Power systems management and associated information exchange - Data and communication security - Part 100-6: Cybersecurity conformance testing for IEC 61850-8-1 and IEC 61850-9-2

IEC TS 62351-100-6:2022 (E), which is a technical specification, is part of the IEC 62351 suite of standards, which describes test cases for interoperability conformance testing of data and communication security for Substation Automation Systems [SAS] and telecontrol systems which implement IEC TS 62351-6. The tests described in this part do not evaluate the security of the implementation. Thus, citing conformance to this part does not imply that any particular security level has been achieved by the corresponding product, or by the system in which it is used.
The goal of this part of IEC 62351 is to enable interoperability by providing a standard method of testing protocol implementations, but it does not guarantee the full interoperability of devices. It is expected that using this specification during testing will minimize the risk of non-interoperability. Additional testing and assurance measures will be required to verify that a particular implementation of IEC TC 62351-6 has correctly implemented all the security functions and that they can be assured to be present in all delivered products. This topic is covered in other IEC standards, for example IEC 62443.
The scope of this document is to specify common available procedures and definitions for conformance and/or interoperability testing of IEC 62351-6, the IEC 61850-8-1, IEC 61850-9-2 and also their recommendations over IEC 62351-3 for profiles including TCP/IP and IEC 62351 4 for profiles including MMS. These are the security extensions for IEC 61850 and derivatives to enable unambiguous and standardized evaluation of IEC TS 62351-6 and its companion standards protocol implementations.
The detailed test cases per companion standard, containing among others mandatory and optional mandatory test cases per Secure Communication Application Function, secure ASDU (Application Service Data Unit) and transmission procedures, will become available as technical specifications (TS). Other functionality may need additional test cases, but this is outside the scope of this part of IEC 62351. This document is such a technical specification for the mentioned companion standard.
This document deals mainly with data and communication security conformance testing; therefore, other requirements, such as safety or EMC (Electromagnetic compatibility) are not covered. These requirements are covered by other standards (if applicable) and the proof of compliance for these topics is done according to these standards.

General Information

Status
Published
Publication Date
16-Aug-2022
Current Stage
PPUB - Publication issued
Start Date
16-Aug-2022
Completion Date
17-Aug-2022
Ref Project

Buy Standard

Technical specification
IEC TS 62351-100-6:2022 - Power systems management and associated information exchange - Data and communication security - Part 100-6: Cybersecurity conformance testing for IEC 61850-8-1 and IEC 61850-9-2
English language
32 pages
sale 15% off
Preview
sale 15% off
Preview

Standards Content (Sample)


IEC TS 62351-100-6 ®
Edition 1.0 2022-08
TECHNICAL
SPECIFICATION
colour
inside
Power systems management and associated information exchange – Data and
communication security
Part 100-6: Cybersecurity conformance testing for IEC 61850-8-1 and
IEC 61850-9-2
All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized in any form
or by any means, electronic or mechanical, including photocopying and microfilm, without permission in writing from
either IEC or IEC's member National Committee in the country of the requester. If you have any questions about IEC
copyright or have an enquiry about obtaining additional rights to this publication, please contact the address below or
your local IEC member National Committee for further information.

IEC Secretariat Tel.: +41 22 919 02 11
3, rue de Varembé info@iec.ch
CH-1211 Geneva 20 www.iec.ch
Switzerland
About the IEC
The International Electrotechnical Commission (IEC) is the leading global organization that prepares and publishes
International Standards for all electrical, electronic and related technologies.

About IEC publications
The technical content of IEC publications is kept under constant review by the IEC. Please make sure that you have the
latest edition, a corrigendum or an amendment might have been published.

IEC publications search - webstore.iec.ch/advsearchform IEC Products & Services Portal - products.iec.ch
The advanced search enables to find IEC publications by a Discover our powerful search engine and read freely all the
variety of criteria (reference number, text, technical publications previews. With a subscription you will always have
committee, …). It also gives information on projects, replaced access to up to date content tailored to your needs.
and withdrawn publications.
Electropedia - www.electropedia.org
IEC Just Published - webstore.iec.ch/justpublished
The world's leading online dictionary on electrotechnology,
Stay up to date on all new IEC publications. Just Published
containing more than 22 300 terminological entries in English
details all new publications released. Available online and once
and French, with equivalent terms in 19 additional languages.
a month by email.
Also known as the International Electrotechnical Vocabulary

(IEV) online.
IEC Customer Service Centre - webstore.iec.ch/csc

If you wish to give us your feedback on this publication or need
further assistance, please contact the Customer Service
Centre: sales@iec.ch.
IEC TS 62351-100-6 ®
Edition 1.0 2022-08
TECHNICAL
SPECIFICATION
colour
inside
Power systems management and associated information exchange – Data and

communication security
Part 100-6: Cybersecurity conformance testing for IEC 61850-8-1 and

IEC 61850-9-2
INTERNATIONAL
ELECTROTECHNICAL
COMMISSION
ICS 33.200 ISBN 978-2-8322-3976-6

– 2 – IEC TS 62351-100-6:2022 © IEC 2022
CONTENTS
FOREWORD . 3
1 Scope . 7
2 Normative references . 7
3 Terms and definitions . 8
4 General . 8
4.1 General guidelines . 8
4.2 Test methodology . 8
4.2.1 General . 8
4.2.2 Normal procedure tests and resiliency tests . 9
4.3 Conformance testing requirements . 9
4.3.1 Testing within the context of an application . 9
4.3.2 Requirements for the device under test. 9
4.3.3 Requirements for the test facility . 10
4.3.4 Test validation . 11
4.4 PICS . 11
4.5 PIXIT . 11
4.6 Tests cases for subscriber-type DUT . 14
4.7 Tests cases for publisher-type DUT . 14
5 Conformity Testing for 62351-6. 14
5.1 PICS for 62351-6 security profile . 14
5.2 GOOSE Security Conformity Testing . 15
5.2.1 General . 15
5.2.2 Test Procedures . 17
5.3 SV Security Conformity Testing . 22
5.3.1 General . 22
5.3.2 Test Procedures . 23
6 SCL extension requirements testing . 29
Bibliography . 32

Table 1 – PIXIT for Base Profile . 11
Table 2 – PIXIT for GOOSE security extension and replay testing . 12
Table 3 – PIXIT for SV security extension and replay testing . 13
Table 4 – 62351-6 Subscriber Compliancy . 14
Table 5 – 62351-6 Publisher Compliancy . 14
Table 6 – Conformance table . 15
Table 7 – GOOSE State Transition Tests Matrix . 16
Table 8 – L2-GOOSE and R-GOOSE Security profiles . 16
Table 9 – Verification of GOOSE subscriber security extension . 17
Table 10 – Verification of GOOSE publisher security extension . 19
Table 11 – Verification of GOOSE Replay Requirements . 20
Table 12 – SV State Transition Tests Matrix . 23
Table 13 – L2-SV and R-SV Security profiles . 24
Table 14 – Verification of SV Subscriber Security Extension . 25
Table 15 – Verification of SV publisher security extension . 27
Table 16 – Verification of SV subscriber Replay Requirements . 28
Table 17 – Verification of SCL extensions . 30

INTERNATIONAL ELECTROTECHNICAL COMMISSION
____________
POWER SYSTEMS MANAGEMENT AND ASSOCIATED INFORMATION
EXCHANGE – DATA AND COMMUNICATION SECURITY –

Part 100-6: Cybersecurity conformance
testing for IEC 61850-8-1 and IEC 61850-9-2

FOREWORD
1) The International Electrotechnical Commission (IEC) is a worldwide organization for standardization comprising
all national electrotechnical committees (IEC National Committees). The object of IEC is to promote international
co-operation on all questions concerning standardization in the electrical and electronic fields. To this end and
in addition to other activities, IEC publishes International Standards, Technical Specifications, Technical Reports,
Publicly Available Specifications (PAS) and Guides (hereafter referred to as “IEC Publication(s)”). Their
preparation is entrusted to technical committees; any IEC National Committee interested in the subject dealt with
may participate in this preparatory work. International, governmental and non-governmental organizations liaising
with the IEC also participate in this preparation. IEC collaborates closely with the International Organization for
Standardization (ISO) in accordance with conditions determined by agreement between the two organizations.
2) The formal decisions or agreements of IEC on technical matters express, as nearly as possible, an international
consensus of opinion on the relevant subjects since each technical committee has representation from all
interested IEC National Committees.
3) IEC Publications have the form of recommendations for international use and are accepted by IEC National
Committees in that sense. While all reasonable efforts are made to ensure that the technical content of IEC
Publications is accurate, IEC cannot be held responsible for the way in which they are used or for any
misinterpretation by any end user.
4) In order to promote international uniformity, IEC National Committees undertake to apply IEC Publications
transparently to the maximum extent possible in their national and regional publications. Any divergence between
any IEC Publication and the corresponding national or regional publication shall be clearly indicated in the latter.
5) IEC itself does not provide any attestation of conformity. Independent certification bodies provide conformity
assessment services and, in some areas, access to IEC marks of conformity. IEC is not responsible for any
services carried out by independent certification bodies.
6) All users should ensure that they have the latest edition of this publication.
7) No liability shall attach to IEC or its directors, employees, servants or agents including individual experts and
members of its technical committees and IEC National Committees for any personal injury, property damage or
other damage of any nature whatsoever, whether direct or indirect, or for costs (including legal fees) and
expenses arising out of the publication, use of, or reliance upon, this IEC Publication or any other IEC
Publications.
8) Attention is drawn to the Normative references cited in this publication. Use of the referenced publications is
indispensable for the correct application of this publication.
9) Attention is drawn to the possibility that some of the elements of this IEC Publication may be the subject of patent
rights. IEC shall not be held responsible for identifying any or all such patent rights.
IEC TS 62351-100-6 has been prepared by IEC technical committee 57: Power systems
management and associated information exchange. It is a Technical Specification.
The text of this Technical Specification is based on the following documents:
Draft Report on voting
57/2438/DTS 57/2484/RVDTS
Full information on the voting for its approval can be found in the report on voting indicated in
the above table.
The language used for the development of this Technical Specification is English.

– 4 – IEC TS 62351-100-6:2022 © IEC 2022
This document was drafted in accordance with ISO/IEC Directives, Part 2, and developed in
accordance with ISO/IEC Directives, Part 1 and ISO/IEC Directives, IEC Supplement, available
at www.iec.ch/members_experts/refdocs. The main document types developed by IEC are
described in greater detail at www.iec.ch/standardsdev/publications.
A list of all parts in the IEC 62351 series, published under the general title Power systems
management and associated information exchange – Data and communication security, can be
found on the IEC website.
The committee has decided that the contents of this document will remain unchanged until the
stability date indicated on the IEC website under webstore.iec.ch in the data related to the
specific document. At this date, the document will be
• reconfirmed,
• withdrawn,
• replaced by a revised edition, or
• amended.
IMPORTANT – The "colour inside" logo on the cover page of this document indicates that it
contains colours which are considered to be useful for the correct understanding of its
contents. Users should therefore print this document using a colour printer.

INTRODUCTION
The International Electrotechnical Commission (IEC) draws attention to the fact that it is claimed
that compliance with this document may involve the use of a patent. IEC takes no position
concerning the evidence, validity, and scope of this patent right.
The holder of this patent right has assured IEC that s/he is willing to negotiate licences under
reasonable and non-discriminatory terms and conditions with applicants throughout the world.
In this respect, the statement of the holder of this patent right is registered with IEC. Information
may be obtained from the patent database available at
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.