This document establishes requirements and provides guidance for the development and management of effective computer security programmes for I&C programmable digital systems. Inherent to these requirements and guidance is the criterion that the power plant I&C programmable digital system security programme complies with the applicable country's requirements.

This document defines adequate measures for the prevention of, detection of and reaction to malicious acts by digital means (cyberattacks) on I&C programmable digital systems. This includes any unsafe situation, equipment damage or plant performance degradation that could result from such an act, such as:

- malicious modifications affecting system integrity;
- malicious interference with information, data or resources that could compromise the delivery of or performance of the required I&C programmable digital functions;
- malicious interference with information, data or resources that could compromise operator displays or lead to loss of management of I&C programmable digital systems;
- malicious changes to hardware, firmware or software at the programmable logic controller (PLC) level.

Human errors leading to violation of the security policy and/or easing the aforementioned malicious acts are also in the scope of this document.

This document describes a graded approach scheme for assets subject to digital compromise, based on their relevance to the overall plant safety, availability, and equipment protection.

Cross References:
ISO/IEC 27002:2013
ISO/IEC 27005:2018
IEC 62988:2018
IEC 60880:2006
ISO/IEC 27001:2013
IEC 62859
IEC 61226
IEC 61513
IAEA TLD-006
IEC 62566
IEC 62138
IEC 62443 (all parts)
IAEA NSS 17
NIST SP 800-53, Rev. 4
NIST SP 800-82, Rev. 2
IEC 60709
IAEA NSS 23-G
NEI 08-09, R6
ISO/IEC 27000:2018


All current amendments available at time of purchase are included with the purchase of this document.