Maritime navigation and radiocommunication equipment and systems - Digital interfaces - Part 460: Multiple talkers and multiple listeners - Ethernet interconnection - Safety and Security

This part of IEC 61162 is an add-on to the IEC 61162-450 standard where higher safety and
security standards are needed, e.g. due to higher exposure to external threats or to improve
network integrity. This standard provides requirements and test methods for equipment to be
used in an IEC 61162-460 compliant network as well as requirements for the network itself
and requirements for interconnection from the network to other networks. This standard also
contains requirements for a redundant IEC 61162-460 compliant network.
This standard extends the informative guidance given in Annex D of IEC 61162-450:2011. It
does not introduce new application level protocol requirements to those that are defined in
IEC 61162-450.

Navigations- und Funkkommunikationsgeräte und -systeme für die Seeschifffahrt - Digitale Schnittstellen - Teil 460: Mehrere Datensender und mehrere Datenempfänger - Ethernet-Verbund - Funktionale und Informationssicherheit

Matériels et systèmes de navigation et de radiocommunication maritimes - Interfaces numériques - Partie 460 : Emetteurs multiples et récepteurs multiples - Interconnexion Ethernet - Sûreté et sécurité

Pomorska navigacijska in radiokomunikacijska oprema in sistemi - Digitalni vmesniki - 460. del: Več govorcev in poslušalcev - Povezovanje prek eterneta - Varnost in zaščita

Ta del standarda IEC 61162 je dodatek k standardu IEC 61162-450 za področja, na katerih so zahtevani strožji standardi varnosti in zaščite, npr. zaradi visoke stopnje izpostavljenosti zunanjim nevarnostnim ali izboljšanja integritete omrežja. Ta standard določa zahteve in preskusne metode za opremo, ki se uporabi v omrežju, skladnim s standardom IEC 61162-460, ter zahteve za omrežje samo in zahteve za povezovanje zadevnega omrežja z drugimi omrežji. Ta standard vsebuje tudi zahteve za redundantno omrežje, skladno s standardom EC 61162-460. Ta standard razširja informativne smernice, navedene v dodatku D standarda IEC 61162-450:2011. Ne uvaja novih zahtev za protokol aplikacijske plasti k zahtevam, opredeljenim v standardu IEC 61162-450.

General Information

Status
Withdrawn
Publication Date
16-Feb-2016
Withdrawal Date
15-Aug-2021
Technical Committee
Current Stage
9900 - Withdrawal (Adopted Project)
Start Date
30-Jul-2021
Due Date
22-Aug-2021
Completion Date
16-Aug-2021

RELATIONS

Buy Standard

Standard
SIST EN 61162-460:2016 - BARVE na PDF-str 29,33,36,58,64,65
English language
66 pages
sale 10% off
Preview
sale 10% off
Preview

e-Library read for
1 day

Standards Content (sample)

SLOVENSKI STANDARD
SIST EN 61162-460:2016
01-marec-2016
3RPRUVNDQDYLJDFLMVNDLQUDGLRNRPXQLNDFLMVNDRSUHPDLQVLVWHPL'LJLWDOQL
YPHVQLNLGHO9HþJRYRUFHYLQSRVOXãDOFHY3RYH]RYDQMHSUHNHWHUQHWD
9DUQRVWLQ]DãþLWD

Maritime navigation and radiocommunication equipment and systems - Digital interfaces

- Part 460: Multiple talkers and multiple listeners - Ethernet interconnection - Safety and

Security
Ta slovenski standard je istoveten z: EN 61162-460:2015
ICS:
35.200 Vmesniška in povezovalna Interface and interconnection
oprema equipment
47.020.70 Navigacijska in krmilna Navigation and control
oprema equipment
SIST EN 61162-460:2016 en

2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

---------------------- Page: 1 ----------------------
SIST EN 61162-460:2016
---------------------- Page: 2 ----------------------
SIST EN 61162-460:2016
EUROPEAN STANDARD EN 61162-460
NORME EUROPÉENNE
EUROPÄISCHE NORM
November 2015
ICS 47.020.70
English Version
Maritime navigation and radiocommunication equipment and
systems - Digital interfaces - Part 460: Multiple talkers and
multiple listeners - Ethernet interconnection - Safety and security
(IEC 61162-460:2015)

Matériels et systèmes de navigation et de Navigations- und Funkkommunikationsgeräte und -systeme

radiocommunication maritimes - Interfaces numériques - für die Seeschifffahrt - Digitale Schnittstellen - Teil 460:

Partie 460 : Emetteurs multiples et récepteurs multiples - Mehrere Datensender und mehrere Datenempfänger -

Interconnexion Ethernet - Sûreté et sécurité Ethernet Verbund - Funktionale und Informationssicherheit

(IEC 61162-460:2015) (IEC 61162-460:2015)

This European Standard was approved by CENELEC on 2015-09-22. CENELEC members are bound to comply with the CEN/CENELEC

Internal Regulations which stipulate the conditions for giving this European Standard the status of a national standard without any alteration.

Up-to-date lists and bibliographical references concerning such national standards may be obtained on application to the CEN-CENELEC

Management Centre or to any CENELEC member.

This European Standard exists in three official versions (English, French, German). A version in any other language made by translation

under the responsibility of a CENELEC member into its own language and notified to the CEN-CENELEC Management Centre has the

same status as the official versions.

CENELEC members are the national electrotechnical committees of Austria, Belgium, Bulgaria, Croatia, Cyprus, the Czech Republic,

Denmark, Estonia, Finland, Former Yugoslav Republic of Macedonia, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia,

Lithuania, Luxembourg, Malta, the Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland,

Turkey and the United Kingdom.
European Committee for Electrotechnical Standardization
Comité Européen de Normalisation Electrotechnique
Europäisches Komitee für Elektrotechnische Normung
CEN-CENELEC Management Centre: Avenue Marnix 17, B-1000 Brussels

© 2015 CENELEC All rights of exploitation in any form and by any means reserved worldwide for CENELEC Members.

Ref. No. EN 61162-460:2015 E
---------------------- Page: 3 ----------------------
SIST EN 61162-460:2016
EN 61162-460:2015
European foreword

The text of document 80/764/FDIS, future edition 1 of IEC 61162-460, prepared by IEC/TC 80

"Maritime navigation and radiocommunication equipment and systems" was submitted to the

IEC-CENELEC parallel vote and approved by CENELEC as EN 61162-460:2015.
The following dates are fixed:
• latest date by which the document has (dop) 2016-06-22
to be implemented at national level by
publication of an identical national
standard or by endorsement
(dow) 2018-09-22
• latest date by which the national
standards conflicting with the
document have to be withdrawn

Attention is drawn to the possibility that some of the elements of this document may be the subject of

patent rights. CENELEC [and/or CEN] shall not be held responsible for identifying any or all such

patent rights.
Endorsement notice

The text of the International Standard IEC 61162-460:2015 was approved by CENELEC as a

European Standard without any modification.

In the official version, for Bibliography, the following notes have to be added for the standards

indicated:
IEC 60812 NOTE Harmonized in EN 60812.
IEC 61162 series NOTE Harmonized in EN 61162 series.
IEC 61162-1 NOTE Harmonized in EN 61162-1.
IEC 61162-2 NOTE Harmonized in EN 61162-2.
IEC 62439 series NOTE Harmonized in EN 62439 series.
IEC 62439-1 NOTE Harmonized in EN 62439-1.
IEC 62439-2 NOTE Harmonized in EN 62439-2.
IEC 62439-3 NOTE Harmonized in EN 62439-3.
IEC 62439-4 NOTE Harmonized in EN 62439-4.
IEC 62439-5 NOTE Harmonized in EN 62439-5.
IEC 62439-6 NOTE Harmonized in EN 62439-6.
ISO 9241-12 NOTE Harmonized in EN ISO 9241-12.
---------------------- Page: 4 ----------------------
SIST EN 61162-460:2016
EN 61162-460:2015
Annex ZA
(normative)
Normative references to international publications
with their corresponding European publications

The following documents, in whole or in part, are normatively referenced in this document and are

indispensable for its application. For dated references, only the edition cited applies. For undated

references, the latest edition of the referenced document (including any amendments) applies.

NOTE 1 When an International Publication has been modified by common modifications, indicated by (mod), the relevant

EN/HD applies.

NOTE 2 Up-to-date information on the latest versions of the European Standards listed in this annex is available here:

www.cenelec.eu.
Publication Year Title EN/HD Year
IEC 60945 - Matériels et systèmes de navigation et de EN 60945 -
radiocommunication maritimes -
Spécifications générales - Méthodes
d'essai et résultats exigibles
IEC 61162-450 2011 Maritime navigation and EN 61162-450 2011
radiocommunication equipment and
systems - Digital interfaces -- Part 450:
Multiple talkers and multiple listeners -
Ethernet interconnection
IEC 61924-2 2012 Matériels et systèmes de navigation et de EN 61924-2 2013
radiocommunication maritimes - Systèmes
de navigation intégrés -- Partie 2: Structure
modulaire pour les INS - Exigences
d'exploitation et de fonctionnement,
méthodes et résultats d'essais exigés
IEC 62288 2014 Maritime navigation and EN 62288 2014
radiocommunication equipment and
systems - Presentation of navigation-
related information on shipborne
navigational displays - General
requirements, methods of testing and
required test results
IEEE 802.1D 2004 IEEE Standard for local and metropolitan - -
area networks - Media Access Control
(MAC) Bridges
IEEE 802.1Q 2005 IEEE Standard for Local and Metropolitan - -
Area Networks - Virtual Bridged Local Area
Networks
ISOC RFC 792 - Internet Control Message Protocol (ICMP),
Standard STD0005 (and updates)
ISOC RFC 1112 - Host Extensions for IP Multicasting
ISOC RFC 2236 - Internet Group Management Protocol,
Version 2
---------------------- Page: 5 ----------------------
SIST EN 61162-460:2016
EN 61162-460:2015
Publication Year Title EN/HD Year
ISOC RFC 3411 - An Architecture for Describing Simple
Network Management Protocol (SNMP)
Management Frameworks
ISOC RFC 4604 - Using Internet Group Management
Protocol Version 3 (IGMPv3) and Multicast
Listener Discovery Protocol Version 2
(MLDv2) for Source-Specific Multicast
ISOC RFC 5424 - The Syslog Protocol - -
---------------------- Page: 6 ----------------------
SIST EN 61162-460:2016
IEC 61162-460
Edition 1.0 2015-08
INTERNATIONAL
STANDARD
colour
inside
Maritime navigation and radiocommunication equipment and systems – Digital
interfaces –
Part 460: Multiple talkers and multiple listeners – Ethernet interconnection –
Safety and security
INTERNATIONAL
ELECTROTECHNICAL
COMMISSION
ICS 47.020.70 ISBN 978-2-8322-2850-0

Warning! Make sure that you obtained this publication from an authorized distributor.

® Registered trademark of the International Electrotechnical Commission
---------------------- Page: 7 ----------------------
SIST EN 61162-460:2016
– 2 – IEC 61162-460:2015 © IEC 2015
CONTENTS

FOREWORD ......................................................................................................................... 6

1 Scope ............................................................................................................................ 8

2 Normative references..................................................................................................... 8

3 Terms and definitions .................................................................................................... 9

4 High-level requirements ............................................................................................... 13

4.1 Overview............................................................................................................. 13

4.2 Description.......................................................................................................... 14

4.3 General requirements .......................................................................................... 14

4.3.1 Equipment and system requirements ............................................................ 14

4.3.2 Physical composition requirements ............................................................... 15

4.3.3 Logical composition requirements ................................................................. 15

4.4 Physical component requirements ....................................................................... 15

4.4.1 450-Node ..................................................................................................... 15

4.4.2 460-Node ..................................................................................................... 15

4.4.3 460-Switch ................................................................................................... 16

4.4.4 460-Forwarder ............................................................................................. 16

4.4.5 460-Gateway and 460-Wireless gateway ...................................................... 16

4.5 Logical component requirements ......................................................................... 16

4.5.1 Network monitoring function ......................................................................... 16

4.5.2 System management function ....................................................................... 16

4.6 System documentation requirements ................................................................... 17

4.7 Secure area requirements ................................................................................... 17

5 Network traffic management requirements .................................................................... 17

5.1 460-Node requirements ....................................................................................... 17

5.2 460-Switch requirements ..................................................................................... 18

5.2.1 Resource allocation ..................................................................................... 18

5.2.2 Loop prevention ........................................................................................... 18

5.3 460-Forwarder requirements................................................................................ 18

5.3.1 Traffic separation ......................................................................................... 18

5.3.2 Resource allocation ..................................................................................... 18

5.3.3 Traffic prioritization ...................................................................................... 19

5.4 System design requirements ............................................................................... 20

5.4.1 Documentation ............................................................................................. 20

5.4.2 Traffic .......................................................................................................... 20

6 Security requirements .................................................................................................. 20

6.1 Security scenarios ............................................................................................... 20

6.1.1 Threat scenarios .......................................................................................... 20

6.1.2 Internal threats............................................................................................. 20

6.1.3 External threats ........................................................................................... 21

6.2 Internal security requirements ............................................................................. 21

6.2.1 General ....................................................................................................... 21

6.2.2 Denial of service protection .......................................................................... 21

6.2.3 REDS security ............................................................................................. 22

6.2.4 Access control ............................................................................................. 22

6.3 External security requirements ............................................................................ 23

6.3.1 Overview ..................................................................................................... 23

---------------------- Page: 8 ----------------------
SIST EN 61162-460:2016
IEC 61162-460:2015 © IEC 2015 – 3 –

6.3.2 Firewalls ...................................................................................................... 24

6.3.3 Communication security ............................................................................... 24

6.3.4 460-Node ..................................................................................................... 24

6.3.5 460-Gateway ............................................................................................... 25

6.3.6 460-Wireless gateway .................................................................................. 26

6.4 Additional security issues .................................................................................... 26

7 Redundancy requirements ........................................................................................... 26

7.1 General requirements .......................................................................................... 26

7.1.1 General ....................................................................................................... 26

7.1.2 Interface redundancy ................................................................................... 27

7.1.3 Device redundancy ...................................................................................... 27

7.2 460-Node requirements ....................................................................................... 27

7.3 460-Switch requirements ..................................................................................... 28

7.4 460-Forwarder requirements................................................................................ 28

7.5 460-Gateway and 460-Wireless gateway requirements ......................................... 28

7.6 Network monitoring function requirements ........................................................... 28

7.7 System design requirements ............................................................................... 28

8 Network monitoring requirements ................................................................................. 28

8.1 Network status monitoring ................................................................................... 28

8.1.1 460-Network ................................................................................................ 28

8.1.2 460-Node ..................................................................................................... 28

8.1.3 460-Switch ................................................................................................... 29

8.1.4 460-Forwarder ............................................................................................. 29

8.1.5 460-Gateway and 460-Wireless gateway ...................................................... 29

8.2 Network monitoring function ................................................................................ 29

8.2.1 General ....................................................................................................... 29

8.2.2 Network load monitoring function .................................................................. 30

8.2.3 Redundancy monitoring function ................................................................... 31

8.2.4 Network topology monitoring function ........................................................... 31

8.2.5 Syslog recording function ............................................................................. 31

8.2.6 Redundancy of network monitoring function .................................................. 32

8.2.7 Alert management ........................................................................................ 32

9 Controlled network requirements .................................................................................. 32

10 Methods of testing and required test results ................................................................. 33

10.1 Subject of tests ................................................................................................... 33

10.2 Test site .............................................................................................................. 33

10.3 General requirements .......................................................................................... 34

10.4 450-Node ............................................................................................................ 34

10.5 460-Node ............................................................................................................ 34

10.5.1 Network traffic management ......................................................................... 34

10.5.2 Security ....................................................................................................... 35

10.5.3 Redundancy ................................................................................................. 37

10.5.4 Monitoring .................................................................................................... 37

10.6 460-Switch .......................................................................................................... 37

10.6.1 Resource allocation ..................................................................................... 37

10.6.2 Loop prevention ........................................................................................... 37

10.6.3 Security ....................................................................................................... 38

10.6.4 Monitoring .................................................................................................... 39

---------------------- Page: 9 ----------------------
SIST EN 61162-460:2016
– 4 – IEC 61162-460:2015 © IEC 2015

10.7 460-Forwarder .................................................................................................... 39

10.7.1 Traffic separation ......................................................................................... 39

10.7.2 Resource allocation ..................................................................................... 39

10.7.3 Traffic prioritisation ...................................................................................... 40

10.7.4 Security ....................................................................................................... 40

10.7.5 Monitoring .................................................................................................... 41

10.8 460-Gateway ....................................................................................................... 42

10.8.1 Denial of service behaviour .......................................................................... 42

10.8.2 Access control to configuration setup ........................................................... 42

10.8.3 Communication security ............................................................................... 42

10.8.4 Firewall ........................................................................................................ 42

10.8.5 Application server ........................................................................................ 43

10.8.6 Interoperable access to file storage of DMZ .................................................. 43

10.8.7 Additional security ........................................................................................ 44

10.8.8 Monitoring .................................................................................................... 44

10.9 460-Wireless gateway ......................................................................................... 44

10.9.1 General ....................................................................................................... 44

10.9.2 Security ....................................................................................................... 44

10.9.3 Monitoring .................................................................................................... 45

10.10 Controlled network .............................................................................................. 45

10.11 Network monitoring function ................................................................................ 45

10.11.1 General ....................................................................................................... 45

10.11.2 Network load monitoring function .................................................................. 46

10.11.3 Redundancy monitoring function ................................................................... 46

10.11.4 Network topology monitoring function ........................................................... 46

10.11.5 Syslog recording function ............................................................................. 47

10.11.6 Alert management ........................................................................................ 47

10.12 System level ....................................................................................................... 48

10.12.1 General ....................................................................................................... 48

10.12.2 System management function ....................................................................... 49

10.12.3 System design ............................................................................................. 49

10.12.4 Network monitoring function ......................................................................... 51

10.12.5 Network load monitoring function .................................................................. 51

10.12.6 Redundancy monitoring function ................................................................... 51

10.12.7 Network topology monitoring function ........................................................... 51

Annex A (informative) Communication scenarios between an IEC 61162-460 network

and uncontrolled networks .................................................................................................. 52

A.1 General ............................................................................................................... 52

A.2 Routine off-ship ................................................................................................... 52

A.3 Routine on-ship ................................................................................................... 53

A.4 460-Gateway usage for direct connection with equipment .................................... 53

Annex B (informative) Summary of redundancy protocols in the IEC 62439 series ............... 54

B.1 Summary of redundancy protocols ....................................................................... 54

B.2 RSTP recovery time ............................................................................................ 54

Annex C (informative) Guidance for testing......................................................................... 56

C.1 Methods of test ................................................................................................... 56

C.2 Observation ........................................................................................................ 56

C.3 Inspection of documented evidence ..................................................................... 56

C.4 Measurement ...................................................................................................... 56

---------------------- Page: 10 ----------------------
SIST EN 61162-460:2016
IEC 61162-460:2015 © IEC 2015 – 5 –

C.5 Analytical evaluation ........................................................................................... 57

Annex D (informative) Some examples to use this standard ................................................ 58

Annex E (normative) IEC 61162 interfaces for the network monitoring function .................... 60

Bibliography ....................................................................................................................... 61

Figure 1 – Functional overview of IEC 61162-460 requirement applications .......................... 14

Figure 2 – 460-Network with 460-Gateway .......................................................................... 23

Figure 3 – An example of redundancy ................................................................................. 27

Figure 4 – Example of network status recording information ................................................. 30

Figure A.1 – Usage model for communication between a IEC 61162-450 network and

shore networks ................................................................................................................... 52

Figure D.1 – 460-Forwarder used between two networks ..................................................... 58

Figure D.2 – 460-Forwarder used between two networks ..................................................... 58

Figure D.3 – 460-Gateway used for e-Navigation services ................................................... 59

Figure D.4 – 460-Gateway used for remote maintenance ..................................................... 59

Figure E.1 – Network monitoring function logical interfaces.................................................. 60

Table 1 – Traffic prioritization with CoS and DSCP .............................................................. 19

Table B.1 – Redundancy protocols and recovery times ........................................................ 54

Table E.1 – Sentences received by the network monitoring function ..................................... 60

Table E.2 – Sentences transmitted by the network monitoring function ................................. 60

---------------------- Page: 11 ----------------------
SIST EN 61162-460:2016
– 6 – IEC 61162-460:2015 © IEC 2015
INTERNATIONAL ELECTROTECHNICAL COMMISSION
____________
MARITIME NAVIGATION AND RADIOCOMMUNICATION
EQUIPMENT AND SYSTEMS – DIGITAL INTERFACES –
Part 460: Multiple talkers and multiple listeners –
Ethernet interconnection – Safety and security
FOREWORD

1) The International Electrotechnical Commission (IEC) is a worldwide organization for standardization comprising

all national electrotechnical committees (IEC National Committees). The object of IEC is to promote

international co-operation on all questions concerning standardization in the electrical and electronic fields. To

this end and in addition to other activities, IEC publishes International Standards, Technical Specifications,

Technical Reports, Publicly Available Specifications (PAS) and Guides (hereafter referred to as “IEC

Publication(s)”). Their preparation is entrusted to technical committees; any IEC National Committee interested

in the subject dealt with may participate in this preparatory work. International, governmental and non-

governmental organizations liaising with the IEC also participate in this preparation. IEC collaborates closely

with the International Organization for Standardization (ISO) in accordance with conditions determined by

agreement between the two organizations.

2) The formal decisions or agreements of IEC on technical matters express, as nearly as possible, an international

consensus of opinion on the relevant subjects since each technical committee has representation from all

interested IEC National Committees.

3) IEC Publications have the form of recommendations for international use and are accepted by IEC National

Committees in that sense. While all reasonable efforts are made to ensure that the technical content of IEC

Publications is accurate, IEC cannot be held responsible for the way in which they are used or for any

...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.