Power systems management and associated information exchange. Data and communications security-Guidelines for handling role-based access control in power systems
电力系统管理和相关信息交换 数据和通信安全
BS PD IEC TR 62351-90-1:2018, which is a technical report, addresses the handling of access control
of users and automated agents to data objects in power systems by means of role-based
access control (RBAC) as defined in IEC TS 62351-8. IEC TS 62351-8 defines three different
profiles to distribute role information and also defines a set of mandatory roles to be
supported. Adoption of RBAC has shown that the defined mandatory roles are not always
sufficient and it is recommended that the method for defining custom roles be standardized to
ensure interoperability. Hence, the main focus of this document lies in developing a
standardized method for defining and engineering custom roles, their role-to-right mappings
and the corresponding infrastructure support needed to utilize these custom roles in power
systems. This is achieved by defining categories and sub level categories, which provide a
distinction of actions, connected with dedicated rights as well as a proposal for a format to
distribute the custom role-to-right mappings. Moreover, a format is being proposed to
distribute the information on custom defined roles and associated rights by utilizing XACML as
an established standard for access control.Cross References:ISO 9594-8IEC 61850-6IEC 62351-7ITU-T Recommendation X.509:2005IEC TS 62351-4IEC TS 62351-6IEC TS 62351-8IEC TS 62351-1IEC 62351-9IEC 62443-3-3IEC TS 62351-5IEC 62351-3IEC 62351-9IEEE P1689IEEE 1686RFC5878ANSI INCITS 359-2004RFC5280ANSI X.9.73-2002IEC 62443 (all parts)BSI TR 03109IEC 60870-5-104IEEE 1518:2010IEC TS 60870-5-7ANSI X.9.69-2006IEC/ISO 9798-2ISO 27019IEC 61850-7-3NIST: SP 800-82All current amendments available at time of purchase are included with the purchase of this document.
到馆提醒
收藏跟踪
分享链接
购买正版
分类信息
首页
馆藏资源
舆情信息
标准服务
科研活动
关于我们
️版权归中国标准化研究院所有