IEC62443-3-3工业通信网络网络和系统安全.pdf资源-CSDN文库

版权申诉

5星 · 超过95%的资源 159 浏览量 2023-01-10 10:42:47 上传评论收藏 1.67MB PDF 举报

资源推荐

资源详情

资源评论

IEC 62443-3-3

Edition 1.0 2013-08

INTERNATIONAL

STANDARD

Industrial communication networks – Network and system security –

Part 3-3: System security requirements and security levels

IEC 62443-3-3:2013(E)

colour

inside

THIS PUBLICATION IS COPYRIGHT PROTECTED

or by any means, electronic or mechanical, including photocopying and microfilm, without permission in writing from

either IEC or IEC's member National Committee in the country of the requester.

If you have any questions about IEC copyright or have an enquiry about obtaining additional rights to this publication,

please contact the address below or your local IEC member National Committee for further information.

IEC Central Office Tel.: +41 22 919 02 11

3, rue de Varembé Fax: +41 22 919 03 00

CH-1211 Geneva 20 info@iec.ch

Switzerland www.iec.ch

About the IEC

The International Electrotechnical Commission (IEC) is the leading global organization that prepares and publishes

International Standards for all electrical, electronic and related technologies.

About IEC publications

The technical content of IEC publications is kept under constant review by the IEC. Please make sure that you have the

latest edition, a corrigenda or an amendment might have been published.

Useful links:

IEC publications search - www.iec.ch/searchpub

The advanced search enables you to find IEC publications

by a variety of criteria (reference number, text, technical

committee,…).

It also gives information on projects, replaced and

withdrawn publications.

IEC Just Published - webstore.iec.ch/justpublished

Stay up to date on all new IEC publications. Just Published

details all new publications released. Available on-line and

also once a month by email.

Electropedia - www.electropedia.org

The world's leading online dictionary of electronic and

electrical terms containing more than 30 000 terms and

definitions in English and French, with equivalent terms in

additional languages. Also known as the International

Electrotechnical Vocabulary (IEV) on-line.

Customer Service Centre - webstore.iec.ch/csc

If you wish to give us your feedback on this publication

or need further assistance, please contact the

Customer Service Centre: csc@iec.ch.

– 2 – 62443-3-3 © IEC:2013(E)

CONTENTS

FOREWORD ........................................................................................................................... 9

Introduction .................................................................................................................... 11

0.1

Overview ............................................................................................................... 11

0.2

Purpose and intended audience ............................................................................ 12

0.3

Usage within other parts of the IEC 62443 series .................................................. 12

Scope ............................................................................................................................. 14

Normative references ..................................................................................................... 14

Terms, definitions, abbreviated terms, acronyms, and conventions ................................. 14

3.1

Terms and definitions ............................................................................................ 14

3.2

Abbreviated terms and acronyms .......................................................................... 20

3.3

Conventions .......................................................................................................... 22

Common control system security constraints .................................................................. 22

4.1

Overview ............................................................................................................... 22

4.2

Support of essential functions ............................................................................... 23

4.3

Compensating countermeasures ........................................................................... 23

4.4

Least privilege ....................................................................................................... 24

FR 1 – Identification and authentication control .............................................................. 24

5.1

Purpose and SL-C(IAC) descriptions ..................................................................... 24

5.2

Rationale ............................................................................................................... 24

5.3

SR 1.1 – Human user identification and authentication .......................................... 24

Requirement .............................................................................................. 24

5.3.1

Rationale and supplemental guidance ....................................................... 24

5.3.2

Requirement enhancements ...................................................................... 25

5.3.3

Security levels ........................................................................................... 25

5.3.4

5.4

SR 1.2 – Software process and device identification and authentication ................ 26

Requirement .............................................................................................. 26

5.4.1

Rationale and supplemental guidance ....................................................... 26

5.4.2

Requirement enhancements ...................................................................... 26

5.4.3

Security levels ........................................................................................... 27

5.4.4

5.5

SR 1.3 – Account management ............................................................................. 27

Requirement .............................................................................................. 27

5.5.1

Rationale and supplemental guidance ....................................................... 27

5.5.2

Requirement enhancements ...................................................................... 27

5.5.3

Security levels ........................................................................................... 27

5.5.4

5.6

SR 1.4 – Identifier management ............................................................................ 28

Requirement .............................................................................................. 28

5.6.1

Rationale and supplemental guidance ....................................................... 28

5.6.2

Requirement enhancements ...................................................................... 28

5.6.3

Security levels ........................................................................................... 28

5.6.4

5.7

SR 1.5 – Authenticator management ..................................................................... 28

Requirement .............................................................................................. 28

5.7.1

Rationale and supplemental guidance ....................................................... 28

5.7.2

Requirement enhancements ...................................................................... 29

5.7.3

Security levels ........................................................................................... 29

5.7.4

5.8

SR 1.6 – Wireless access management ................................................................. 30

Requirement .............................................................................................. 30

5.8.1

62443-3-3 © IEC:2013(E) – 3 –

Rationale and supplemental guidance ....................................................... 30

5.8.2

Requirement enhancements ...................................................................... 30

5.8.3

Security levels ........................................................................................... 30

5.8.4

5.9

SR 1.7 – Strength of password-based authentication ............................................. 30

Requirement .............................................................................................. 30

5.9.1

Rationale and supplemental guidance ....................................................... 30

5.9.2

Requirement enhancements ...................................................................... 31

5.9.3

Security levels ........................................................................................... 31

5.9.4

5.10

SR 1.8 – Public key infrastructure (PKI) certificates ............................................... 31

Requirement .............................................................................................. 31

5.10.1

Rationale and supplemental guidance ....................................................... 31

5.10.2

Requirement enhancements ...................................................................... 32

5.10.3

Security levels ........................................................................................... 32

5.10.4

5.11

SR 1.9 – Strength of public key authentication ...................................................... 32

Requirement .............................................................................................. 32

5.11.1

Rationale and supplemental guidance ....................................................... 32

5.11.2

Requirement enhancements ...................................................................... 33

5.11.3

Security levels ........................................................................................... 33

5.11.4

5.12

SR 1.10 – Authenticator feedback ......................................................................... 33

Requirement .............................................................................................. 33

5.12.1

Rationale and supplemental guidance ....................................................... 33

5.12.2

Requirement enhancements ...................................................................... 33

5.12.3

Security levels ........................................................................................... 33

5.12.4

5.13

SR 1.11 – Unsuccessful login attempts .................................................................. 34

Requirement .............................................................................................. 34

5.13.1

Rationale and supplemental guidance ....................................................... 34

5.13.2

Requirement enhancements ...................................................................... 34

5.13.3

Security levels ........................................................................................... 34

5.13.4

5.14

SR 1.12 – System use notification ......................................................................... 34

Requirement .............................................................................................. 34

5.14.1

Rationale and supplemental guidance ....................................................... 34

5.14.2

Requirement enhancements ...................................................................... 35

5.14.3

Security levels ........................................................................................... 35

5.14.4

5.15

SR 1.13 – Access via untrusted networks .............................................................. 35

Requirement .............................................................................................. 35

5.15.1

Rationale and supplemental guidance ....................................................... 35

5.15.2

Requirement enhancements ...................................................................... 35

5.15.3

Security levels ........................................................................................... 35

5.15.4

FR 2 – Use control ......................................................................................................... 36

6.1

Purpose and SL-C(UC) descriptions ...................................................................... 36

6.2

Rationale ............................................................................................................... 36

6.3

SR 2.1 – Authorization enforcement ...................................................................... 36

Requirement .............................................................................................. 36

6.3.1

Rationale and supplemental guidance ....................................................... 36

6.3.2

Requirement enhancements ...................................................................... 37

6.3.3

Security levels ........................................................................................... 37

6.3.4

6.4

SR 2.2 – Wireless use control ............................................................................... 37

Requirement .............................................................................................. 37

6.4.1

Rationale and supplemental guidance ....................................................... 38

6.4.2

剩余82页未读，继续阅读

评论收藏

内容反馈

版权申诉

weixin_45435522

2024-02-28

资源不错，很实用，内容全面，介绍详细，很好用，谢谢分享。
qq_59722347

2024-03-06

感谢大佬分享的资源给了我灵感，果断支持！感谢分享~
qq_30668981

2023-06-02

这个资源值得下载，资源内容详细全面，与描述一致，受益匪浅。

每天读点书学堂

粉丝: 93
资源: 1万+

IEC 62443-3-3 工业通信网络网络和系统安全.pdf

最新资源

IEC 62443-3-3 工业通信网络 网络和系统安全.pdf

IEC 62443-2-1-2010中文 工业通信网络 - 网络和系统的安全 - 基础设施 建立一个工业自动化和控制系统安全计划

IEC_62443工控网络与系统信息安全标准综述_欧阳劲松.pdf

关于电力通信网的信息安全技术研究.pdf

GBZ 25320.3-2010 电力系统管理及其信息交换 数据和通信安全 第3部分：通信网络和系统安全包括TCP IP的协议集.pdf

IEC+62443工控网络与系统信息安全标准综述.pdf

IEC 62443 全系列 工业及系统安全（包含全部10份最新英文版标准文件）.7z

IEC 61375-3-4（中文版）2014 电子铁路设备-列车通信网络-3-4以太网编组网络.pdf

IEC 62443-4-2-2019 最新版 工业自动化控制系统组件的安全标准.pdf

IEC 62351-3-2023 电力系统管理和相关信息交换——数据和通信安全——第3部分：通信网络和系统安全——包括TCP-I

GBZ 25320.6-2011 电力系统管理及其信息交换 数据和通信安全 第6部分：IEC 61850的安全.pdf

基于IEC60870-5-104的配电自动化通信安全协议.pdf

GBZ 25320.6-2011 电力系统管理及其信息交换 数据和通信安全 第6部分IEC 61850的安全.pdf

IEC61508-CH.zip

IEC 61918-2022 工业通信网络-在工业场所安装通信网络 完整英文.pdf

ISO-IEC 7498-1 OSI Basic Reference Model - The Basic Model.pdf

GBZ 25320.4-2010 电力系统管理及其信息交换 数据和通信安全 第4部分：包含MMS的协议集.pdf

ISO_IEC_29100_2011信息技术 安全技术 隐私框架.pdf

欧姆龙 DeviceNet安全输入/输出终端操作手册.pdf

TE明星产品：M8M12连接器系统.pdf

施耐德-Altivar71变频器简明目录.pdf

欧姆龙独立型安全控制器G9SP说明书.pdf

61850标准（中文版）

基于IEEE国际标准的UPS系统容量计算.pdf

EtherCAT对应 MINAS A5B产品样本.pdf

ISO/IEC 27003标准中文版 pdf

相关实用应用程序（Windows可用）

免费可用的ChatGPT网页版.zip

ChatGPT使用总结：150个ChatGPT提示词模板（完整版）

chromedriver-win64.zip

最新资源

IEC 62443-3-3 工业通信网络网络和系统安全.pdf

IEC 62443-2-1-2010中文工业通信网络 - 网络和系统的安全 - 基础设施建立一个工业自动化和控制系统安全计划

GBZ 25320.3-2010 电力系统管理及其信息交换数据和通信安全第3部分：通信网络和系统安全包括TCP IP的协议集.pdf

IEC 62443 全系列工业及系统安全（包含全部10份最新英文版标准文件）.7z

IEC 62443-4-2-2019 最新版工业自动化控制系统组件的安全标准.pdf

GBZ 25320.6-2011 电力系统管理及其信息交换数据和通信安全第6部分：IEC 61850的安全.pdf

GBZ 25320.6-2011 电力系统管理及其信息交换数据和通信安全第6部分IEC 61850的安全.pdf

IEC 61918-2022 工业通信网络-在工业场所安装通信网络完整英文.pdf

GBZ 25320.4-2010 电力系统管理及其信息交换数据和通信安全第4部分：包含MMS的协议集.pdf

ISO_IEC_29100_2011信息技术安全技术隐私框架.pdf