标准摘要
[中文适用范围]: 本标准涉及用于电力系统配电的测量设备(PMD,根据IEC 61557-12)和功率质量仪表(PQI,根据IEC 62586-1)以及用于数据收集的设备(根据IEC 62974-1)的网络安全,这些设备计划安装在受限访问区域。本标准涉及用于电力计量和监测、功率质量监测、数据收集和分析的设备的网络安全方面(例如设备加固或设备弹性),但不涵盖组织网络安全的要求(例如最终用户安全策略)。注:组织网络安全对于设备的可靠运行至关重要。本标准旨在帮助制造商和其他相关利益相关者提高对网络安全方面的认识,并提供基于相关标准(如IEC 62443(所有部分)和ISO/IEC 27001)和设备/系统方法的基本指导,以实现适当的安全缓解措施以应对安全威胁。本标准不适用于由IEC 62053-2x系列标准涵盖的计费电表。 [外文原描述]: IEC TS 63383:2022 deals with cybersecurity related to measuring devices (PMD according to IEC 61557-12 and PQI according to IEC 62586-1) and devices for data collection (devices according to IEC 62974-1) that are intended to be installed in restricted access areas. This document deals with cybersecurity aspects (e.g. device hardening or device resilience) of device(s) used for power metering and monitoring, power quality monitoring, data collection and analysis, but does not cover requirements for organisational cybersecurity (e.g. end-user security policy). This document is a first attempt to develop awareness by manufacturers and other relevant stakeholders about cybersecurity aspects and provide basic guidance for achieving the appropriate security mitigation against vulnerabilities to security threats: – in coherence with device/system approaches described in relevant standards such as IEC 62443 (all parts) and ISO/IEC 27001, – based on generic system use-cases. This document does not cover billing meters covered by the IEC 62053-2x set of standards.
英文名称Cybersecurity aspects of devices used for power metering and monitoring, power quality monitoring, data collection and analysis