Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 3 Next »

Security should be addressed across all sections. This section will address general security requirements, e.g. SDLC requirements, algorithm requirements etc.

IEC 62443

Threat Model

The GEISA Execution Environment inputs:

  • HAN Interface

    • Gateways

    • Smart Inverters

  • LAN Interface

  • Environmental Sensors

    • Temperature

    • Humidity

    • Accelerometer

    • Location (GPS)

  • Meter Register

  • Metrology Sensor

  • Provisioning Interfaces

    • Bluetooth

    • Thread

GEISA Execution Environment outputs:

  • HAN Interface

  • LAN Interface

  • Local Storage

  • Disconnect Switch(es)

Potential Threats and Causes

  • Malicious Firmware

    • Supply Chain Attack

    • Unpatched Components

    • Compromised Vendor

    • Compromised Employee Workstation

    • Compromised Management System

  • Vulnerable Network Interface

    • Poor Programming Practices

    • Inadequate Testing

    • Unpatched Components

    • Supply Chain Attack

  • Broken Firmware

    • Poor Programming Practices

    • Incorrect Logic

    • Inadequate Testing

    • Unpatched Components

  • Side Channel Attacks

  • Malicious Inputs

    • Forged data from Smart Inverters

    • Forged data from EVSE

  • No labels