6.Current Status of ICCP-TASE.2, Secure ICCP, And Other IEC Standards

Systems Integration Specialists Company, Inc.

The Standards Based Integration Company

Copyright 2012 SISCO, Inc. 1

IEC Standards Status ICCP-TASE.2, IEC 61850, CIM, and Other Standards Impacting EMS

Ralph Mackiewicz SISCO, Inc. 6605 19 Mile Road Sterling Heights, MI 48314-1408 USA Tel: +1-586-254-0020 x103 Fax: +1-586-254-0053 Email: [email protected]


Agenda

ICCP-TASE.2 Status

IEC 60870-6 Standard Update

ENTSO-E network

Product migration

IEC 61850

WAMPAC profile IEC TR 61850-90-5

Edition 2

CIM

CIM 15

ENTSO-E Network

IEC 61850 Harmonization

Other CIM Activities


IEC TC 57 Technical Committees WG 3 Telecontrol Protocols

IEC 60870-5-7 Security for IEC 60870-5 protocols.

WG 10 - Power system IED communication and associated data models IEC 61850 Communications for power system automation

WG 13 - Energy management system application program interface (EMS - API) IEC 61970 Common Information Model (CIM) and Generic Interface Definition (GID)

WG 14 - System interfaces for distribution management (SIDM) IEC 61968 CIM for distribution and model driven messaging

WG 15 - Data and communication security IEC 62351 Communications Security

WG 16 - Deregulated energy market communications IEC 62325 CIM for energy markets

WG 17 - Communications Systems for Distributed Energy Resources (DER) IEC 61850-7-420 IEC 61850 for DER applications IEC 61850-8-2 Web service mapping for IEC 61850

WG 18 - Hydroelectric power plants - Communication for monitoring and control IEC 61850-7-410 IEC 61850 for Hydropower applications

WG 19 - Interoperability within TC 57 in the long term IEC 62445 Use of IEC 61850 between control centers and substations IEC 61850-CIM harmonization, ICCP-TASE.2 update, naming and design rules for CIM, quality codes.

WG 9 and WG 20 Power line carrier systems for DMS (9) and planning for same (20) IEC 60495, 60663, 62488 Power line carrier systems

WG 21 - Interoperability within TC 57 in the long term IEC 62746 Interfaces and protocol for systems connected to the Smart Grid

JWG 16 DLMS/COSEM metering protocols (TC13) JWG 25 Windpower systems (TC 88)


TC

57

Arc

hitectu

re



Copyright 2012 SISCO, Inc.

ICCP-TASE.2 Update

IEC 60870-6-XXX TASE.2


IC

CP

-TA

SE

.2


ICCP-TASE.2 Update (Edition 3)

IEC 60870-6 TASE.2 Update underway within WG19

Elimination of Unused Conformance Blocks by Making Them Informative instead of Normative

Block 6 Programs

Block 7 Events

Block 8 Accounts

Block 9 Time Series

Elimination of unused profiles (i.e. ISO/OSI transport/network)

Integrating changes made since V2000-08 (Ed.2)

State Supplemental type

Harmonization with CIM


CIM Harmonization

Objective is to enable CIM models from EMS to specify everything needed to configure ICCP links including secure ICCP parameters

UML extensions for ICCP bilateral table information

Reference to existing CIM standards for full, incremental and partial file formats for data exchange

Herb Falk of SISCO is the editor

Initial UML proposed. Work progressing


New ICCP-TASE.2 Systems

ICCP-TASE.2 remains widely used for EMS real-time data exchange for

high-voltage system security and power plant dispatch

North America

South America

Peru, Chile, Ecuador, Brazil, Colombia, etc.

Pacifica

Australia and New Zealand

Asia

India, Russia, Vietnam, Thailand, etc.

New: Europe

ENTSO-E


Secure ICCP Status

IEC 62351-3 Use of TLS for encryption

IEC 62351-4 Application Authentication for MMS based profiles

IEC 61850

IEC 60870-6 TASE.2 (ICCP)

Recent attacks have reduced the effectiveness of some 1024-bit

ciphers for encryption and some hash algorithms (SHA1) used for

signing/authentication.

An update to IEC 62351 will be started soon to deprecate these and

officially increase asymmetrical key length options.


Secure ICCP Products

1024-bit asymmetrical key length implementations are widely available today that can be used without the deprecated ciphers and hashes.

Some products have already been updated for 2048-bit asymmetrical key length.

Many products utilize multiple certificates per link to enable overlapping certificate expirations to support certificate updating with minimal impact on data transfers.

Some products incorporate secure fallback mode:

If a secure link cannot be established with a remote then the system

will fallback to non-secure associations


Secure ICCP Status

Secure ICCP products have been available since 1997.

SCADA/EMS vendors have been working with it since 2003.

Many systems have Secure ICCP licenses.

Very few systems use Secure ICCP.

The business processes to establish and maintain data flow using Secure ICCP are not overwhelming.

Of course the government will make this all better when they write laws and regulations requiring it.

Fear, uncertainty, and doubt should be added to the 7 deadly sins.


Other ICCP-TASE.2 Product Information

SISCO is working with our OEM partners to migrate to a new code base for the underlying communications stack used for ICCP-TASE.2 communications.

Driven by increased expectations from users for maintenance activities and increased expectations for performance, scalability and vulnerability.

Elimination of Marben components and replaced with SISCO designed stack that is much much simpler and without some of the limitations.

Base stack technology is used in hundreds of thousands of IEC 61850 devices and has been used in ICCP solutions since 2006.

Will require new licenses and installation.




IEC TR 61850-90-5 for Wide Area Measurement, Protection, Automation and Control

IEC 61850 Update


IE

C 6

18

50


IEC 61850 Edition 1: Completely New Approach

IEC 61850 Edition 1 was a new and innovative approach to substation automation:

Standardized Device and Object Modeling Logical Devices, Logical Nodes, Common Data Classes, etc.

Extensions unique to specific applications (Hydro, Distributed Energy Resources (DER), Wind power, etc.)

Standardized Service/Behavior Modeling

Standardized XML for Systems and Device Configuration

Standardized Communications Protocols for Specific Use Cases: Station Level Monitoring and Control (substation SCADA) (TCP/IP)

Protection and Control GOOSE over Ethernet

Sampled Values Process Bus over Ethernet

Standardized Conformance Test Cases


IEC 61850 Edition 2

Much was learned using and testing Edition 1

UCA International Users Group (UCAIug http:///www.ucaiug.org) operated a technical issue (Tissue) resolution process for IEC 61850

as part of its Liaison D status with IEC.

Anyone could enter a Tissue

IEC committee experts would propose solution

If consensus on solutions that affect interoperability, UCAIug made them mandatory for Edition 1 testing

Otherwise, submitted to IEC for Edition 2


Edition 2 Changes

New Common Data Classes

New Abstract Modeling Approach for control blocks and Controls

Mapping of abstract models in IEC 61850-8-1 updated to result in nearly identical protocol on the wire

Backward compatible

New and updated logical nodes

More detailed state diagrams and service descriptions for reporting and control operations.

All significant reporting changes were considered mandatory for Edition 1 and have been implemented already.

Substation Configuration Language (IEC 61850-6)

Numerous changes to address changes to CDCs and LNs


New Name for IEC 61850

Edition 2 of IEC 61850 is renamed:

Communication Networks And Systems For Power Utility Automation


IEC 61850 is Growing

IEC 61850-1 Introduction and Overview

IEC 61850-2 Glossary

IEC 61850-3 General Requirements (e.g. Environmental)

IEC 61850-4 System and Project Management

IEC 61850-5 Comm. Requirements for functions and device models

IEC 61850-6 Configuration Description Language

IEC 61850-7-1 Basic Comm. Structure Principles and models

IEC 61850-7-2 Basic Comm. Structure Abstract Comm. Service Interface (ACSI)

IEC 61850-7-3 Basic Comm. Structure Common data classes (CDC)

IEC 61850-7-4 Basic Comm. Structure Logical node (LN) and data object classes

IEC 61850-7-410 Hydro Power

IEC 61850-7-420 Distributed Energy Resources

IEC 61850-7-4XX Steam and gas turbines

IEC 61850-7-501 Hydroelectric power plants Modeling concepts and guidelines (TR)

IEC 61850-8-1 Specific Comm. Service Mapping (SCSM) Mapping to MMS/Ethernet

IEC 61850-8-2 SCSM Mappings to web services

IEC 61850-9-1 Samples values over serial unidirectional multi-drop point to point link (Ethernet)

IEC 61850-9-2 Sampled values over Ethernet (Multicast) (see also UCAIug 9-2LE specs)

IEC 61850-10 Conformance Testing

IEC 61850-10-2 Interoperability test for Hydro Equipment based on IEC 61850

IEC 61850-80-1 Gateway mapping to IEC 60870-5-101/104

IEC 61400-25 IEC 61850 for Wind Turbines (TC88)

IEC 62271-3 High-voltage switchgear digital interfaces based on IEC 61850

IEC 62445 Use of IEC 61850 between control centers and substations

IEC 61869-9 Digital interface for instrument transformers (TC38)

Ed.2 Published

Ed.2 in Progress


IEC 61850-90-X Fast Track to Issuing Standards

90-X documents are technical reports that will be incorporated into the base

standard in the future

IEC 61850-90-1 Using IEC 61850 between substations

IEC 61850-90-2 Using IEC 61850 control center to substation (IEC 62445)

IEC 61850-90-3 Using IEC 61850 for Condition Monitoring

IEC 61850-90-4 Network Engineering guidelines for substations

IEC 61850-90-410 Communication Network structure in hydropower plants

IEC 61850-90-5 Use of IEC 61850 to transmit synchrophasor information

according to IEEE C37.118 (GOOSE and SV over secure IP Multicast)

IEC 61850-90-7 Object models for photovoltaic, storage, and other DER

inverters

IEC 61850-90-11 Modeling of Logic


IEC 61850-90-5 GOOSE Protection Event oriented messaging Sampled Values (SV) Stream oriented messaging

Over IP Multicast (UDP/IP)

IGMPV3 for route discovery

Differentiated Services Code Point (DSCP) for priority and QOS handling.

Integrated security with Group Domain of Interpreation (GDOI) enables

receivers to obtain symmetric decryption keys from a key server separate from the data stream.

IEC 61850-90-5 packets are encrypted.

Symmetric keys change periodically

Next key to be used is included in the stream


Comparison of C37.118.2, 61850, and 61850-90-5


Use of DataSets allows:

IEC 61850 SCSM GOOSE SV (9-2)

IEC 61850-90-5 Session Protocol

Transport Layer UDP

Co

nfi

gura

tio

n v

ia

IEC

61

85

0-6

Standardized configuration through the Substation Configuration Language

Dynamic subscription for Data through full 61850 client/server profiles

Allows for synchrophasor and non-synchrophasor

information to be carried in a single APDU.

The 61850 object models allow this.


Why UDP Multicast?

Allows large number of subscribers to receive data from a single transmission from IED.

Minimizes the need for PDCs in a deployment architecture.

A couple of issues:

Engineering for UDP

How to prevent multicast from going everywhere.

Engineering for UDP

Subscriber Software Architecture

Properly maintained network with QOS (DSCP)




CIM Update

IEC 61970

IEC 61968

IEC 62325

and more


TC

57

Arc

hitectu

re


Scope of CIM


CIM Status IEC 61970

IEC 61970 (EMS models)

CIM15 being published

-40X series of interfaces being retired and replaced with 502-8

mapping of SCADA CIS to web services.

-555 Efficient CIM exchange format CIM/E in progress

-453 Graphic exchange format


Whats in CIM15? Incorporates tested profiles from ENTSO-E and UCAIug testing in 2011.

Phase unbalanced models for WG14 and beyond

New datatype primitives (#802 closed)

Dynamics model from EPRI work (Informative in CIM15)

Name NameType model

New transformer model, unbalanced, tanks

Asset-PSR linkages

Cuts and Jumpers via WG14

AuxiliaryEquipment

Details can be found on the CIMug website in the London Meeting CIM Model Manager

Report (Day 4):

http://cimug.ucaiug.org/Meetings/London2012/default.aspx


CIM 16 Plan

Grounding models (Petersen coil and related models)

HVDC

Dynamics from EPRI project and ENTSO-E IOP

System Integrity Protection Schemes - SIPS (aka Remedial Action Schemes - RAS)

Operational limits enhancements

Most restrictive equipment

Environmental dependencies

Load model (combined #607, #1088)

Wind Generation

Additional ENTSO-E Issues:

ExternalNetworkInjection (new class)

Subtype of RegulatingCondEquip

Previously called ExternalNetwork for IOP

Short Circuit calculations (IEC 60909)


Other CIM Projects

IEC 62746 System interfaces and communication protocol profiles relevant for systems connected to the Smart Grid

Interface to the home supporting real-time pricing and market

operations for end users

IEC 62361 Common Information Model Profiles to be used by any group that needs to define a Profile Standard based on CIM.

IEC 62056 Mapping of CIM to DLMS/COSEM (metering protocol).

Naming and Namespaces.


CIM Users Group Update (cimug.ucaiug.org)

Progress on supporting formalized testing for UCAIug becoming a

formally recognized ITCA

Formulating strategy for addressing issues related to compatibility issues.

Fall Meeting coming up in conjunction with UCAIug summitt meeting with OpenSGug.

New Orleans: 22-25 October (CIM), 25-27 October OpenSGug

CIM University 22 October

http://www.ucaiug.org/Meetings/NO2012/default.aspx




Thank You

Ralph Mackiewicz

SISCO, Inc.

6605 19 Mile Road

Sterling Heights, MI 48314-1408 USA

Tel: +1-586-254-0020 x103

Fax: +1-586-254-0053

Email: [email protected]

Documents

6.Current Status of ICCP-TASE.2, Secure ICCP, And Other IEC Standards