IEC TS 63074:2023 机械安全.与安全相关控制系统功能安全相关的安全方面

标准编号：IEC TS 63074:2023

中文名称：机械安全.与安全相关控制系统功能安全相关的安全方面

英文名称：Safety of machinery - Security aspects related to functional safety of safety-related control systems

发布日期：2023-02-09

标准范围

IEC TS 63074:2023确定了IEC 62443系列中与设计和实施安全相关控制系统(SCS)时考虑的安全威胁和漏洞相关的相关方面，这些威胁和漏洞可能导致失去维持安全运行的能力机器。与SCS有潜在关系的机器相关的典型安全方面包括:-直接或间接通过机器的其他部分的SCS的漏洞，这些漏洞可以被安全威胁利用，从而导致安全攻击（安全漏洞）；-对SCS的安全特性和正确执行其功能的能力的影响；-典型用例定义和相应威胁模型的应用。本文档不考虑安全威胁和漏洞的非安全相关方面。本文件的重点是故意恶意行为。然而，本文件不考虑有意的硬件操作（例如接线、组件更换）或SCS物理操作（例如物理旁路）造成的可预见的误用。本文档不涵盖信息技术（IT）产品和SCS中使用的设备设计的安全要求（例如，可以提供产品特定标准，如IEC TS 63208）。

IEC TS 63074:2023 identifies the relevant aspects of the IEC 62443 series related to security threats and vulnerabilities that are considered for the design and implementation of safety-related control systems (SCS) which can lead to the loss of the ability to maintain safe operation of a machine.
Typical security aspects related to the machine with potential relation to SCS are:
– vulnerabilities of the SCS either directly or indirectly through the other parts of the machine which can be exploited by security threats that can result in security attacks (security breach);
– influence on the safety characteristics and ability of the SCS to properly perform its function(s);
– typical use case definition and application of a corresponding threat model.
Non-safety-related aspects of security threats and vulnerabilities are not considered in this document.
The focus of this document is on intentional malicious actions. However, intentional hardware manipulation (e.g. wiring, exchange of components) or foreseeable misuse by physical manipulation of SCS (e.g. physical bypass) is not considered in this document.
This document does not cover security requirements for information technology (IT) products and for the design of devices used in the SCS (e.g., product specific standards can be available, such as IEC TS 63208).

标准预览图