EN 62734-2015 en Industrial networks - Wireless communication network and communication profiles - ISA 100 11a.pdf

1、BSI Standards PublicationIndustrial networks Wireless communication network and communication profiles ISA 100.11aBS EN 62734:2015National forewordThis British Standard is the UK implementation of EN 62734:2015. It is identical to IEC 62734:2014. It supersedes PD IEC/PAS 62734:2012 which iswithdrawn

2、.The UK participation in its preparation was entrusted to TechnicalCommittee AMT/7, Industrial communications: process measurement andcontrol, including fieldbus.A list of organizations represented on this committee can be obtained onrequest to its secretary.This publication does not purport to incl

3、ude all the necessary provisions ofa contract. Users are responsible for its correct application. The British Standards Institution 2015.Published by BSI Standards Limited 2015ISBN 978 0 580 78132 2ICS 25.040; 33.040; 35.100Compliance with a British Standard cannot confer immunity fromlegal obligati

4、ons.This British Standard was published under the authority of theStandards Policy and Strategy Committee on 31 January 2015.Amendments/corrigenda issued since publicationDate Text affectedBRITISH STANDARDBS EN 62734:2015EUROPEAN STANDARD NORME EUROPENNE EUROPISCHE NORM EN 62734 January 2015 ICS 25.

5、040; 33.040; 35.100 English Version Industrial networks - Wireless communication network and communication profiles - ISA 100.11a (IEC 62734:2014) Rseaux industriels - Rseau de communication sans fil et profils de communication - ISA 100.11a (IEC 62734:2014) Industrielle Kommunikationsnetze - Drahtl

6、ose Kommunikationsnetze und Kommunikationsprofile - ISA 100.11a (IEC 62734:2014) This European Standard was approved by CENELEC on 2014-12-02. CENELEC members are bound to comply with the CEN/CENELEC Internal Regulations which stipulate the conditions for giving this European Standard the status of

7、a national standard without any alteration. Up-to-date lists and bibliographical references concerning such national standards may be obtained on application to the CEN-CENELEC Management Centre or to any CENELEC member. This European Standard exists in three official versions (English, French, Germ

8、an). A version in any other language made by translation under the responsibility of a CENELEC member into its own language and notified to the CEN-CENELEC Management Centre has the same status as the official versions. CENELEC members are the national electrotechnical committees of Austria, Belgium

9、, Bulgaria, Croatia, Cyprus, the Czech Republic, Denmark, Estonia, Finland, Former Yugoslav Republic of Macedonia, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, the Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, S

10、witzerland, Turkey and the United Kingdom. European Committee for Electrotechnical Standardization Comit Europen de Normalisation Electrotechnique Europisches Komitee fr Elektrotechnische Normung CEN-CENELEC Management Centre: Avenue Marnix 17, B-1000 Brussels 2015 CENELEC All rights of exploitation

11、 in any form and by any means reserved worldwide for CENELEC Members. Ref. No. EN 62734:2015 E BS EN 62734:2015EN 62734:2015 - 2 - Foreword The text of document 65C/778/FDIS, future edition 1 of IEC 62734, prepared by SC 65C “Industrial networks“ of IEC/TC 65 “Industrial-process measurement, control

12、 and automation“ was submitted to the IEC-CENELEC parallel vote and approved by CENELEC as EN 62734:2015. The following dates are fixed: latest date by which the document has to be implemented at national level by publication of an identical national standard or by endorsement (dop) 2015-09-02 lates

13、t date by which the national standards conflicting with the document have to be withdrawn (dow) 2017-12-02 Attention is drawn to the possibility that some of the elements of this document may be the subject of patent rights. CENELEC and/or CEN shall not be held responsible for identifying any or all

14、 such patent rights. Endorsement notice The text of the International Standard IEC 62734:2014 was approved by CENELEC as a European Standard without any modification. In the official version, for Bibliography, the following notes have to be added for the standards indicated: IEC 61158 Series NOTE Ha

15、rmonized as EN 61158 Series. IEC 61499-4:2005 NOTE Harmonized as EN 61499-4:2006 1)(not modified). IEC 61512-1 NOTE Harmonized as EN 61512-1. IEC 61804-3 NOTE Harmonized as EN 61804-3. IEC 62264-1:2013 NOTE Harmonized as EN 62264-1:2013 (not modified). IEC 62591 NOTE Harmonized as EN 62591. ISO 3166

16、-1 NOTE Harmonized as EN ISO 3166-1. 1)Superseded by EN 61499-4:2013 (IEC 61499-4:2013): DOW = 2016-03-06. BS EN 62734:2015- 3 - EN 62734:2015 Annex ZA (normative) Normative references to international publications with their corresponding European publications The following documents, in whole or i

17、n part, are normatively referenced in this document and are indispensable for its application. For dated references, only the edition cited applies. For undated references, the latest edition of the referenced document (including any amendments) applies. NOTE 1 When an International Publication has

18、been modified by common modifications, indicated by (mod), the relevant EN/HD applies. NOTE 2 Up-to-date information on the latest versions of the European Standards listed in this annex is available here: www.cenelec.eu Publication Year Title EN/HD Year ISO/IEC 646 - Information technology; ISO 7-b

19、it coded character set for information interchange - - ISO/IEC 10731 - Information technology - Open Systems Interconnection - Basic Reference Model - Conventions for the definition of OSI services - - ISO/IEC 18033-3 - Information technology - Security techniques - Encryption algorithms - Part 3: B

20、lock ciphers - - ISO/IEC 19772 - Information technology - Security techniques - Authenticated encryption - - ANSI X 9.63 2011 Public Key Cryptography for Financial Services Industry - Key Agreement and Key Transport Using Elliptic Curve Cryptography - - IETF RFC 2460 1998 Internet Protocol - Version

21、 6 (IPv6) - Specification - - IETF RFC 2464 - Transmission of IPv6 Packets over Ethernet Networks - - IETF RFC 2529 - Transmission of IPv6 over IPv4 Domains without Explicit Tunnels - - IETF RFC 3168 - The Addition of Explicit Congestion Notification (ECN) to IP - - IETF RFC 4213 - Basic Transition

22、Mechanisms for IPv6 Hosts and Routers - - IETF RFC 4291 2006 IP Version 6 Addressing Architecture - - IETF RFC 4944 - Transmission of IPv6 Packets over IEEE 802.15.4 Networks - - IETF RFC 6282 2011 Compression Format for IPv6 Datagrams over IEEE 802.15.4-Based Networks - - IETF RFC 6298 - Computing

23、TCPs Retransmission Timer - - BS EN 62734:2015EN 62734:2015 - 4 - Publication Year Title EN/HD Year IEEE 802.15.4 2011 IEEE Standard for Local and metropolitan area networks - Part 15.4: Low-Rate Wireless Personal Area Networks (LR-WPANs) - - SEC 1 2009 Elliptic Curve Cryptography, version 2 SEC 4 E

24、lliptic Curve Qu-Vanstone Implicit Certificate Scheme (ECQV), version 0.97 BS EN 62734:2015 2 IEC 62734:2014 IEC 2014 CONTENTS 0 Introduction . 33 0.1 General . 33 0.2 Document structure . 33 0.3 Potentially relevant patents . 33 1 Scope 35 2 Normative references 35 3 Terms, definitions, abbreviated

25、 terms, acronyms, and conventions 36 3.1 Terms and definitions 36 (N)-layer and other terms and definitions from the open systems 3.1.1interconnection Basic Reference Model . 36 Other terms and definitions 45 3.1.2Symbols for symmetric keys, and for asymmetric keys and certificates 63 3.1.3Terms use

26、d to describe device behavior 64 3.1.43.2 Abbreviated terms and acronyms 65 3.3 Conventions 71 Service interfaces 71 3.3.1Table cells . 72 3.3.2Italics. 72 3.3.3Bold face . 73 3.3.4Informal declarations of named constants 73 3.3.54 Overview . 73 4.1 General . 73 4.2 Interoperability and related issu

27、es 73 4.3 Quality of service 74 4.4 Worldwide applicability . 74 4.5 Network architecture . 74 Interfaces 74 4.5.1Data structures 75 4.5.2Network description . 76 4.5.3Generic protocol data unit construction 77 4.5.4Abstract data and concrete representations . 78 4.5.54.6 Network characteristics . 8

28、0 General . 80 4.6.1Scalability 80 4.6.2Extensibility . 81 4.6.3Simple operation . 81 4.6.4Site-license-exempt operation . 81 4.6.5Robustness in the presence of interference, including from other 4.6.6wireless systems . 81 Determinism and contention-free media access . 81 4.6.7Self-organizing networ

29、king with support for redundancy 82 4.6.8Internet-protocol-compatible NL . 82 4.6.9Coexistence with other radio frequency systems 82 4.6.10Time-slotted assigned-channel D-transactions as the basis for 4.6.11communication 84 BS EN 62734:2015IEC 62734:2014 IEC 2014 3 Robust and flexible security . 86

30、4.6.12System management . 87 4.6.13Application process using standard objects . 87 4.6.14Tunneling 87 4.6.155 System 87 5.1 General . 87 5.2 Devices . 88 General . 88 5.2.1Device interworkability . 88 5.2.2Profiles 88 5.2.3Quality of service . 88 5.2.4Device worldwide applicability . 88 5.2.5Device

31、description . 89 5.2.6Device addressing . 93 5.2.7Device phases . 93 5.2.8Device energy sources 95 5.2.95.3 Networks 95 General . 95 5.3.1Minimal network. 95 5.3.2Basic network topologies supported . 96 5.3.3Network configurations 99 5.3.4Gateway, system manager, and security manager . 104 5.3.55.4

32、Protocol suite structure . 105 5.5 Data flow 106 General . 106 5.5.1Native communications 107 5.5.2Basic data flow 107 5.5.3Data flow between I/O devices . 108 5.5.4Data flow with legacy I/O device 108 5.5.5Data flow with backbone 112 5.5.6Data flow between I/O devices via backbone . 112 5.5.7Data f

33、low to a standard-aware control system or device 112 5.5.85.6 Time reference 113 General . 113 5.6.1Time synchronization . 114 5.6.25.7 Firmware upgrades . 114 5.8 Wireless backbones and other infrastructures . 114 6 System management role 114 6.1 General . 114 Overview . 114 6.1.1Components and arc

34、hitecture 115 6.1.2Management functions . 116 6.1.36.2 DMAP . 116 General . 116 6.2.1Architecture of device management . 117 6.2.2Definition of management objects 117 6.2.3Management objects in DMAP . 117 6.2.4Communications services provided to device management objects 119 6.2.5Attributes of manag

35、ement objects 120 6.2.6BS EN 62734:2015 4 IEC 62734:2014 IEC 2014 Definitions of management objects in DMAP 121 6.2.7Functions of device management and layer management 130 6.2.86.3 System manager . 140 General . 140 6.3.1System management architecture 140 6.3.2Standard system management object type

36、s . 141 6.3.3Security management 142 6.3.4Addresses and address allocation . 143 6.3.5Firmware upgrade 147 6.3.6System performance monitoring 148 6.3.7Device provisioning service . 149 6.3.8Device management services 149 6.3.9System time services . 158 6.3.10System communication configuration . 162

37、6.3.11Redundancy management . 195 6.3.12System management protocols 196 6.3.13Management policies and policy administration . 196 6.3.14Operational interaction with plant operations or maintenance personnel 196 6.3.157 Security . 196 7.1 General . 196 7.2 Security services 197 Overview . 197 7.2.1Ke

38、ys 198 7.2.27.3 PDU security . 202 General . 202 7.3.1DPDU security . 203 7.3.2TL security functionality . 218 7.3.37.4 Joining process . 234 General . 234 7.4.1Prerequisites . 234 7.4.2Desired device end state and properties 235 7.4.3Joining process steps common for symmetric-key and asymmetric-key

39、 7.4.4approaches 235 Symmetric-key joining process 238 7.4.5Asymmetric-key joining process . 248 7.4.6Joining process and device lifetime failure recovery 264 7.4.77.5 Session establishment 266 General . 266 7.5.1Description 266 7.5.2Application protocol data unit protection using the master key . 2

40、68 7.5.3Proxy security management object methods related to the session 7.5.4establishment 268 7.6 Key update . 271 General . 271 7.6.1Description 271 7.6.2Device security management object methods related to T-key update . 272 7.6.3Failure recovery . 276 7.6.47.7 Functionality of the security manag

41、er role . 278 Proxy security management object 278 7.7.1BS EN 62734:2015IEC 62734:2014 IEC 2014 5 Authorization of network devices and generation or derivation of initial 7.7.2master keys . 279 Interaction with device security management objects . 279 7.7.3Management of operational keys . 279 7.7.47

42、.8 Security policies 280 Definition of security policy 280 7.8.1Policy extent 280 7.8.2Unconstrained security policy choices . 281 7.8.3Policy structures 281 7.8.47.9 Security functions available to the AL . 283 Parameters on transport service requests that relate to security 283 7.9.1Direct access

43、to cryptographic primitives . 284 7.9.2Symmetric-key cryptography 285 7.9.37.10 Security statistics collection, threat detection, and reporting . 286 7.11 DSMO functionality . 287 General . 287 7.11.1DSMO attributes 287 7.11.2KeyDescriptor 288 7.11.3DSMO alerts 293 7.11.48 Physical layer 294 8.1 Gen

44、eral . 294 8.2 Default physical layer 295 General requirements 295 8.2.1Additional requirements of IEEE 802.15.4 295 8.2.2Exceptions to the IEEE 802.15.4 physical layer . 296 8.2.39 Data-link layer . 296 9.1 General . 296 Overview . 296 9.1.1Coexistence strategies in the DL . 297 9.1.2Allocation of

45、digital bandwidth . 297 9.1.3Structure of the DPDU . 298 9.1.4The DL and the IEEE 802.15.4 MAC 298 9.1.5Routes and graphs 299 9.1.6Slotted-channel-hopping, slow-channel-hopping, and timeslots . 306 9.1.7Superframes 317 9.1.8DL time keeping. 329 9.1.9D-subnet addressing 348 9.1.10DL management servic

46、e 349 9.1.11Relationship between DLE and DSC 351 9.1.12DLE neighbor discovery . 352 9.1.13Neighbor discovery and joining DL considerations 355 9.1.14Radio link control and quality measurement . 360 9.1.15DLE roles and options . 365 9.1.16DLE energy considerations 365 9.1.179.2 DDSAP . 366 General .

47、366 9.2.1DD-DATA.request . 366 9.2.2DD-DATA.confirm . 368 9.2.3DD-DATA.indication 368 9.2.4BS EN 62734:2015 6 IEC 62734:2014 IEC 2014 9.3 Data DPDUs and ACK/NAK DPDUs 369 General . 369 9.3.1Octet and bit ordering 370 9.3.2Media access control headers . 371 9.3.3MAC acknowledgment DPDUs . 378 9.3.4DL

48、 auxiliary subheader 381 9.3.59.4 DL management information base . 396 General . 396 9.4.1DL management object attributes 396 9.4.2DLMO attributes (indexed OctetStrings) . 416 9.4.39.5 DLE methods 445 Method for synchronized cutover of DLE attributes 445 9.5.1Methods to access indexed OctetString at

49、tributes 445 9.5.29.6 DL alerts . 447 DL_Connectivity alert 447 9.6.1NeighborDiscovery alert 449 9.6.210 Network layer 450 10.1 General . 450 10.2 NL functionality overview 450 General . 450 10.2.1Addressing 451 10.2.2Address translation 451 10.2.3Network protocol data unit headers 453 10.2.4Fragmentation and reassembly 453 10.2.5Routing 456 10.2.6Routing examples 462 10.2.710.3 NLE data services . 470 General . 470 10.3.1N-DATA.request 471 10.3.2N-DATA.confirm 472 10.3.3N-DATA.indication 472 10.3.410.4 NL mana