Section 8 Standard compliance statementGUID-716DC304-B1C7-417E-BA01-DF9C5AD6660A v28.1 Applicable standards GUID-EE0D9238-4DCF-4D2D-96FE-D2879C4CC6C3 v2Cyber security issues have been the subject of standardization initiatives by ISA,IEEE, or IEC for some time and ABB plays an active role in all theseorganizations, helping to define and implement cyber security standards for powerand industrial control systems.Some of the cyber security standards which are most important for substationautomation are still under active development such as IEC62351 and IEC62443(former ISA S99). ABB is participating in the development by delegating subjectmatter experts to the committee working on the respective standard. Since thesestandards are still under development ABB strongly recommends to use existingcommon security measures as available on the market, for example, VPN forsecure Ethernet Communication.An overview of applicable security standards and their status is shown in Table 22:Table 22:Overview of cyber security standardsStandard Main focus StatusNERC CIP v5 NERC CIP cyber securityregulation for North Americanpower utilitiesReleased, ongoing *IEC 62351 Data and communicationssecurityPartly released, ongoingIEEE 1686 IEEE standard for substationintelligent electronic devices(IEDs) cyber securitycapabilitiesFinalized* Ongoing: major changes will affect the final solution.ABB has identified cyber security as a key requirement and has developed a largenumber of product features to support international cyber security standards suchas NERC-CIP, IEEE1686, as well as local activities like the German BDEW whitepaper.The two standards IEC 62351 and IEC 62443 are still under revision. Due tointeroperability reasons ABB recommend not to implement these standards yet.Nevertheless, ABB considers these standards already today as a guideline toimplement product features or system architectures.1MRK 511 399-UEN B Section 8Standard compliance statement670 series 2.2 IEC 95Cyber security deployment guideline