IEC TS 62351-1-2007 PDF

Full title and description

Power systems management and associated information exchange — Data and communications security — Part 1: Communication network and system security — Introduction to security issues (IEC TS 62351-1:2007). This Technical Specification introduces the IEC 62351 series and frames information‑security objectives, threats, and high‑level countermeasures applicable to power system control and telecontrol communications used in utilities and Smart Grid environments.

Abstract

IEC TS 62351-1:2007 is the introductory part of the IEC 62351 family. It explains why information security is required in power system operations, outlines principal security goals (confidentiality, integrity, availability, authentication, non‑repudiation), describes common threats and vulnerabilities for telecontrol and substation communications, and summarises how subsequent IEC 62351 parts provide protocol‑specific profiles and mechanisms (for TCP/IP, MMS, IEC 60870‑5/6, IEC 61850, etc.). The document is intended to guide risk assessment, policy formation and the selection of appropriate technical controls for operational power networks.

General information

• Status: Published (Technical Specification).
• Publication date: 2007-05-14 (First edition, 2007).
• Publisher: International Electrotechnical Commission (IEC), TC 57 / WG 15.
• ICS / categories: 33.200 — Telecontrol. Telemetering.
• Edition / version: First edition (2007).
• Number of pages: 35 pages.

Scope

IEC TS 62351-1:2007 provides an introductory overview for the IEC 62351 series: it sets the scope (information security for power system control operations), identifies why security is required in telecontrol and substation environments, and introduces the structure and objectives of later parts which define protocol profiles and specific security techniques for IEC TC 57 protocols (IEC 60870‑5, IEC 60870‑6, IEC 61850, IEC 61970, IEC 61968). It is not a detailed implementation specification itself but a conceptual and organisational reference for risk assessment, policies and the application of technical measures.

Key topics and requirements

• Introduction to threats and vulnerabilities affecting power‑system communications (deliberate attacks and inadvertent failures).
• High‑level security objectives: authentication, confidentiality, integrity, availability, non‑repudiation.
• Risk assessment, security policies and lifecycle processes (planning, implementation, monitoring, review).
• Overview of countermeasures and architecture principles (defence‑in‑depth, role‑based access, secure key/certificate management).
• Relationship to protocol‑specific profiles in later IEC 62351 parts (TCP/IP, MMS, IEC 61850 multicast, IEC 60870‑5/6, NSM, etc.).
• Caveats on common simplistic approaches (e.g., VPNs alone are not sufficient for end‑to‑end security in many operational scenarios).

These topics are presented at a conceptual level to prepare users to apply the technical profiles and normative requirements in subsequent parts of the series.

Typical use and users

Primary users include utility security architects, transmission and distribution control‑room teams, substation automation engineers, system integrators, vendors of power‑system equipment, and regulators/auditors. Typical uses are: informing risk assessments and security policies, scoping security requirements for projects, educating stakeholders about threats and controls, and guiding adoption of the protocol‑specific profiles from later parts of IEC 62351.

Related standards

IEC TS 62351-1 is part of the IEC 62351 series (Parts 1–11 and related parts) addressing data and communications security for IEC TC 57 protocols. Related parts include IEC 62351-2 (glossary), IEC 62351-3 (TCP/IP profiles), IEC 62351-4 (MMS), IEC 62351-5/6/7/etc. for protocol and management aspects; other cybersecurity standards relevant to power systems include IEC 62443 (industrial automation and control security) and national/regional regulations and guidance for critical‑infrastructure cybersecurity.

Keywords

IEC 62351, TS 62351-1, power system security, telecontrol security, substation automation, Smart Grid security, IEC TC 57, authentication, confidentiality, integrity, PKI, MMS, IEC 61850.

FAQ

Q: What is this standard?

A: IEC TS 62351-1:2007 is the introductory Technical Specification of the IEC 62351 series that frames information‑security objectives and high‑level guidance for communications used in power‑system control and telecontrol.

Q: What does it cover?

A: It covers why security is needed in power system operations, common threats and vulnerabilities, high‑level security goals (confidentiality, integrity, availability, authentication, non‑repudiation), risk assessment and policy topics, and how later parts of IEC 62351 address protocol‑specific security profiles. It is conceptual rather than a low‑level implementation specification.

Q: Who typically uses it?

A: Utility cybersecurity architects, control‑centre and substation engineers, system integrators, vendors implementing IEC TC 57 protocols, and auditors/regulators use Part 1 to understand the security context and to plan adoption of the more technical parts of the series.

Q: Is it current or superseded?

A: IEC TS 62351-1 is the first‑edition Technical Specification published in May 2007. It remains the conceptual introduction to the series, but several other parts of IEC 62351 have been revised or replaced over time; users should check the IEC catalogue or the IEC 62351 parts index for the latest editions of individual parts before implementing controls.

Q: Is it part of a series?

A: Yes — it is Part 1 of the IEC 62351 family. Subsequent parts (Parts 2–11 and others) provide glossary, protocol profiles, cryptographic/certificate handling, network/system management and architecture guidance for securing IEC TC 57 protocols.

Q: What are the key keywords?

A: Power systems security, IEC 62351, telecontrol, substation automation, Smart Grid cybersecurity, authentication, PKI, MMS, IEC 61850, confidentiality, integrity, availability.