IEC 62351-4:2018 电力系统管理和相关信息交换.数据和通信安全.第4部分:包括MMS和衍生物的配置文件

标准编号：IEC 62351-4:2018

中文名称：电力系统管理和相关信息交换.数据和通信安全.第4部分:包括MMS和衍生物的配置文件

英文名称：Power systems management and associated information exchange - Data and communications security - Part 4: Profiles including MMS and derivatives

发布日期：2018-11-19

标准范围

IEC 62351:2018（E）规定了传输层和应用层的安全要求。虽然IEC TS 62351-4:2007主要在应用层为基于制造消息规范（MMS）的应用程序在握手期间的身份验证提供了一些有限的支持，但本文档为握手阶段和数据传输阶段的扩展完整性和身份验证提供了支持。它在应用层提供共享密钥管理和数据传输加密，并提供零个或多个中间实体的端到端（E2E）安全性。虽然IEC TS 62351-4:2007仅支持基于MMS的系统，即使用开放系统互连（OSI）协议栈的系统，但本文件支持使用其他协议栈的应用协议，例如:。g、 互联网协议套件。这种支持扩展到使用XML编码保护应用程序协议。应用层的这种扩展安全性被称为E2E安全性。除了E2E安全性，IEC 62351的这一部分还提供了到承载安全相关信息的环境协议的映射。目前只考虑OSI和XMPP环境

IEC 62351:2018(E) specifies security requirements both at the transport layer and at the application layer. While IEC TS 62351-4:2007 primarily provided some limited support at the application layer for authentication during handshake for the Manufacturing Message Specification (MMS) based applications, this document provides support for extended integrity and authentication both for the handshake phase and for the data transfer phase. It provides for shared key management and data transfer encryption at the application layer and it provides security end-to-end (E2E) with zero or more intermediate entities. While IEC TS 62351-4:2007 only provides support for systems based on the MMS, i.e. systems using an Open Systems Interworking (OSI) protocol stack, this document provides support for application protocols using other protocol stacks, e.g. an Internet protocol suite. This support is extended to protect application protocols using XML encoding. This extended security at the application layer is referred to as E2E-security. In addition to E2E security, this part of IEC 62351 also provides mapping to environmental protocols carrying the security related information. Only OSI and XMPP environments are currently considered

标准预览图