Frances Cleveland Convenor WG15

Slides:



Advertisements
Similar presentations
Geneva, Switzerland, September 2014 Smart Grid cyber security within IEC TC57 WG15 Fernando Alvarez, Cyber Security Technical PM ABB Switzerland.
Advertisements

INCITS Study Group Internet of Things INCITS Plenary Report – April 18, 2013 Chuck Adams - Convenor.
ISO/IEC JTC1 SC37 Overview
SC38 Liaison Report to SC32 at SC32 meeting, Oct 24-28, 2011 Crete Baba Piprani/Canada SC38  SC32 Liaison 1 ISO/IEC JTC1/SC32/WG2 N1599.
INTERNATIONAL ELECTROTECHNICAL COMMISSION
1 Accelerating Standards for the Smart Grid David Wollman National Institute of Standards and Technology
ISO/IEC Software Testing
SGTCC END TO END TESTING INITIATIVE APEC-ISGAN Smart Grid Test Bed Network Workshop Washington, DC -- January 24, 2012 Rik Drummond, Dean Prochaska, Rudi.
Al Hefner (NIST Lead) Frances Cleveland (Technical Champion)
The road vehicle standards June 2001 Presentation to WP 29 of the business plan of ISO/TC22.
Doc.: IEEE /0047r1 Submission SGIP Liaison Report to IEEE Following the SGIP (2.0) Inaugural Conference Nov 5-7, 2013 Date:
Report of IEC SMB SG1 “Energy Efficiency and Renewable Resources” IEC TC100 AGS Meeting Held in May 2010 in Athens, Greece.
Budapest, Hungary 15/16 April 2015
IEC TC57: Report on WG21 Interfaces and protocol profiles relevant to systems connected to the electrical grid P. Ferstl August 2012 INTERNATIONAL ELECTROTECHNICAL.
Halifax, 31 Oct – 3 Nov 2011ICT Accessibility For All SMART GRID ICT: SECURITY, INTEROPERABILITY & NEXT STEPS John O’Neill, Senior Project Manager CSA.
INTERNATIONAL ELECTROTECHNICAL COMMISSION “TC57 and the Smart Grid” CIM Users Group, 2011, May 11 th, Prague.
Overview of ISO NP Stella G Dextre Clarke Convenor, IDT/2/2 Working Group of BSI and Project Leader for ISO NP
ISO/IEC JTC1 SC 32 WG1 eBusiness July 2007 JTC1 SC32 N1620.
IEC TC57 WG15 - Security Status & Roadmap, TC57 Plenary, May 2007
TC 57 PSCE09 - CIM Status Update Panel Session Introduction Ed Dobrowolski, NERC.
ISO/IEC JTC1 SC 32 WG1 eBusiness. WG 1 scope Standardization in the field of generic information technology standards for open electronic data interchange.
INTERNATIONAL ELECTROTECHNICAL COMMISSION Standardization Management Board Decisions How They Affect Your TAG! Jim Matthews Vice President & SMB Chairman.
ISO TC204 WG8 Convenor’s Report Public Transport and Emergency Services April 2006 Busan, South Korea.
Page © ASME 2016 Module B – Process B8a. US TAG to International Standards Organization (ISO) Standards Development Standards and Certification Training.
Standards Certification Education & Training Publishing Conferences & Exhibits 1 Copyright © ISA, All Rights reserved ISA99 - Industrial Automation and.
OASIS ODF 1.2 Rob Weir Co-Chair, OASIS ODF TC
ISO/IEC Software Testing The New International Software Testing Standard By Tafline Murnane and Stuart Reid ISO/IEC JTC1/SC7 WG26 Software Testing.
IEC for SUBSTATION AUTOMATION TOWARDS MULTI-VENDOR INTEROPERABility OVER The SYSTEMS LIFECYCLE The ENTSO-E Approach KUL – Power Symposium Leuven,
ISO/IEC JTC 1 SWG Smart Grid
ISO/IEC Software Testing
Jürgen Großmann, Fraunhofer FOKUS
ISA-SP99: Security for Industrial Automation and Control Systems
Smart Grid cyber security within IEC TC57 WG15
ISO/IEC JTC 1/SC 7 Working Group 42 - Architecture Johan Bendz
HIMSS STANDARDS INITIATIVES
ISO TC 108 SC3 Liaison to CCAUV
“SG-Systems” (Smart Grid – Operational Applications Integration) “Boot Camp” Overview Brent Hodges, Chair, SG-Systems Greg Robinson, Co-Chair, SG-Systems.
2018/7/ /7/29 Project: IEEE P Working Group for Wireless Personal Area Networks (WPANs) Submission Title: TG4i May 2011 Closing report Date.
ISO TC268 SC1 - Smart Community Infrastructures -
Kazunori MATSUO, TTC Cloud Computing Advisory Group
RDA Big Data Infrastructure WG
Vertical Applications TAG
Chapter Leader Training Unit 2 - Certification - Technical Operations
Smart Grid Interoperability Standards
HIS Smart Grid – Summary (1)
Vertical Applications TAG
Cyber-security and IEC International Standards
Vertical Applications TAG
Project: IEEE P Working Group for Wireless Personal Area Networks (WPANs) Submission Title: [Smart Grid Overview] Date Submitted: [13.
IEC TC57 Smart Grid Activities
July 2006 Project: IEEE P Working Group for Wireless Personal Area Networks (WPANs) Submission Title: ISO/IEC JTC1 SC6 Liaison Report Date Submitted:
Report from IEC/TC 117 Solar thermal electric plants
Vertical Applications TAG
Smart Grid cyber security within IEC TC57 WG15
Organizing Semantics For Effective Enterprise Application Integration
WG Technical Editor’s Report
Smart Grid Activities in IEC
Presented to the CEOS WGISS October 22, 2018
Smart Grids activities in ETSI
Standardization Management Board Decisions How They Affect Your TAG!
Group Meeting Ming Hong Tsai Date :
IEEE 802 2nd Vice Chair last name at ieee dot org
A Global Consensus Process
Smart Grid Update – January 2011
IEEE 802 2nd Vice Chair last name at ieee dot org
IEEE 802 2nd Vice Chair last name at ieee dot org
IEEE 802 JTC1 Standing Committee Proposal for SC6 contribution process
IEC Activities affecting HSSC Hannu Peiponen Chair IEC TC80
NIST Framework and Roadmap for 5
Presentation transcript:

Frances Cleveland Convenor WG15 IEC TC57 WG15 – Data and Communication Security Status & Roadmap March, 2016 Frances Cleveland Convenor WG15

Topics Mission and Scope of WG15 Members Accomplishments Current and new work Roadmap Issues 11/11/2018 IEC TC57 WG15 Status

Mission and Scope of WG15 on Cybersecurity Undertake the development of standards for security of the communication protocols defined by the IEC TC 57 Specifically the IEC 60870-5 series, the IEC 60870-6 series, the IEC 61850 series, the IEC 61970 series, and the IEC 61968 series. Review and advise on cyber security of TC57 standards Undertake the development of standards and/or technical reports on end-to-end security issues. The WG15 scope is the security of the IEC TC57 defined protocols and the end-to-end security issues 11/11/2018 IEC TC57 WG15 Status

Participants from 19 countries WG15 Members 92 members Participants from 19 countries Argentina Canada China Croatia Denmark Finland France Germany Great Britain India Italy Japan Korea Russia South Africa Spain Sweden Switzerland USA 11/11/2018 IEC TC57 WG15 Status

IEC TC57 WG15 Architecture of Information Standards 11/11/2018 IEC TC57 WG15 Status

Mapping of TC57 Communication Standards to IEC 62351 Security Standards IEC TC57 Power System Communication Standards IEC 62351 Security Standards IEC 62351-1: Introduction IEC 62351-2: Glossary IEC 62351-7: Objects for Network Management IEC 62351-8: Role based Access Control (RBAC) IEC 62351-9: Key Management IEC 62351-3: Profiles including TCP/IP IEC 62351-4: Profiles including MMS and similar Payloads IEC 62351-5: IEC 60870-5 and Derivates IEC 62351-6: IEC 61850 Profiles TS Ed.1 – 2007 TS Ed.1 – 2008 TS Ed.1 – 2007, IS10/2014 TS Ed.1 – 2007, CDV 06/2016 TS Ed.1 – 2009, TS Ed.2 – 04/2013 TS Ed.1 – 2007, CD 06/2016 TS Ed.1 – 2010, FDIS 6/2016, IS 12/2016 TS Ed.1 – 2011, RR 06/2016 CD Ed.1 – 2013, CD2 – 03/2015, CDV 01/2016 IEC 62351-10: Security architecture guidelines for TC 57 systems IEC 62351-12: Resilience and Security Recommendations for Power Systems with DER IEC 62351-13: What Security Topics Should Be Covered in Standards and Specifications IEC 62351-14: Cyber Security Event Logging NWIP 01/2016 IEC 62351-90-1: RBAC Guidelines DC 06/2016 IEC 62351-90-2: Deep Packet Inspection TR Ed.1 – 2012 DTR– 01/2016, TR mid-2016 DTR 01/2016, TR mid-2016 IEC 62351-100-1: IEC 60870-5-7 (Part 3/5) NWIP prepared IEC 62351-100 Conformance Testing IEC 60870-6 TASE.2 (ICCP) IEC 61850-8-1 with MMS IEC 61850 GOOSE and SV IEC 60870-5-104 & DNP3 IEC 60870-5-101 & Serial DNP3 IEC 61970 & IEC 61968 CIM IEC 61850-8-2 XML over XMPP IEC 62351-11: Security for XML Files FDIS 12/2015, IS 06/2016

RR for IS process to be issued ?/2016; Status of IEC 62351 Parts IEC 62351 Part Released Activities (by January 2016) Planned Release (New) IEC/TS 62351-1: Introduction 2007 May need to be updated IEC/TS 62351-2: Glossary of terms 2008 Review Report pending Pending IEC/IS 62351-3: Security for profiles including TCP/IP 2014 IS Ed. 2 in 2014 IEC/TS 62351-4: Security for profiles including MMS Work on the A Profile enhancements. How much of the XMPP should be addressed here since security is discussed in 61850-8-2? IS Ed. 2: CDV 7/2016, FDIS 12/2016, IS Jun 2017 IEC/TS 62351-5: Security for IEC 60870-5 and derivatives 2013 Released April 2013 RR for IS process to be issued ?/2016; IEC/TS 62351-6: Security for IEC 61850 profiles Updates underway, based on security requirements in IEC 61850-90-5 RR was issued mid-2014, CD 7/2016 in parallel with Part 4 IEC/TS 62351-7: Objects for Network Management 2010 CD issued 1/2015, responded to CD1 comments, updating UML model CDV 12/2015, FDIS 6/2016, IS 12/2016 IEC/TS 62351-8: Role-Based Access Control 2011 Discussions on developing categories of roles Issue RR for IS by 6/2016 after TR 90-1 issued IEC/IS 62351-9: Key Management CDV in early 2016 CDV by 2/2016 and FDIS in mid 2016, IS in late 2016 IEC/TR 62351-10: Security Architecture 2012 TR published Oct 2012 IEC/IS 62351-11: Security for XML Files 2016 Going out as FDIS FDIS 12/2015, IS 6/2016 IEC/TR 62351-12: Resilience and Security Recommendations for Power Systems with DER Sent out as DTR 1/2016 DTR 1/2016 IEC/TR 62351-13: Guidelines on What Security Topics Should Be Covered in Standards and Specifications Sent out as DTR 2/2016 DTR 2/2016 IEC/TR 62351-90-1: Guidelines for Using Part 8 Roles DC in 2016 Actively being developed WD 3/2016, DC 6/2016, TR maybe by 12/2016 if 2nd DC not needed IEC 62351-100-1: Conformance test cases for IEC 62351-5 and companion standards NWIP 2016 Starting with conformance testing of IEC 62351-3, 62351-5, and 60870-5-7 NWIP by 2/2016 IEC 62351-14 Security Event Logging and Reporting PWI NWIP   Based on existing security logging NWIP by 3/2016 IEC/TR 62351-90-2 Deep Packet Inspection PWI DC Pending TR to discuss the issues around deep packet inspection DC 6/2016, DTR 12/2016 11/11/2018 IEC TC57 WG15 Status

Updates and New Work in Process IEC 62351 Roadmap for WG19 Complete Work Updates and New Work in Process Potential New Work Parts 1, 2, 3, 4, 5, 6, 7, 8, and 10 – finalized as TRs or TS Documents (Ed 1) Part 5 as TS Ed 2 Part 2 Glossary: adding amendments probably update in 2014 Part 3 Security using TLS: Submitted as FDIS Dec 2013 as IS by 2014 Part 4 Security for MMS: Edition 2 started Part 5 Security for IEC 60870-5 and Derivatives: Amendment or Corrigendum Part 6 on IEC 61850: develop RR for updates to equivalent to IEC 61850-90-5 Part 7 Network and System Management: update process to Ed 2 started in 2013 Part 8 developing TR 62351-90-1 as Guidelines for using RBAC Part 9 Key Management: 2nd CD to be issued Part 11 Security for XML Files: CD issued Part 12 Resilience and Security for Power Systems with DER: DC issued Part 13 What Security Topics Should Be Covered in Standards and Specifications Part 14: SysLog Part 90-2: Deep Packet Inspection Part 100-1: Conformance Testing for Part 5 Security profiles for web services including XMPP (IEC 62351-4 for encoding rules and 61850-8-2) Assess cyber security in IEC TC57 documents such as IEC 62325-504 Explore customer premises security issues with WG21 11/11/2018 IEC TC57 WG15 Status

Liaisons with Other Security Activities Liaison with ISO JTC 1 / SC 27 IT Security: WG15 has provided lists of Smart Grid security standards and related documents to SC27. WG15 has received documents in the 270xx series on general cybersecurity and has commented on the proposed 27019 standard on power industry cybersecurity. WG15 welcomes the publication of ISO/IEC TR 27019 as an important step for the establishment of a sector specific ISMS and cyber security standard for the energy domain. WG15 expects to take an active liaison role during any revision of the TR or its transformation into an IS. TC 57 / WG15, as the IEC committee responsible for cyber security of the energy domain will support such revisions by contributing its  domain expertise on organizational, operational, and regulatory cyber  security  requirements  for  energy utilities. Liaison D with M/490 SGIS: WG15 is exchanging information with SGIS Liaison D with UCAIug: Discussions with members of SG-Security in UCAIug on areas of mutual interest are underway. Liaison A with IEC TC65C which is standardizing the work of the ISA SP99 Security Standards. Some WG15 members have reviewed and commented on IEC 62443 drafts Liaison D with the IEEE PES PSCC Security Subcommittee Working with IEEE Substations on Cybersecurity Standard IEEE 1686 Working on Liaison with ITU-T 11/11/2018 IEC TC57 WG15 Status

Coordination with Security Groups Coordination mostly through common membership: NIST’s Smart Grid Interoperability Panel (SGIP) Smart Grid Cybersecurity Committee (SGCC) NERC CIPs Cigré D2.40 MultiSpeak Security / Security for Web Services (e.g. WS-Security) ITU-T IEC TC13 US EPRI ENTSO-E 11/11/2018 IEC TC57 WG15 Status

Issues Although we have cybersecurity experts, they are very busy Cybersecurity is a very dynamic, rapidly changing field which is quite new for the power industry Are coordinating with other TC57 WGs to review cyber security in their documents Need to coordinate with other industries and standards groups Need rapid development of new standards and updates to existing standards Need guidelines for end-to-end security, but only for very specific aspects Need both standards and technical reports Need input from power system domain experts on security requirements Need to assist TC57 developers of standards to include appropriate cyber security requirements Need conformance and/or interoperability testing for IEC 62351 Abstract conformance test cases should be in each Part, with IEC 61850-10 providing specifics for 61850 Interoperability testing? 11/11/2018 IEC TC57 WG15 Status

Questions? Comments? Publicly available WG15 web page with additional information: http://iectc57.ucaiug.org/wg15public/default.aspx

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.