Advanced Approach to Information Security Management System Model for Industrial Control System
Table 6
Comparison for common security controls of NIST SP 800-53 and safety requirements of IEC 61511.
Number
Main domain name
Code of security control for common security controls in South Korea Energy Industry
Safety requirements of IEC 61511
1
Access control
AC-2
Enabling and disabling the read-write access shall be carried out only by a configuration or programming process using the maintenance/engineering interface with appropriate documentation and security measures.
2
AC-5
3
AC-6
4
Media protection
MP-2
—
5
MP-3.a
6
MP-3.b
7
MP-4.a
8
MP-4.b
9
MP-5.a
10
MP-5.c
11
Physical and environmental protection
PE-2
For subsystems that on loss of power do not fail to the safe state, all of the following requirements shall be met and action taken according to 11.3: (i) loss of circuit integrity is detected (for example, end-of-line monitoring); (ii) power supply integrity is ensured using supplemental power supply (for example, battery back-up and uninterruptible power supplies); (iii) loss of power to the subsystem is detected.
12
PE-6.a
13
PE-6.b
14
PE-7
15
PE-10
16
PE-12
17
PE-13
18
PE-14
19
PE-15
20
PE-18
21
System and communications protection
SC-5
The communication interface shall be sufficiently robust to withstand electromagnetic interference including power surges without causing a dangerous failure of the SIF.