Text size
  • Small
  • Medium
  • Large
  • Standard
  • Blue text on blue
  • High contrast (Yellow text on black)
  • Blue text on beige

    Assessing the Security of IEC 62351

    3rd International Symposium for ICS & SCADA Cyber Security Research 2015 (ICS-CSR 2015)

    17 - 18 September 2015, University of Applied Sciences Ingolstadt, Germany


    Roman Schlegel, Sebastian Obermeier & Johannes Schneider



    IEC 62351 is an industry standard aimed at improving security in automation systems in the power system domain. It contains provisions to ensure the integrity, authenticity and confidentiality for different protocols used in power systems. In this paper we look at the different parts of IEC 62351 and assess to what extent the standard manages to improve security in automation systems. We also point out some incongruities in the algorithms or parameters chosen in parts of the standard. Overall, we conclude that the standard can significantly improve security in power systems if applied comprehensively, but we also note that the need to preserve (partial) backwards-compatibility has led to some design choices that provide less security than could have been achieved with a more ambitious approach.


    PDF file PDF Version of this Paper 90(kb)