标准摘要
[中文适用范围]: 本部分IEC 62351规定了如何在需要网络安全的情况下,为使用TCP/IP作为消息传输层的SCADA和远动协议提供机密性、完整性保护和消息级认证。虽然有许多解决方案可以保护TCP/IP,但本部分的特定范围是在通信实体之间,即在TCP/IP连接的每一端提供安全性。使用规范外部安全设备(例如“线内跳线”)被视为超出范围。本部分IEC 62351规定了如何通过约束传输层安全(TLS)(定义为RFC 5246)的消息、过程和算法规范来保护基于TCP/IP的协议,使其适用于IEC的远动环境。TLS应用于保护TCP通信。标准旨在作为其他IEC标准的规范性部分被引用,这些标准需要为其基于TCP/IP的协议提供安全性。但是,是否引用本标准由各个协议安全倡议自行决定。本部分IEC 62351反映了IEC电力管理系统协议的安全要求。如果其他标准提出新的要求,本标准可能需要修订。 [外文原描述]: IEC 62351-3:2014+A1:2018+A2:2020 specifies how to provide confidentiality, integrity protection, and message level authentication for SCADA and telecontrol protocols that make use of TCP/IP as a message transport layer when cyber-security is required. Although there are many possible solutions to secure TCP/IP, the particular scope of this part is to provide security between communicating entities at either end of a TCP/IP connection within the end communicating entities. This part of IEC 62351 reflects the security requirements of the IEC power systems management protocols. This consolidated version consists of the first edition (2014), its amendment 1 (2018) and its amendment 1 (2020). Therefore, no need to order amendments in addition to this publication.
英文名称Power systems management and associated information exchange - Data and communications security - Part 3: Communication network and system security - Profiles including TCP/IP