IEC 62645:2019 核电厂.仪表和控制系统.计算机系统安全程序的要求

标准编号：IEC 62645:2019

中文名称：核电厂.仪表和控制系统.计算机系统安全程序的要求

英文名称：Nuclear power plants - Instrumentation, control and electrical power systems - Cybersecurity requirements

发布日期：2019-11-13

标准范围

IEC 62645:2019为I&C可编程数字系统的有效计算机安全程序的开发和管理制定了要求并提供了指导。这些要求和指南中固有的标准是发电厂I&C可编程数字系统安全计划符合适用国家的要求。本文件定义了预防、检测和应对通过数字手段对I&C可编程数字系统的恶意行为（网络攻击）的适当措施。这包括任何不安全情况、设备损坏或工厂性能下降。这第二版取消并取代了2014年出版的第一版。与上一版相比，此版本包括以下重大技术变更:a)使标准与ISO/IEC 27001的新修订版保持一致；b)审查现有要求并更新术语和定义；c)尽可能考虑与自第一版以来发布的标准相关的要求；d)考虑到网络安全技术以及国家实践不断发展的事实。

IEC 62645:2019 establishes requirements and provides guidance for the development and management of effective computer security programmes for I&C programmable digital systems. Inherent to these requirements and guidance is the criterion that the power plant I&C programmable digital system security programme complies with the applicable country’s requirements.
This document defines adequate measures for the prevention of, detection of and reaction to malicious acts by digital means (cyberattacks) on I&C programmable digital systems. This includes any unsafe situation, equipment damage or plant performance degradation.
This second edition cancels and replaces the first edition published in 2014. This edition includes the following significant technical changes with respect to the previous edition:
a) to align the standard with the new revisions of ISO/IEC 27001;
b) to review the existing requirements and to update the terminology and definitions;
c) to take account of, as far as possible, requirements associated with standards published since the first edition;
d) to take into account the fact that cybersecurity techniques, but also national practices evolve.

标准预览图