iTeh StandardsiTeh Standards
EURUSD
Your shopping cart is empty.
CLC

EN IEC 62645:2020

(Main)

Nuclear power plants - Instrumentation, control and electrical power systems - Cybersecurity requirements

Nuclear power plants - Instrumentation, control and electrical power systems - Cybersecurity requirements

See the scope of IEC 62645:2019. Adoption of IEC 62645:2019 is to be done without modification.

Kernkraftwerke - Leittechnische und elektrische Systeme - Anforderungen an die Cybersicherheit

Centrales nucléaires de puissance - Systèmes d’instrumentation, de contrôlecommande et d’alimentation électrique - Exigences relatives à la cybersécurité

L’IEC 62645:2019 établit des exigences et fournit des recommandations pour le développement et la gestion des programmes de sécurité informatique des systèmes numériques programmables d’I&C. Le critère de conformité du programme de sécurité des systèmes numériques programmables d’I&C de la centrale nucléaire aux exigences nationales applicables est inhérent aux exigences et recommandations du présent document. Le présent document définit les mesures adéquates pour ce qui concerne la prévention, la détection et la réaction à des actes malveillants, réalisés en utilisant des moyens informatiques (cyberattaques), portant atteinte aux systèmes numériques programmables d’I&C. Ceci comprend les situations non sûres, les endommagements d’équipements ou la dégradation des performances. Cette deuxième édition annule et remplace la première édition parue en 2014. Cette édition inclut les modifications techniques majeures suivantes par rapport à l'édition précédente: a) aligner la norme sur les nouvelles révisions de l’ISO/IEC 27001; b) passer en revue les exigences existantes et mettre à jour la terminologie et les définitions; c) prendre en compte, autant que possible, les exigences associées aux normes publiées depuis la parution de la première édition; d) prendre en compte le fait que les techniques de cybersécurité, mais aussi les pratiques nationales évoluent.

Jedrske elektrarne - Merilna, nadzorna in elektroenergetska oprema - Zahteve za kibernetsko varnost (IEC 62645:2019)

General Information

Status
Published
Publication Date
30-Jul-2020
ICS
27.120.20 - Nuclear power plants. Safety
Technical Committee
CLC/TC 45AX - Nuclear power plants
Drafting Committee
CLC/TC 45AX - Nuclear power plants
Current Stage
6060 - Document made available - Publishing
Start Date
31-Jul-2020
Due Date
05-Jul-2022
Completion Date
31-Jul-2020
Ref Project
SIST EN IEC 62645:2020 - Nuclear power plants - Instrumentation, control and electrical power systems - Cybersecurity requirements (IEC 62645:2019)

Buy Standard

EN IEC 62645:2020 - BARVEEN IEC 62645:2020 - BARVE
PreviousNext
Standard
EN IEC 62645:2020 - BARVE
English language
56 pages
sale 10% off
Preview
sale 10% off
Preview
e-Library read for
1 day

Standards Content (Sample)


SLOVENSKI STANDARD
01-oktober-2020
Jedrske elektrarne - Merilna, nadzorna in elektroenergetska oprema - Zahteve za
kibernetsko varnost (IEC 62645:2019)
Nuclear power plants - Instrumentation, control and electrical power systems -
Cybersecurity requirements (IEC 62645:2019)
Centrales nucléaires de puissance - Systèmes d’instrumentation, de contrôlecommande
et d’alimentation électrique - Exigences relatives à la cybersécurité (IEC 62645:2019)
Ta slovenski standard je istoveten z: EN IEC 62645:2020
ICS:
27.120.20 Jedrske elektrarne. Varnost Nuclear power plants. Safety
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

EUROPEAN STANDARD EN IEC 62645

NORME EUROPÉENNE
EUROPÄISCHE NORM
July 2020
ICS 27.120.20
English Version
Nuclear power plants - Instrumentation, control and electrical
power systems - Cybersecurity requirements
(IEC 62645:2019)
Centrales nucléaires de puissance - Systèmes Kernkraftwerke – Elektro- und leittechnische Systeme –
d'instrumentation, de contrôlecommande et d'alimentation Anforderungen an die IT-Sicherheitskonzeption
électrique - Exigences relatives à la cybersécurité (IEC 62645:2019)
(IEC 62645:2019)
This European Standard was approved by CENELEC on 2020-07-07. CENELEC members are bound to comply with the CEN/CENELEC
Internal Regulations which stipulate the conditions for giving this European Standard the status of a national standard without any alteration.
Up-to-date lists and bibliographical references concerning such national standards may be obtained on application to the CEN-CENELEC
Management Centre or to any CENELEC member.
This European Standard exists in three official versions (English, French, German). A version in any other language made by translation
under the responsibility of a CENELEC member into its own language and notified to the CEN-CENELEC Management Centre has the
same status as the official versions.
CENELEC members are the national electrotechnical committees of Austria, Belgium, Bulgaria, Croatia, Cyprus, the Czech Republic,
Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, the
Netherlands, Norway, Poland, Portugal, Republic of North Macedonia, Romania, Serbia, Slovakia, Slovenia, Spain, Sweden, Switzerland,
Turkey and the United Kingdom.

European Committee for Electrotechnical Standardization
Comité Européen de Normalisation Electrotechnique
Europäisches Komitee für Elektrotechnische Normung
CEN-CENELEC Management Centre: Rue de la Science 23, B-1040 Brussels
© 2020 CENELEC All rights of exploitation in any form and by any means reserved worldwide for CENELEC Members.
Ref. No. EN IEC 62645:2020 E
European foreword
The text of document 45A/1289/FDIS, future edition 2 of IEC 62645, prepared by SC 45A
"Instrumentation, control and electrical power systems of nuclear facilities" of IEC/TC 45 "Nuclear
instrumentation" was submitted to the IEC-CENELEC parallel vote and approved by CENELEC as
The following dates are fixed:
• latest date by which the document has to be implemented at national (dop) 2021-07-07
level by publication of an identical national standard or by endorsement
• latest date by which the national standards conflicting with the (dow) 2023-07-07
document have to be withdrawn
Attention is drawn to the possibility that some of the elements of this document may be the subject of
patent rights. CENELEC shall not be held responsible for identifying any or all such patent rights.
As stated in the nuclear safety directive 2009/71/EURATOM, Chapter 1, Article 2, item 2, Member
States are not prevented from taking more stringent safety measures in the subject-matter covered by
the Directive, in compliance with Community law.
In a similar manner, this European standard does not prevent Member States from taking more
stringent nuclear safety and/or security measures in the subject-matter covered by this standard.
Endorsement notice
The text of the International Standard IEC 62645:2019 was approved by CENELEC as a European
Standard without any modification.

In the official version, for Bibliography, the following notes have to be added for the standards
indicated:
IEC 60709 NOTE Harmonized as EN IEC 60709
ISO/IEC 27000:2018 NOTE Harmonized as EN ISO/IEC 27000:2020 (not modified)

Annex ZA
(normative)
Normative references to international publications
with their corresponding European publications
The following documents are referred to in the text in such a way that some or all of their content
constitutes requirements of this document. For dated references, only the edition cited applies. For
undated references, the latest edition of the referenced document (including any amendments)
applies.
NOTE 1  Where an International Publication has been modified by common modifications, indicated by (mod), the relevant
EN/HD applies.
NOTE 2  Up-to-date information on the latest versions of the European Standards listed in this annex is available here:
www.cenelec.eu.
Publication Year Title EN/HD Year
IEC 60880 2006 Nuclear power plants - Instrumentation and EN 60880 2009
control systems important to safety -
Software aspects for computer-based
systems performing category A functions
IEC 61226 -  Nuclear power plants - Instrumentation and - -
control systems important to safety -
Classification
IEC 61513 -  Nuclear power plants - Instrumentation and - -
control for systems important to safety -
General requirements for systems
IEC 62138 -  Nuclear power plants - Instrumentation and EN IEC 62138 -
control systems important to safety -
Software aspects for computer-based
systems performing category B or C
functions
IEC 62566 -  Nuclear power plants - Instrumentation and EN 62566 -
control important to safety - Development
of HDL-programmed integrated circuits for
systems performing category A functions
IEC 62859 -  Nuclear power plants - Instrumentation and - -
control systems - Requirements for
coordinating safety and cybersecurity
ISO/IEC 27001 2013 Information technology - Security EN ISO/IEC 27001 2017
techniques - Information security
management systems - Requirements
ISO/IEC 27002 2013 Information technology - Security EN ISO/IEC 27002 2017
techniques - Code of practice for
information security controls
ISO/IEC 27005 2018 Information technology_- Security - -
techniques_- Information security risk
management
IEC 62645 ®
Edition 2.0 2019-11
INTERNATIONAL
STANDARD
NORME
INTERNATIONALE
colour
inside
Nuclear power plants – Instrumentation, control and electrical power systems –

Cybersecurity requirements
Centrales nucléaires de puissance – Systèmes d’instrumentation, de contrôle-

commande et d’alimentation électrique – Exigences relatives à la cybersécurité

INTERNATIONAL
ELECTROTECHNICAL
COMMISSION
COMMISSION
ELECTROTECHNIQUE
INTERNATIONALE
ICS 27.120.20 ISBN 978-2-8322-7548-1

– 2 – IEC 62645:2019 © IEC 2019
CONTENTS
FOREWORD . 5
INTRODUCTION . 7
1 Scope . 9
1.1 General . 9
1.2 Application . 10
1.3 Framework . 10
2 Normative references . 12
3 Terms and definitions . 12
4 Abbreviated terms . 17
5 Establishing and managing a nuclear I&C programmable digital system security
programme . 17
5.1 Context of the organization . 17
5.1.1 Understanding the organization and its context . 17
5.1.2 Understanding the needs and expectations of interested parties . 17
5.1.3 Determining the scope of the I&C programmable digital system security
programme . 17
5.2 Programme, policy and plan . 18
5.2.1 I&C digital programmable system security program. 18
5.2.2 Policy . 18
5.2.3 Plan . 19
5.3 Leadership . 19
5.3.1 Leadership and commitment . 19
5.3.2 Roles, responsibilities and authorities . 19
5.4 Planning of the programme . 20
5.4.1 Cybersecurity objectives and planning to achieve them . 20
5.4.2 Addressing risks and opportunities of the programme . 20
5.4.3 Graded approach to I&C security and risk assessment . 21
5.5 Support . 28
5.5.1 Resources . 28
5.5.2 Training, competence and awareness . 28
5.5.3 Communications about cybersecurity . 29
5.5.4 Documented information . 29
5.6 Operation . 29
5.6.1 Operation planning and control . 29
5.6.2 Cybersecurity graded approach, risk assessment and risk treatment . 30
5.7 Performance evaluation . 30
5.7.1 Monitoring, measurement, analysis and evaluation . 30
5.7.2 Internal audit . 30
5.7.3 Management review . 30
5.8 Improvement . 31
5.8.1 General . 31
5.8.2 Nonconformity and corrective action . 31
5.8.3 Continual improvement . 31
6 Life-cycle implementation for I&C programmable digital system security . 31
6.1 General . 31
6.2 System requirements specification . 31

IEC 62645:2019 © IEC 2019 – 3 –
6.2.1 General . 31
6.2.2 Security degree assignment . 32
6.3 System specification . 32
6.3.1 Selection of pre-existing components . 32
6.3.2 System architecture . 32
6.4 System detailed design and implementation . 32
6.4.1 General . 32
6.4.2 Risk assessment at the design phase . 33
6.4.3 Design project security plan . 33
6.4.4 Communication pathways . 33
6.4.5 Security zone definition . 34
6.4.6 Security assessment of
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

This May Also Interest You

CLC
EN IEC 62988:2022(Main)
Nuclear power plants - Instrumentation and control systems important to safety - Selection and use of wireless devices
SIST EN IEC 62988:2022

See the scope of IEC 62988:2018. Adoption of IEC 62988:2018 is to be done without modification.

  • Standard
    21 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CLC
EN IEC 60987:2021(Main)
Nuclear power plants - Instrumentation and control important to safety - Hardware requirements
SIST EN IEC 60987:2021

IEC 60987:2021 provides requirements and recommendations for the hardware aspects of I&C systems whatever the technology and applies for all safety classes in a graded manner (as defined by IEC 61513). The requirements defined within this document guide, in particular, the selection of pre-existing components, hardware aspects of system detailed design and implementation and equipment manufacturing. This third edition cancels and replaces the second edition published in 2007. This edition includes the following significant technical changes with respect to the previous edition: a) Title modified; b) Take account of the fact that hardware requirements apply to all I&C technologies, including conventional hardwired equipment, programmable digital equipment or by using a combination of both types of equipment; c) Align the standard with the new revisions of IAEA documents SSR-2/1, which include as far as possible an adaptation of the definitions; d) Replace, as far as possible, the requirements associated with standards published since the edition 2.1, especially IEC 61513, IEC 60880, IEC 62138, IEC 62566 and IEC 62566‑2; e) Review the existing requirements and update the terminology and definitions; f) Extend the scope of the standard to all hardware (computerized and non-computerized) and to all safety classes 1, 2 and 3; g) Complete, update the IEC and IAEA references and vocabulary; h) Check possible impact of other IAEA requirements and recommendations considering extension of the scope of SC 45A; i) Highlight the use of IEC 62566 and IEC 62566-2 for HPD development; j) Introduce specific activities for pre-existing items (selection, acceptability and/or mitigation); k) Introduce clearer requirements for electronic module-level design, manufacturing and control; l) Complete reliability assessment methods; m) Introduce requirements when using automated tests or control activities; n) Complete description of manufacturing control activities (control process, assessment of manufactured equipment, preservation of products); o) Define and ensure the inclusion of a graded approach for dealing with the 3 different classes of equipment and related requirements.

  • Standard
    53 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CLC
EN IEC 62855:2021(Main)
Nuclear power plants - Electrical power systems - Electrical power systems analysis
SIST EN IEC 62855:2021

IEC 62855 provides the electrotechnical engineering guidelines for analysis of AC and DC electrical power systems in nuclear power plants (NPPs) in order to demonstrate that the power sources and the distribution systems have the capability for safe operation and shut down of the NPP, bringing it to a controlled state after an anticipated operational occurrence or accident conditions and finally reaching a safe state. The analytical studies discussed in this document provide assurance that the design bases are satisfied to meet their functional requirements under the conditions produced by the applicable design basis events. The studies provide assurance that the electrical power system is capable of supporting safety functions during all required plant conditions. NOTE The safety functions are described in IAEA Specific Safety Requirements SSR-2/1 related to the design of the nuclear power plants.. Analytical studies validate the robustness and adequacy of design margins and demonstrate the capability of electrical power systems to support plant operation for normal, abnormal, degraded and accident conditions. The analyses are used to verify that the electrical power system can withstand minor disturbances and that the consequences of major disturbances or failures do not degrade the capability of the electrical power systems to support safe shutdown of the plant and maintain the plant in shutdown condition. The analyses are performed with one or more of • simulation tools (software and hardware) that have been verified and validated, • hand calculations, and • tests. This document provides guidance on the types of analyses required to demonstrate that the plant's auxiliary power system can perform the required safety functions. This document does not provide specific details on how the analysis should be conducted. This document does not cover digital controllers (such as controllers for rectifiers, inverters, sequencers and electrical protection devices) used in electrical power systems. IEC 61513 gives recommendations that apply to the electronic controls and protective elements of the electrical power systems. This document does not include environmental conditions (i.e. temperature, humidity, etc.) or external events (seismic, flooding, fire, high energy electromagnetic pulse, etc.) that may impact equipment sizing or protection requirements. The external events lightning and geomagnetic storms are included. This document does not cover additional or unique requirements for stand-alone power system, such as power supplies for security measures in NPPs. Pertinent clauses of this document may be used as a guideline for such systems. Redundancy in the power system design can increase the availability of electrical power to critical plant equipment. Performing a probabilistic risk assessment (PRA) is a method of assessing system availability and optimizing design for high reliability. This document does not cover improving the reliability of NPP electrical power systems using statistical or diverse and redundant schemes. Requirements for safeguards of personnel involved with installation, maintenance and operation of electrical systems and general personal safety are outside the scope of this document. General guidance for lightning protection of equipment is provided in relevant clauses of this document. This document is intended to be used: • for verification of the design of new nuclear power plants, • for demonstrating the adequacy and impact of major modifications of electrical power systems in operating nuclear power plants, and • where there is a requirement to assess and establish operating limits and constraints for existing plants. Pertinent parts of this document can be used as guidance for decommissioning stages.

  • Standard
    60 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CLC
EN IEC/IEEE 62582-6:2021(Main)
Nuclear power plants - Instrumentation and control important to safety - Electrical equipment condition monitoring methods - Part 6: Insulation resistance
SIST EN IEC/IEEE 62582-6:2021

This part of IEC/IEEE 62582 contains methods for condition monitoring of organic and polymeric materials in instrumentation and control cables using insulation resistance measurements in the detail necessary to produce accurate and reproducible results during simulated accident conditions. It includes the requirements for the measurement system and measurement procedure, and the reporting of the measurement results. NOTE Measurement of insulation resistance during simulated accident conditions with the aim of determining the lowest value during the accident in order to assess cable performance involves special requirements given in this document. Methods for measurement under stable (non-accident) conditions are available in other international standards, e.g. IEC 62631-3-3. The different parts of the IEC/IEEE 62582 series are measurement standards, primarily for use in the management of ageing in initial qualification and after installation. IEC/IEEE 62582- 1 includes requirements for the application of the other parts of the IEC/IEEE 62582 series and some elements which are common to all methods. Information on the role of condition monitoring in qualification of equipment important to safety is found in IEC/IEEE 60780-323.

  • Standard
    27 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CLC
EN IEC 61226:2021(Main)
Nuclear power plants - Instrumentation, control and electrical power systems important to safety - Categorization of functions and classification of systems
SIST EN IEC 61226:2021

This document establishes, for nuclear power plants2, a method of assignment of the functions specified for the plant into categories according to their importance to safety. Subsequent classification of the I&C and electrical power systems performing or supporting these functions, based on the assigned category, then determines relevant design criteria. The design criteria, when applied, ensure the achievement of each function in accordance to its importance to safety. In this document, the criteria are those of functionality, reliability, performance, environmental qualification (e.g. seismic) and quality assurance (QA). This document is applicable to: - the functions important to safety that are performed by I&C systems and supported by electrical power systems (categorization of I&C functions), - the I&C systems that enable those functions to be implemented (classification of I&C systems), - the electrical power systems that support those functions (classification of electrical power systems). The systems under consideration provide automated protection, closed or open loop control, information to the operating staff, and electrical power supply to systems. These systems keep the NPP conditions inside the safe operating envelope and provide automatic actions, or enable manual actions, that prevent or mitigate accidents, or that prevent or minimize radioactive releases to the site or wider environment. The I&C and electrical power systems that fulfil these roles safeguard the health and safety of the NPP operators and the public. This document follows the general principles given in IAEA Safety Requirement SSR-2/1 and Safety Guides SSG-30, SSG-34 and SSG-39, and it defines a structured method of applying the guidance contained in those codes and standards to the I&C and electrical power systems that perform functions important to safety in a NPP. This document is read in association with the IAEA guides together with IEC 61513 and IEC 63046 in implementing the requirements of the IEC 61508 series. The overall classification scheme of structures, systems and components for NPPs can be summarized as follows by Figure 1.

  • Standard
    43 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CLC
EN IEC 62954:2021(Main)
Nuclear power plants - Control rooms - Requirements for emergency response facilities
SIST EN IEC 62954:2021

This document presents the requirements for the on-site emergency response facilities (referred to hereinafter as the “ERF”) which are to be used in case of incidents or accidents occurring on the associated Nuclear Power Plant (NPP). The ERF consists of the Emergency Response Centre (ERC), the Technical Support Centre (TSC) and the Operational Support Centre (OSC), as shown in Figure 1. It establishes requirements for the ERF features and ERF I&C equipment to: • coordinate on-site operational efforts with respect to safety and radioprotection; • optimize the design in terms of environment control, lighting, power supplies and access control of the ERF; • enhance the identification and resolution of potential conflicts between the traditional operational means and emergency means (MCR/SCR and ERF, operating staff and emergency teams, operational procedures and emergency procedures); • aid the identification and the enhancement of the potential synergies between the traditional operational means and emergency means. This document is intended for application to new nuclear power plants whose conceptual design is initiated after the publication of this document, but it may also be used for designing and implementing ERF in existing nuclear power plants or in any other nuclear facility. Detailed equipment design is outside the scope of this document. This document does not define the situations (reactor plant conditions, hazards and magnitudes of hazards) leading to mobilisation of emergency response teams and activation / use of the ERF. These aspects are usually addressed in the NPP Emergency Plan. However, the need for consistency of the ERF design and operation with the NPP Emergency Plan is within scope.

  • Standard
    29 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CLC
EN IEC 63046:2021(Main)
Nuclear power plants - Electrical power system - General requirements
SIST EN IEC 63046:2021

See the scope of IEC 63046:2020. Adoption of IEC 63046:2020 is to be done without modification.

  • Standard
    91 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CLC
EN IEC/IEEE 60980-344:2021(Main)
Nuclear facilities - Equipment important to safety - Seismic qualification
SIST EN IEC/IEEE 60980-344:2021

See the scope of IEC/IEEE 60980-344:2020. Adoption of IEC/IEEE 60980-344:2020is to be done without modification.

  • Standard
    85 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CLC
EN IEC 62566-2:2020(Main)
Nuclear power plants - Instrumentation and control systems important to safety - Development of HDL-programmed integrated circuits - Part 2: HDL-programmed integrated circuits for systems performing category B or C functions
SIST EN IEC 62566-2:2021

See the scope of IEC 62566-2:2020. Adoption of IEC 62566-2:2020 is to be done without modification.

  • Standard
    61 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CLC
EN IEC 62003:2020(Main)
Nuclear power plants - Instrumentation, control and electrical power systems - Requirements for electromagnetic compatibility testing
SIST EN IEC 62003:2020

IEC 62003:2020 establishes requirements for electromagnetic compatibility testing of instrumentation, control, and electrical equipment supplied for use in systems important to safety at nuclear power plants and other nuclear facilities. The document lists the applicable IEC standards (principally the IEC 61000 series) which define the general test methods, and provides the necessary application-specific parameters and criteria to ensure that nuclear safety requirements are met. This second edition cancels and replaces the first edition published in 2009. This edition includes the following significant technical changes with respect to the previous edition: a) title modified. b) expand the scope to encompass Electromagnetic Magnetic Compatibility (EMC) considerations for electrical equipment. c) provide guidance for addressing the use of wireless technology. d) enhance the description of the electromagnetic environment to provide clarification when selecting custom test levels or for test exemptions. e) include example information to be contained within an EMC test plan. f) provide guidance for characterization of the electromagnetic environment at the point of installation within a nuclear facility.

  • Standard
    42 pages
    English language
    sale 10% off
    e-Library read for
    1 day