Cart (0)
  • No items in cart.
Total
$0
There is a technical issue about last added item. You can click "Report to us" button to let us know and we resolve the issue and return back to you or you can continue without last item via click to continue button.
Home
Content
Tour
eLibrary
Store
Search book title
Enter keywords for book title search
Search book content
Enter keywords for book content search
Filters:
FORMAT
BOOKS
All Books
PACKAGES
All Packages
EDITION
to
PUBLISHER
AABC
(1)
AAMI
(326)
ACI
(573)
AISC
(44)
ASA
(234)
ASCE
(969)
ASHRAE
(652)
ASME
(2114)
ASSE
(64)
ASTM
(92448)
AWC
(54)
AWWA
(541)
BHMA
(117)
BICSI
(33)
BIFMA
(21)
BOMA
(20)
BSI
(93277)
CHD
(3)
CRSI
(17)
IAHSS
(1)
IAPMO
(351)
ICC
(300)
IEEE
(6217)
IES
(240)
ISEA
(16)
Joint Commission
(177)
Joint Commission Int.
(1)
NETA
(5)
NFPA
(1635)
TCNA
(16)
TMS
(19)
USGBC
(28)
WILEY
(4)
 
AR
(6)
AZ
(7)
CA
(115)
CT
(3)
FL
(57)
ID
(5)
IL
(5)
IN
(1)
KY
(1)
LA
(2)
MI
(25)
MN
(26)
NC
(27)
NJ
(13)
NY
(61)
OH
(24)
OR
(22)
PA
(7)
RI
(8)
SC
(20)
SD
(1)
TX
(3)
VA
(50)
VT
(6)
WA
(31)
CONTENT TYPE
 Act
 Admin Code
 Announcements
 Bill
 Book
 CADD File
 CAN
 CEU
 Charter
 Checklist
 City Code
 Code
 Commentary
 Comprehensive Plan
 Conference Paper
 County Code
 Course
 DHS Documents
 Document
 Errata
 Executive Regulation
 Federal Guideline
 Firm Content
 Guideline
 Handbook
 Interpretation
 Journal
 Land Use and Development
 Law
 Legislative Rule
 Local Amendment
 Local Code
 Local Document
 Local Regulation
 Local Standards
 Manual
 Model Code
 Model Standard
 Notice
 Ordinance
 Other
 Paperback
 PASS
 Periodicals
 PIN
 Plan
 Policy
 Product
 Product - Data Sheet
 Program
 Provisions
 Requirements
 Revisions
 Rules & Regulations
 Standards
 State Amendment
 State Code
 State Manual
 State Plan
 State Standards
 Statute
 Study Guide
 Supplement
 Sustainability
 Technical Bulletin
 All
  • BSI
    BS EN IEC 62645:2020 Nuclear power plants. Instrumentation, control and electrical power systems. Cybersecurity requirements
    Edition: 2020
    $497.46
    / user per year

Description of BS EN IEC 62645:2020 2020

1.1 General

This document establishes requirements and provides guidance for the development and management of effective computer security programmes for I&C programmable digital systems. Inherent to these requirements and guidance is the criterion that the power plant I&C programmable digital system security programme complies with the applicable country’s requirements.

This document defines adequate measures for the prevention of, detection of and reaction to malicious acts by digital means (cyberattacks) on I&C programmable digital systems. This includes any unsafe situation, equipment damage or plant performance degradation that could result from such an act, such as:

  • malicious modifications affecting system integrity;

  • malicious interference with information, data or resources that could compromise the delivery of or performance of the required I&C programmable digital functions;

  • malicious interference with information, data or resources that could compromise operator displays or lead to loss of management of I&C programmable digital systems;

  • malicious changes to hardware, firmware or software at the programmable logic controller (PLC) level.

Human errors leading to violation of the security policy and/or easing the aforementioned malicious acts are also in the scope of this document.

This document describes a graded approach scheme for assets subject to digital compromise, based on their relevance to the overall plant safety, availability, and equipment protection.

Excluded from the scope of this document are considerations related to:

  • non-malevolent actions and events such as accidental failures, human errors (except those impacting the performance of cybersecurity controls) and natural events. In particular, good practices for managing applications and data, including back-up and restoration related to accidental failure, are out of scope;

    NOTE 1 Although such aspects are often covered by security programme in other normative contexts (e.g., in the ISO/IEC 27000 series or in the IEC 62443 series), this document is only focused on the protection against malicious acts by digital means (cyberattacks) on I&C programmable digital systems. The main reason is that in the nuclear generation domain, other standards and practices already cover accidental failures, unintentional human errors, natural events, etc. The focus of IEC 62645 is made to provide the maximum consistency and the minimum overlap with these other nuclear standards and practices.

  • site physical security, room access control and site security surveillance systems. These systems, while not specifically addressed in this document, are to be covered by plant operating procedures and programmes;

    NOTE 2 This exclusion does not deny that cybersecurity has clear dependencies on the security of the physical environment (e.g., physical protection, power delivery systems, heating/ventilation/air-conditioning systems (HVAC), etc.).

  • the aspect of confidentiality of information about I&C digital programmable systems is out of the scope of this document (see 5.4.3.2.3).

Annex A provides a rationale for and comments about the scope, definition and the document's application, and in particular about the exclusions and limitations previously mentioned.

Standards such as ISO/IEC 27001 and ISO/IEC 27002 are not directly applicable to the cyber protection of nuclear I&C programmable digital systems. This is mainly due to the specificities of these systems, including the regulatory and safety requirements inherent to nuclear facilities. However, this document builds upon the valid high level principles and main concepts of ISO/IEC 27001:2013, adapts them and completes them to fit the nuclear context.

This document follows the general principles given in the IAEA reference manual NSS17.



Standard NumberBS EN IEC 62645:2020
TitleNuclear power plants. Instrumentation, control and electrical power systems. Cybersecurity requirements
StatusDefinitive
Publication Date2020-08-20
Identical National Standard OfEN IEC 62645:2020, IEC 62645:2019
CorrectsBS IEC 62645:2019
DescriptorsComputerized control, Software engineering techniques, Control equipment, Nuclear reactors, Nuclear safety, Nuclear technology, Instruments, Control technology, Computer software, Performance, Equipment safety, Nuclear-electric power stations, Nuclear power, Computer applications, Control systems
ICS27.120.20 Nuclear power plants. Safety
CommitteeNCE/8
ISBN978 0 539 15055 1
PublisherBSI
Pages60

About BSI

BSI Group, also known as the British Standards Institution is the national standards body of the United Kingdom. BSI produces technical standards on a wide range of products and services and also supplies certification and standards-related services to businesses.
GROUPS
X