Summary

This Technical Brochure describes the security requirements for remote services to access intelligent electronic devices on an electric power utility’s operational network. A model-based system engineering methodology based on Zachman’s lifecycle framework was used to assess the risks and potential means to mitigate these risks. The analysis stressed the need to combine role-based and attribute-based access control to protect the integrity and confidentiality of the sensitive data. If sensitive data is compromised, a trusted platform is needed to securely collect and safeguard the evidence needed for forensic analysis.

Additional informations

Publication type Electra
Reference ELT_304_3
Publication year 2019
Publisher CIGRE
Study committees Information Systems, Telecommunications and Cybersecurity (D2)
Working groups WG D2.40
File size 476 KB
Pages number 5
Price for non member 20 €
Price for member Free

Authors

WENZEL, Cuni, VIDAURRAZAGA

Keywords

Electra 304, information systems, telecommunication

Remote service security requirement objectives
Remote service security requirement objectives