{"id":422100,"date":"2024-10-20T06:39:36","date_gmt":"2024-10-20T06:39:36","guid":{"rendered":"https:\/\/pdfstandards.shop\/product\/uncategorized\/bsi-pd-iec-ts-632082020-2\/"},"modified":"2024-10-26T12:27:43","modified_gmt":"2024-10-26T12:27:43","slug":"bsi-pd-iec-ts-632082020-2","status":"publish","type":"product","link":"https:\/\/pdfstandards.shop\/product\/publishers\/bsi\/bsi-pd-iec-ts-632082020-2\/","title":{"rendered":"BSI PD IEC TS 63208:2020"},"content":{"rendered":"<p>This document applies to the security related main functions of switchgear and controlgear during the whole lifecycle of the equipment. It is applicable to wired and wireless data communication means and the physical accessibility to the equipment, within its limits of environmental conditions.<\/p>\n<p>This document is intended to develop awareness about security aspects and provides recommendations and requirements on the appropriate countermeasures against vulnerability to threats.<\/p>\n<p>In particular, it focuses on potential vulnerabilities to threats resulting in:<\/p>\n<ul>\n<li>\n<p>unintended operation of the switching device or the control device or sensor, which can lead to hazardous situations;<\/p>\n<\/li>\n<li>\n<p>unavailability of the protective functions (overcurrent, earth leakage, etc.).<\/p>\n<\/li>\n<\/ul>\n<p>This document does not cover security requirement for information technology (IT) and for industrial automation and control systems (IACS), but it only implements in switchgear and controlgear appropriate security countermeasures derived from the base security publication ISO\/IEC 27001 and the group security publications IEC 62443 (all parts).<\/p>\n<p>This document, as a product security publication, follows IEC Guide 120 and includes typical use case studies as given in Annex B.<\/p>\n<h4>PDF Catalog<\/h4>\n<table border=\"1px\" class=\"des-table\">\n<tr>\n<th>PDF Pages<\/th>\n<th>PDF Title<\/th>\n<\/tr>\n<tr>\n<td><b>2<b><\/td>\n<td>undefined  <\/td>\n<\/tr>\n<tr>\n<td><b>4<b><\/td>\n<td>CONTENTS  <\/td>\n<\/tr>\n<tr>\n<td><b>7<b><\/td>\n<td>FOREWORD  <\/td>\n<\/tr>\n<tr>\n<td><b>9<b><\/td>\n<td>INTRODUCTION  <\/td>\n<\/tr>\n<tr>\n<td><b>10<b><\/td>\n<td>1 Scope <br \/> 2 Normative references  <\/td>\n<\/tr>\n<tr>\n<td><b>11<b><\/td>\n<td>3 Terms, definitions and abbreviated terms <br \/> 3.1 Terms and definitions  <\/td>\n<\/tr>\n<tr>\n<td><b>14<b><\/td>\n<td>3.2 Abbreviated terms  <\/td>\n<\/tr>\n<tr>\n<td><b>15<b><\/td>\n<td>4 General <br \/> 5 Security objectives <br \/> 6 Security lifecycle management <br \/> 6.1 General  <\/td>\n<\/tr>\n<tr>\n<td><b>16<b><\/td>\n<td>6.2 Security risk assessment <br \/> Figure 1 \u2013 Example of physical interfaces of an embedded devicein an equipment which can be subject to an attack <br \/> Table 1 \u2013 Typical threats  <\/td>\n<\/tr>\n<tr>\n<td><b>17<b><\/td>\n<td>6.3 Response to security risk <br \/> Figures  <\/td>\n<\/tr>\n<tr>\n<td><b>18<b><\/td>\n<td>6.4 Security requirement specification <br \/> 6.5 Important data <br \/> 6.6 System architecture <br \/> 6.6.1 Control system <br \/> 6.6.2 Levels of communication functionalities  <\/td>\n<\/tr>\n<tr>\n<td><b>19<b><\/td>\n<td>6.6.3 Levels of connectivity <br \/> Figure 2 \u2013 Control system architecture with switchgear and controlgear  <\/td>\n<\/tr>\n<tr>\n<td><b>20<b><\/td>\n<td>Figure 3 \u2013 Control system connectivity level C3 <br \/> Figure 4 \u2013 Control system connectivity level C4  <\/td>\n<\/tr>\n<tr>\n<td><b>21<b><\/td>\n<td>6.6.4 Control system exposure levels <br \/> Figure 5 \u2013 Control system connectivity level C5 <br \/> Table 2 \u2013 Level of exposure of a control system   <\/td>\n<\/tr>\n<tr>\n<td><b>22<b><\/td>\n<td>7 Security requirements <br \/> 7.1 General <br \/> 7.2 Cybersecurity aspects <br \/> Figure 6 \u2013 Switchgear and controlgear minimum security profile  <\/td>\n<\/tr>\n<tr>\n<td><b>23<b><\/td>\n<td>7.3 Physical access and environment  <\/td>\n<\/tr>\n<tr>\n<td><b>24<b><\/td>\n<td>7.4 Equipment requirement <br \/> 7.4.1 General <br \/> 7.4.2 Hardening <br \/> 7.4.3 Encryption techniques <br \/> 7.4.4 Embedded software robustness and integrity  <\/td>\n<\/tr>\n<tr>\n<td><b>25<b><\/td>\n<td>7.4.5 Denial of service <br \/> 7.4.6 Authentication of users  <\/td>\n<\/tr>\n<tr>\n<td><b>26<b><\/td>\n<td>7.4.7 Communication systems <br \/> 7.4.8 Wireless communication <br \/> 8 Instructions for installation, operation and maintenance  <\/td>\n<\/tr>\n<tr>\n<td><b>27<b><\/td>\n<td>9 Development and testing <br \/> 9.1 General development method <br \/> 9.2 Testing <br \/> Figure 7 \u2013 Example of security instruction symbol  <\/td>\n<\/tr>\n<tr>\n<td><b>28<b><\/td>\n<td>Annex A (informative)Cybersecurity and electrical system architecture <br \/> A.1 General <br \/> A.2 Typical architecture involving switchgear and controlgear and their assembly <br \/> A.2.1 Building  <\/td>\n<\/tr>\n<tr>\n<td><b>29<b><\/td>\n<td>A.2.2 Manufacturing <br \/> Figure A.1 \u2013 Building electrical architecture  <\/td>\n<\/tr>\n<tr>\n<td><b>30<b><\/td>\n<td>A.3 Security levels and product standards <br \/> Figure A.2 \u2013 Industrial plants  <\/td>\n<\/tr>\n<tr>\n<td><b>31<b><\/td>\n<td>Annex B (informative)Use case studies <br \/> B.1 General <br \/> B.2 Use case 1 \u2013 Protection against malicious firmware upgrade of a circuit-breaker  <\/td>\n<\/tr>\n<tr>\n<td><b>32<b><\/td>\n<td>B.3 Use case 2 \u2013 Protection against unauthorized access to electrical production network  <\/td>\n<\/tr>\n<tr>\n<td><b>33<b><\/td>\n<td>B.4 Use case 3 \u2013 Protection against DDoS (distributed denial of service) attack through insecure IoT devices  <\/td>\n<\/tr>\n<tr>\n<td><b>34<b><\/td>\n<td>B.5 Use case 4 \u2013 Protection against unauthorized access to the electrical network using illegitimate device  <\/td>\n<\/tr>\n<tr>\n<td><b>36<b><\/td>\n<td>B.6 Use case 5 \u2013 Protection against malicious firmware upgrade of a sensor (e.g. proximity switch), mounted in a machine wired-connected by IO-Link interface  <\/td>\n<\/tr>\n<tr>\n<td><b>37<b><\/td>\n<td>B.7 Use case 6 \u2013 HMI: human machine interface \u2013 Protection against unauthorized access to a simple sensor (mounted in a machine) \u2013 improper parametrization  <\/td>\n<\/tr>\n<tr>\n<td><b>38<b><\/td>\n<td>B.8 Use case 7 \u2013 HMI: human machine interface \u2013 Protection against unauthorized access to a complex sensor (mounted in a machine) \u2013 improper parametrization  <\/td>\n<\/tr>\n<tr>\n<td><b>40<b><\/td>\n<td>B.9 Use case 8 \u2013 Protection against unauthorized access to a sensor (e.g. proximity switch), mounted in a machine, connected by wireless communication interface (WCI)  <\/td>\n<\/tr>\n<tr>\n<td><b>42<b><\/td>\n<td>Annex C (informative)Basic cybersecurity aspects <br \/> C.1 General <br \/> C.2 Identification and authentication <br \/> C.3 Use control <br \/> C.4 System integrity  <\/td>\n<\/tr>\n<tr>\n<td><b>43<b><\/td>\n<td>C.5 Data confidentiality <br \/> C.6 Restricted data flow <br \/> C.7 Timely response to events <br \/> C.8 Resource availability  <\/td>\n<\/tr>\n<tr>\n<td><b>44<b><\/td>\n<td>Annex D (informative)Guidelines for users of switchgear and controlgear <br \/> D.1 General <br \/> D.2 Risk assessment and security planning <br \/> D.2.1 Risk assessment <br \/> D.2.2 Security plan  <\/td>\n<\/tr>\n<tr>\n<td><b>45<b><\/td>\n<td>D.3 Recommendations for design and installation of the system integrating switchgear and controlgear <br \/> D.3.1 General access control <br \/> D.3.2 Recommendations for local access  <\/td>\n<\/tr>\n<tr>\n<td><b>46<b><\/td>\n<td>D.3.3 Recommendations for remote access <br \/> D.3.4 Recommendations for firmware upgrades  <\/td>\n<\/tr>\n<tr>\n<td><b>47<b><\/td>\n<td>Bibliography  <\/td>\n<\/tr>\n<\/table>\n","protected":false},"excerpt":{"rendered":"<p><b>Low-voltage switchgear and controlgear. Security aspects<\/b><\/p>\n<table class=\"shortdes-table\" style=\"width: 100%\" border=\"0\" cellspacing=\"0\" cellpadding=\"0\">\n<tbody>\n<tr>\n<td>Published By<\/td>\n<td>Publication Date<\/td>\n<td>Number of Pages<\/td>\n<\/tr>\n<tr>\n<td><a href=\"https:\/\/pdfstandards.shop\/product-category\/publishers\/bsi\/\"><b>BSI<\/b><\/a><\/td>\n<td>2020<\/td>\n<td>50<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n","protected":false},"featured_media":422105,"template":"","meta":{"rank_math_lock_modified_date":false,"ep_exclude_from_search":false},"product_cat":[517,2641],"product_tag":[],"class_list":{"0":"post-422100","1":"product","2":"type-product","3":"status-publish","4":"has-post-thumbnail","6":"product_cat-29-130-20","7":"product_cat-bsi","9":"first","10":"instock","11":"sold-individually","12":"shipping-taxable","13":"purchasable","14":"product-type-simple"},"_links":{"self":[{"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/product\/422100","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/product"}],"about":[{"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/types\/product"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/media\/422105"}],"wp:attachment":[{"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/media?parent=422100"}],"wp:term":[{"taxonomy":"product_cat","embeddable":true,"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/product_cat?post=422100"},{"taxonomy":"product_tag","embeddable":true,"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/product_tag?post=422100"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}