UNE-EN IEC 62351-5:2023

This part of IEC 62351 defines the application authentication mechanism (A-profile) specifying messages, procedures and algorithms for securing the operation of all protocols based on or derived from IEC 60870-5: Telecontrol Equipment and Systems Transmission Protocols.

This Standard applies to at least those protocols listed in Table 1.

11 Table 1 Scope of application to standards

Number Name

IEC 60870-5-101 Companion standard for basic telecontrol tasks

IEC 60870-5-102 Companion standard for the transmission of integrated totals in electric power systems

IEC 60870-5-103 Companion standard for the informative interface of protection equipment

IEC 60870-5-104 Network access for IEC 60870-5-101 using standard transport profiles

DNP3 Distributed Network Protocol (based on IEC 60870-1 through IEC 60870-5 and controlled by the DNP Users Group)



The initial audience for this International Standard is intended to be the members of the working groups developing the protocols listed in Table 1.

For the measures described in this standard to take effect, they must be accepted and referenced by the specifications for the protocols themselves. This document is written to enable that process. The working groups in charge of take this standard to the specific protocols listed in Table 1 may choose not to do so.

The subsequent audience for this specification is intended to be the developers of products that implement these protocols.

Portions of this standard may also be of use to managers and executives in order to understand the purpose and requirements of the work.

This document is organized working from the general to the specific, as follows:

" Clauses 2 through 4 provide background terms, definitions, and references.

" Clause 5 describes the problems this specification is intended to address.

" Clause 6 describes the mechanism generically without reference to a specific protocol.

" Clauses 7 and 8 describe the mechanism more precisely and are the primary normative part of this specification.

" Clause 9 define the interoperability requirements for this authentication mechanism.

" Clause 10 describes the requirements for other standards referencing this specification

Unless specifically labelled as informative or optional, all clauses of this specification are normative.

The actions of the organization in response to events and error conditions described in this specification are expected to be defined by the Organization s security Policy and they are beyond the scope of this standard.