ImageVerifierCode 换一换
格式:PDF , 页数:44 ,大小:2.84MB ,
资源ID:721257      下载积分:10000 积分
快捷下载
登录下载
邮箱/手机:
温馨提示:
如需开发票,请勿充值!快捷下载时,用户名和密码都是您填写的邮箱或者手机号,方便查询和重复下载(系统自动生成)。
如填写123,账号就是123,密码也是123。
特别说明:
请自助下载,系统不会自动发送文件的哦; 如果您已付费,想二次下载,请登录后访问:我的下载记录
支付方式: 支付宝扫码支付 微信扫码支付   
注意:如需开发票,请勿充值!
验证码:   换一换

加入VIP,免费下载
 

温馨提示:由于个人手机设置不同,如果发现不能下载,请复制以下地址【http://www.mydoc123.com/d-721257.html】到电脑端继续下载(重复下载不扣费)。

已注册用户请登录:
账号:
密码:
验证码:   换一换
  忘记密码?
三方登录: 微信登录  

下载须知

1: 本站所有资源如无特殊说明,都需要本地电脑安装OFFICE2007和PDF阅读器。
2: 试题试卷类文档,如果标题没有明确说明有答案则都视为没有答案,请知晓。
3: 文件的所有权益归上传用户所有。
4. 未经权益所有人同意不得将文件中的内容挪作商业或盈利用途。
5. 本站仅提供交流平台,并不能对任何下载内容负责。
6. 下载文件中如有侵权或不适当内容,请与我们联系,我们立即纠正。
7. 本站不保证下载资源的准确性、安全性和完整性, 同时也不承担用户因使用这些下载资源对自己和他人造成任何形式的伤害或损失。

版权提示 | 免责声明

本文(EN 62351-11-2017 en Power systems management and associated information exchange - Data and communications security - Part 11 Security for XML documents.pdf)为本站会员(inwarn120)主动上传,麦多课文库仅提供信息存储空间,仅对用户上传内容的表现方式做保护处理,对上载内容本身不做任何修改或编辑。 若此文所含内容侵犯了您的版权或隐私,请立即通知麦多课文库(发送邮件至master@mydoc123.com或直接QQ联系客服),我们立即给予删除!

EN 62351-11-2017 en Power systems management and associated information exchange - Data and communications security - Part 11 Security for XML documents.pdf

1、Power systems management and associated informationexchange Data and communications securityPart 11: Security for XML documentsBS EN 62351-11:2017BSI Standards PublicationWB11885_BSI_StandardCovs_2013_AW.indd 1 15/05/2013 15:06National forewordThis British Standard is the UK implementation of EN 623

2、51-11:2017. It isidentical to IEC 62351-11:2016. The UK participation in its preparation was entrusted to TechnicalCommittee PEL/57, Power systems management and associated information exchange.A list of organizations represented on this committee can be obtained onrequest to its secretary.This publ

3、ication does not purport to include all the necessary provisions ofa contract. Users are responsible for its correct application. The British Standards Institution 2017.Published by BSI Standards Limited 2017ISBN 978 0 580 87991 3ICS 33.200Compliance with a British Standard cannot confer immunity fr

4、omlegal obligations.This British Standard was published under the authority of the Standards Policy and Strategy Committee on 28 February 2017.Amendments/corrigenda issued since publicationDate Text affectedBRITISH STANDARDBS EN 62351-11:2017EUROPEAN STANDARD NORME EUROPENNE EUROPISCHE NORM EN 62351

5、-11 February 2017 ICS 33.200 English Version Power systems management and associated information exchange - Data and communications security - Part 11: Security for XML documents (IEC 62351-11:2016) Gestion des systmes de puissance et changes dinformations associs - Scurit des communications et des

6、donnes - Partie 11: Scurit des documents XML (IEC 62351-11:2016) Energiemanagementsysteme und zugehriger Datenaustausch - IT-Sicherheit fr Daten und Kommunikation - Teil 11: Sicherheit fr XML-Dateien (IEC 62351-11:2016) This European Standard was approved by CENELEC on 2016-11-02. CENELEC members ar

7、e bound to comply with the CEN/CENELEC Internal Regulations which stipulate the conditions for giving this European Standard the status of a national standard without any alteration. Up-to-date lists and bibliographical references concerning such national standards may be obtained on application to

8、the CEN-CENELEC Management Centre or to any CENELEC member. This European Standard exists in three official versions (English, French, German). A version in any other language made by translation under the responsibility of a CENELEC member into its own language and notified to the CEN-CENELEC Manag

9、ement Centre has the same status as the official versions. CENELEC members are the national electrotechnical committees of Austria, Belgium, Bulgaria, Croatia, Cyprus, the Czech Republic, Denmark, Estonia, Finland, Former Yugoslav Republic of Macedonia, France, Germany, Greece, Hungary, Iceland, Ire

10、land, Italy, Latvia, Lithuania, Luxembourg, Malta, the Netherlands, Norway, Poland, Portugal, Romania, Serbia, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and the United Kingdom. European Committee for Electrotechnical Standardization Comit Europen de Normalisation Electrotechnique Europi

11、sches Komitee fr Elektrotechnische Normung CEN-CENELEC Management Centre: Avenue Marnix 17, B-1000 Brussels 2017 CENELEC All rights of exploitation in any form and by any means reserved worldwide for CENELEC Members. Ref. No. EN 62351-11:2017 E BS EN 62351-11:2017EN 62351-11:2017 2 European foreword

12、 The text of document 57/1753/FDIS, future edition 1 of IEC 62351-11, prepared by IEC/TC 57 “Power systems management and associated information exchange“ was submitted to the IEC-CENELEC parallel vote and approved by CENELEC as EN 62351-11:2017. The following dates are fixed: latest date by which t

13、he document has to be implemented at national level by publication of an identical national standard or by endorsement (dop) 2017-08-10 latest date by which the national standards conflicting with the document have to be withdrawn (dow) 2020-02-10 Attention is drawn to the possibility that some of t

14、he elements of this document may be the subject of patent rights. CENELEC and/or CEN shall not be held responsible for identifying any or all such patent rights. Endorsement notice The text of the International Standard IEC 62351-11:2016 was approved by CENELEC as a European Standard without any mod

15、ification. In the official version, for Bibliography, the following notes have to be added for the standards indicated: IEC 61850-6 NOTE Harmonized as EN 61850-6. IEC 61970-552 NOTE Harmonized as EN 61970-552. IEC 62351-1 NOTE Harmonized as EN 62351-1. IEC 62351-3 NOTE Harmonized as EN 62351-3. BS E

16、N 62351-11:2017EN 62351-11:2017 3 Annex ZA (normative) Normative references to international publications with their corresponding European publications The following documents, in whole or in part, are normatively referenced in this document and are indispensable for its application. For dated refe

17、rences, only the edition cited applies. For undated references, the latest edition of the referenced document (including any amendments) applies. NOTE 1 When an International Publication has been modified by common modifications, indicated by (mod), the relevant EN/HD applies. NOTE 2 Up-to-date info

18、rmation on the latest versions of the European Standards listed in this annex is available here: www.cenelec.eu. Publication Year Title EN/HD Year IEC 62351-9 - Power systems management and associated information exchange - Data and communications security - Part 9: Cyber security key management for

19、 power system equipment - - IEC/TS 62351-2 - Power systems management and associated information exchange - Data and communications security - Part 2: Glossary of terms - - IEC/TS 62351-8 - Power systems management and associated information exchange - Data and communications security - Part 8: Role

20、-based access control - - IETF RFC 6931 - Additional XML Security Uniform Resource Identifiers (URIs) - - W3C Recommended Canonical XML 1.0 - - - W3C Required Canonical XML1.0 - - - W3C XML 1.1 - Signature Syntax and Processing_- Version 1.1 - - W3C XML Signature - XML Signature Syntax and Processin

21、g - - BS EN 62351-11:2017 2 IEC 62351-11:2016 IEC 2016 CONTENTS FOREWORD. 4 1 Scope 6 2 Normative references 7 3 Terms and definitions 7 4 Security issues addressed by this document 8 4.1 General . 8 4.2 Security threats countered . 8 4.3 Attack methods countered . 8 5 XML Documents 8 6 XML document

22、 encapsulation 10 6.1 General . 10 6.2 HeaderType 11 6.3 Information . 12 6.3.1 General . 12 6.3.2 Nonce 13 6.3.3 AccessControl 13 6.3.4 Body 20 6.4 Encrypted element 21 6.4.1 General . 21 6.4.2 EncryptionMethod 21 6.4.3 CipherData 22 6.4.4 KeyInfo 22 6.5 SignatureType. 23 6.5.1 General . 23 6.5.2 S

23、ignedInfoType 23 6.6 Supporting XSD Types 27 6.6.1 General . 27 6.6.2 NameSeqType . 27 6.7 Security algorithm selection . 27 7 Example files (informative) . 28 7.1 Non-encrypted example . 28 7.2 Encrypted example 30 8 IANA list of signature, digest, and encryption methods (informative) . 32 Bibliogr

24、aphy . 37 Figure 1 Overview of IEC 62351-11 structure 6 Figure 2 Data in transition example 9 Figure 3 Secure encapsulation for XML documents . 10 Figure 4 General IEC 62351-11 XSD layout 10 Figure 5 XSD ComplexType definition of HeaderType . 11 Figure 6 XSD ComplexType definition of information. 12

25、 Figure 7 XSD Complex Type Definition of AccessControl 13 Figure 8 XSD Complex Type definition of AccessControlType . 14 Figure 9 XSD Complex Type Definition of ACLRestrictionType 15 BS EN 62351-11:2017IEC 62351-11:2016 IEC 2016 3 Figure 10 XSD Complex Type definition of EntityType 17 Figure 11 Exam

26、ple of AccessControl and XPATH . 19 Figure 12 Example of an IEC 62351-11 Body with a CIM document . 20 Figure 13 Structure of the IEC 62351-11 Encrypted element . 21 Figure 14 Structure of EncryptionMethodType 21 Figure 15 Structure of CipherDataType. 22 Figure 16 EncryptedData element definition 22

27、 Figure 17 W3C SignatureType definition . 23 Figure 18 SignedInfotype XML structure . 24 Figure 19 SignatureMethodType structure 24 Figure 20 ReferenceType structure 25 Figure 21 KeyInfoType Structure 26 Figure 22 Definition of NameSeqType 27 Table 1 Definitions of general structure for an IEC 62351

28、-11 document . 11 Table 2 Definition of HeaderType Element 12 Table 3 Definition of information element 13 Table 4 Definition of Contractual and ACL Element . 14 Table 5 Definition of ACLRestrictionType Element 15 Table 6 Definition of Enumerated Values for ACLType 16 Table 7 Definition of Enumerate

29、d Values for Constraint 16 Table 8 Definition of EntityType Element 17 BS EN 62351-11:2017 4 IEC 62351-11:2016 IEC 2016 INTERNATIONAL ELECTROTECHNICAL COMMISSION _ POWER SYSTEMS MANAGEMENT AND ASSOCIATED INFORMATION EXCHANGE DATA AND COMMUNICATIONS SECURITY Part 11: Security for XML documents FOREWO

30、RD 1) The International Electrotechnical Commission (IEC) is a worldwide organization for standardization comprising all national electrotechnical committees (IEC National Committees). The object of IEC is to promote international co-operation on all questions concerning standardization in the elect

31、rical and electronic fields. To this end and in addition to other activities, IEC publishes International Standards, Technical Specifications, Technical Reports, Publicly Available Specifications (PAS) and Guides (hereafter referred to as “IEC Publication(s)”). Their preparation is entrusted to tech

32、nical committees; any IEC National Committee interested in the subject dealt with may participate in this preparatory work. International, governmental and non-governmental organizations liaising with the IEC also participate in this preparation. IEC collaborates closely with the International Organ

33、ization for Standardization (ISO) in accordance with conditions determined by agreement between the two organizations. 2) The formal decisions or agreements of IEC on technical matters express, as nearly as possible, an international consensus of opinion on the relevant subjects since each technical

34、 committee has representation from all interested IEC National Committees. 3) IEC Publications have the form of recommendations for international use and are accepted by IEC National Committees in that sense. While all reasonable efforts are made to ensure that the technical content of IEC Publicati

35、ons is accurate, IEC cannot be held responsible for the way in which they are used or for any misinterpretation by any end user. 4) In order to promote international uniformity, IEC National Committees undertake to apply IEC Publications transparently to the maximum extent possible in their national

36、 and regional publications. Any divergence between any IEC Publication and the corresponding national or regional publication shall be clearly indicated in the latter. 5) IEC itself does not provide any attestation of conformity. Independent certification bodies provide conformity assessment service

37、s and, in some areas, access to IEC marks of conformity. IEC is not responsible for any services carried out by independent certification bodies. 6) All users should ensure that they have the latest edition of this publication. 7) No liability shall attach to IEC or its directors, employees, servant

38、s or agents including individual experts and members of its technical committees and IEC National Committees for any personal injury, property damage or other damage of any nature whatsoever, whether direct or indirect, or for costs (including legal fees) and expenses arising out of the publication,

39、 use of, or reliance upon, this IEC Publication or any other IEC Publications. 8) Attention is drawn to the Normative references cited in this publication. Use of the referenced publications is indispensable for the correct application of this publication. 9) Attention is drawn to the possibility th

40、at some of the elements of this IEC Publication may be the subject of patent rights. IEC shall not be held responsible for identifying any or all such patent rights. International Standard IEC 62351-11 has been prepared by IEC technical committee 57: Power systems management and associated informati

41、on exchange. The text of this standard is based on the following documents: FDIS Report on voting 57/1753/FDIS 57/1774/RVD Full information on the voting for the approval of this standard can be found in the report on voting indicated in the above table. This publication has been drafted in accordan

42、ce with the ISO/IEC Directives, Part 2. BS EN 62351-11:2017IEC 62351-11:2016 IEC 2016 5 A list of all parts of the IEC 62351 series, published under the general title Power systems management and associated information exchange Data and communications security, can be found on the IEC website. The c

43、ommittee has decided that the contents of this publication will remain unchanged until the stability date indicated on the IEC website under “http:/webstore.iec.ch“ in the data related to the specific publication. At this date, the publication will be reconfirmed, withdrawn, replaced by a revised ed

44、ition, or amended. IMPORTANT The colour inside logo on the cover page of this publication indicates that it contains colours which are considered to be useful for the correct understanding of its contents. Users should therefore print this document using a colour printer. BS EN 62351-11:2017 6 IEC 6

45、2351-11:2016 IEC 2016 POWER SYSTEMS MANAGEMENT AND ASSOCIATED INFORMATION EXCHANGE DATA AND COMMUNICATIONS SECURITY Part 11: Security for XML documents 1 Scope This part of IEC 62351 specifies schema, procedures, and algorithms for securing XML documents that are used within the scope of the IEC as

46、well as documents in other domains (e.g. IEEE, proprietary, etc.). This part is intended to be referenced by standards if secure exchanges are required, unless there is an agreement between parties in order to use other recognized secure exchange mechanisms. This part of IEC 62351 utilizes well-know

47、n W3C standards for XML document security and provides profiling of these standards and additional extensions. The IEC 62351-11 extensions provide the capability to provide: Header: the header contains information relevant to the creation of the secured document such as the Date and Time when IEC 62

48、351-11 was created. A choice of encapsulating the original XML document in an encrypted (Encrypted) or non-encrypted (nonEncrypted) format. If encryption is chosen, there is a mechanism provided to express the information required to actually perform encryption in an interoperable manner (Encryption

49、Info). AccessControl: a mechanism to express access control information regarding information contained in the original XML document. Body: is used to contain the original XML document that is being encapsulated. Signature: a signature that can be used for the purposes of authentication and tamper detection. The general structure is shown in Figure 1. Figure 1 Overview of IEC 62351-11 structure For the m

copyright@ 2008-2019 麦多课文库(www.mydoc123.com)网站版权所有
备案/许可证编号:苏ICP备17064731号-1