC TS 62351-1:2007 | Power systems management and associated information exchange - Data and communications security - Part 1: Communication network and system security - Introduction to security issues |
ISO/ISP 14226-2:1996 | Industrial automation systems — International Standardized Profile AMM11: MMS General Applications Base Profile — Part 2: Common MMS requirements |
ISO/IEC 8649:1996 | Information technology Open Systems Interconnection Service definition for the Association Control Service Element |
ISO/ISP 14226-3:1996 | Industrial automation systems — International Standardized Profile AMM11: MMS General Applications Base Profile — Part 3: Specific MMS requirements |
Access your standards online with a subscription
Features
-
Simple online access to standards, technical information and regulations.
-
Critical updates of standards and customisable alerts and notifications.
-
Multi-user online standards collection: secure, flexible and cost effective.