BS EN IEC 62351-4:2018 Power systems management and associated information exchange. Data and communications security. Profiles including MMS and derivatives

BS EN IEC 62351-4:2018

Power systems management and associated information exchange. Data and communications security. Profiles including MMS and derivatives

Status : Under review, Current   Published : January 2019



What is this standard about?

This part of IEC 62351 extends the scope of IEC TS 62351-4:2007 1 by specifying a compatibility mode that provides interoperation with implementation based on IEC TS 62351- 4:2007 and by specifying extended capabilities referred to as native mode.

This part of IEC 62351 specifies security requirements both at the transport layer and at the application layer. While IEC TS 62351-4:2007 primarily provided some limited support at the application layer for authentication during handshake for the Manufacturing Message Specification (MMS) based applications, this document also provides support for extended integrity and authentication both for the handshake phase and for the data transfer phase. It provides for shared key management and data transfer encryption at the application layer and it provides security end-to-end (E2E) with zero or more intermediate entities. While IEC TS 62351-4:2007 only provides support for systems based on the MMS, i.e. systems using an Open Systems Interworking (OSI) protocol stack, this document also provides support for application protocols using other protocol stacks, e.g. an Internet protocol suite (see 4.1). This support is extended to protect application protocols using XML encoding. This extended security at the application layer is referred to as E2E-security.

In addition to E2E security, this part of IEC 62351 also provides mapping to environmental protocols carrying the security related information. Only OSI and XMPP environments are currently considered.

It is intended that this part of IEC 62351 be referenced as a normative part of standards that have a need for using application protocols, e.g., MMS, in a secure manner.

It is anticipated that there are implementations, in particular Inter-Control Centre Communications Protocol (ICCP) implementations that are dependent on the IEC TS 62351- 4:2007 specifications of the T-profile and the A-security-profile. The specifications from IEC TS 62351-4:2007 are therefore included in this part of IEC 62351. Implementations supporting these specifications will interwork with implementation based on IEC TS 62351-4:2007.

This document represents a set of mandatory and optional security specifications to be implemented to protect application protocols.

Who is this standard for?

The initial audience for this document is the members of the working groups developing or making use of protocols. For the measures described in this part of IEC 62351 to take effect, they shall be accepted and referenced by the specifications for the protocols themselves.

The subsequent audience for this document is the developers of products that implement these protocols and the end user that want to specify requirements for its own environment.

Portions of this document may also be of use to managers and executives in order to understand the purpose and requirements of the work.

Standard NumberBS EN IEC 62351-4:2018
TitlePower systems management and associated information exchange. Data and communications security. Profiles including MMS and derivatives
StatusUnder review, Current
Publication Date11 January 2019
Normative References(Required to achieve compliance to this standard)ISO 9506-2:2003, ISO/IEC 8823-1:1994, IEC 62351-9:2017, ISO/IEC 8073:1997, ISO 8601:2004, EN 62351-9:2017, EN 62351-3:2014, IEC TS 62351-8:2011, EN 62351-3:2014/A1:2018, IEC 62351-3:2014, ISO/IEC 8824-1, IETF RFC 5246:2008, ISO/IEC 8825-1, IETF RFC 6120:2011, ITU-T X.509, IEC TS 62351-2, IETF RFC 5114:2008, ISO/IEC 9594-8, IETF RFC 3526:2003, IETF RFC 5480:2009, IETF RFC 5869:2010, IETF RFC 5639:2010, IETF RFC 6122:2011, IETF RFC 2104:1997, ISO/IEC 8825-4, IEC TS 62351-1
Informative References(Provided for Information)ISO/ISP14226-1:1996, IEC 60870-6-503:2014, EN 60870-6-802:2014, ISO/IEC 8822:1994, IEC 60870-6-802:2014, EN 60870-6-503:2014, EN 60870-6-702:2014, IEC TS 62351-4:2007, IEC 60870-6-702:2014, IETF RFC 7427:2015, NIST SP 800-38D:2007, IETF RFC 5289:2008, IETF RFC 5280:2008, IETF RFC 5288:2008, IETF RFC 3602:2003, IETF RFC 5084, IETF RFC 7525
International RelationshipsEN 60335-2-72:2009,EN IEC 62351-4:2018,IEC 62351-4:2018
Draft Superseded By08/30193440 DC17/30355602 DC
DescriptorsTransport layer (OSI), Internet, Cryptography, Computer networks, Communication networks, Telecommunication, Data transmission, Data security, Information exchange, Telemetry, Remote control systems, Electric power distribution, Electric power systems
Title in FrenchGestion des systèmes de puissance et échanges d'informations associés. Sécurité des communications et des données Profils comprenant MMS
Title in GermanEnergiemanagementsysteme und zugehöriger Datenaustausch. IT-Sicherheit für Daten und Kommunikation Profile einschließlich MMS und Ableitungen
ISBN978 0 580 97339 0
File Size1.985 MB

 Your basket
Your basket is empty

Multi-user access to over 3,500 medical device standards, regulations, expert commentaries and other documents

Tracked Changes

Understand the changes made to a standard with our new Tracked Changes version

Collaborate, Innovate, Accelerate.


The faster, easier way to work with standards