Available (177)
Showing 85 - 96 per page
Information technology – Cloud computing – Guidance and best practices for cloud audits
Guidance and best practices for cloud audits.
Power systems management and associated information exchange - Data and communications security - Part 9: Cyber security key management for power system equipment
IEC 62351-9:2017 specifies cryptographic key management, namely how to generate, distribute, revoke, and handle public-key certificates and cryptographic keys to protect digital data and its communication. Included in the scope is the handling of asymmetric keys (e.g. private keys and public-key certificates), as well as symmetric keys for groups (GDOI). This document assumes that other standards have already chosen the type of keys and cryptography that will be utilized, since the cryptography algorithms and key materials chosen will be typically mandated by an organization’s own local security policies and by the need to be compliant with other international standards. This document therefore specifies only the management techniques for these selected key and cryptography infrastructures. The objective is to define requirements and technologies to achieve interoperability of key management. The purpose of this document is to guarantee interoperability among different vendors by specifying or limiting key management options to be used. This document assumes that the reader understands cryptography and PKI principles.
IEC 62541-14:2020OPC Unified Architecture - Part 14: PubSub
IEC 62541-14:2020 defines the OPC Unified Architecture (OPC UA) PubSub communication model. It defines an OPC UA publish subscribe pattern which complements the client server pattern defined by the Services in IEC 62541-4. IEC TR 62541-1 gives an overview of the two models and their distinct uses. PubSub allows the distribution of data and events from an OPC UA information source to interested observers inside a device network as well as in IT and analytics cloud systems. This document consists of a) a general introduction of the PubSub concepts, b) a definition of the PubSub configuration parameters, c) mapping of PubSub concepts and configuration parameters to messages and transport protocols, and d) a PubSub configuration model. Not all OPC UA Applications will need to implement all defined message and transport protocol mappings. IEC 62541-7 defines the Profile that dictates which mappings need to be implemented in order to be compliant with a particular Profile.
IEC 62443-3-2:2020Security for industrial automation and control systems - Part 3-2: Security risk assessment for system design
IEC 62443-3-2:2020 establishes requirements for: a) defining a system under consideration (SUC) for an industrial automation and control system (IACS); b) partitioning the SUC into zones and conduits; c) assessing risk for each zone and conduit; d) establishing the target security level (SL-T) for each zone and conduit; and e) documenting the security requirements.
IEC 61987-1:2006Industrial-process measurement and control - Data structures and elements in process equipment catalogues - Part 1: Measuring equipment with analogue and digital output
IEC 61987-1:2006 defines a generic structure in which product features of industrial-process measurement and control equipment with analogue or digital output should be arranged, in order to facilitate the understanding of product descriptions when they are transferred from one party to another. It applies to the production of catalogues of process measuring equipment supplied by the manufacturer of the product and helps the user to formulate his requirements.
IEC 62443-2-1:2010Industrial communication networks - Network and system security - Part 2-1: Establishing an industrial automation and control system security program
IEC 62443-2-1:2010 defines the elements necessary to establish a cyber security management system (CSMS) for industrial automation and control systems (IACS) and provides guidance on how to develop those elements. This standard uses the broad definition and scope of what constitutes an IACS described in IEC/TS 62443-1-1. The elements of a CSMS described in this standard are mostly policy, procedure, practice and personnel related, describing what shall or should be included in the final CSMS for the organization. This bilingual version (2012-04) corresponds to the monolingual English version, published in 2010-11.
IEC TR 63283-2 ED1Industrial-process measurement, control and automation - Smart Manufacturing - Part 2: Use cases
The document presents Use cases that describe IIoT platform and edge device usage with the 'roles' around them e.g., in the use case cluster 'IT-infrastructure and software', use case 'Device configuration'.
IEC TR 63283-4 WD Industrial-process measurement, control and automation - Smart Manufacturing - Part 4: New technologies
This document is a 'Smart manufacturing trend analysis'. Some of the new technologies are related to AI, Edge computing, Cloud technology, Digital twin, New communication protocols, 5G, TSN, Big data and data analytics, IoT and IIoT, Privacy technology, etc. Each chapter has a subchapter on 'Technology description', 'Use case analysis' and 'Standardization needs'.
IEC TS 62443-1-1:2009Industrial communication networks - Network and system security - Part 1-1: Terminology, concepts and models
IEC/TS 62443-1-1:2009(E) is a technical specification which defines the terminology, concepts and models for Industrial Automation and Control Systems (IACS) security. It establishes the basis for the remaining standards in the IEC 62443 series.
IEC TR 63283-3 ED1Industrial-process measurement, control and automation - Smart Manufacturing - Part 3: Challenges for Cybersecurity
The document addresses roles of IIoT platforms and edge computing in the context of architecture-related transition from classical automation pyramid to automation networks, particularly related to security issues.