标准摘要
[中文适用范围]: IEC 62351:2018+A1:2020 规定了传输层和应用层的安全要求。虽然 IEC TS 62351-4:2007 主要在应用层为基于制造消息规范 (MMS) 的应用程序的握手期间的身份验证提供了一些有限的支持,但本文档为握手阶段和数据提供了对扩展完整性和身份验证的支持转移阶段。它提供应用程序层的共享密钥管理和数据传输加密,并为零个或多个中间实体提供端到端(E2E)安全性。虽然IEC TS 62351-4:2007仅提供对基于MMS的系统(即使用开放系统互通(OSI)协议栈的系统)的支持,但本文档提供对使用其他协议栈(例如互联网协议套件)的应用协议的支持。此支持已扩展为使用 XML 编码来保护应用程序协议。这种应用层的扩展安全性称为端到端安全性。除了端到端安全之外,IEC 62351 的这一部分还提供了到携带安全相关信息的环境协议的映射。当前仅考虑 OSI 和 XMPP 环境。本合并版本由第一版(2018年)及其修正案1(2020年)组成。因此,无需对本出版物进行修订。 [外文原描述]: IEC 62351:2018+A1:2020 specifies security requirements both at the transport layer and at the application layer. While IEC TS 62351-4:2007 primarily provided some limited support at the application layer for authentication during handshake for the Manufacturing Message Specification (MMS) based applications, this document provides support for extended integrity and authentication both for the handshake phase and for the data transfer phase. It provides for shared key management and data transfer encryption at the application layer and it provides security end-to-end (E2E) with zero or more intermediate entities. While IEC TS 62351-4:2007 only provides support for systems based on the MMS, i.e. systems using an Open Systems Interworking (OSI) protocol stack, this document provides support for application protocols using other protocol stacks, e.g. an Internet protocol suite. This support is extended to protect application protocols using XML encoding. This extended security at the application layer is referred to as E2E-security. In addition to E2E security, this part of IEC 62351 also provides mapping to environmental protocols carrying the security related information. Only OSI and XMPP environments are currently considered. This consolidated version consists of the first edition (2018) and its amendment 1 (2020). Therefore, no need to order amendment in addition to this publication.
英文名称Power systems management and associated information exchange - Data and communications security - Part 4: Profiles including MMS and derivatives