security profile for openadr - Open Smart Grid - OpenSG - UCA ...

More documents

Recommendations

Info

322 323 324 325 326 327 328 329 330 331 332 333 334 335 336 337 338 339 340 341 342 343 344 345 346 347 348 349 350 351 352 353 354 355 356 357 • Use Case 1 deals with the interactions initiated by a DR Resource to provide the DR Controlling Entity with information on the capabilities and constraints of a DR Resource to participate in DR Events. These include: SECURITY PROFILE FOR OPENADR o Notice of capabilities and constraints and subsequent changes these capabilities and constraints. o Notice of scheduling constraints based on temporary changes to availability • Use Cases 2-5 deal with the interactions used by a DR Controlling Entity to manage the DR Resources during the execution of a DR Event. The DR Signals used by a DR Controlling Entity can influence the behavior of a DR Resource through the use of signal types for Objectives, Price, and Direct Load Control. For the purposes of failure analysis the use cases are broken out based on the interaction pattern 6 : o Point to Point Push – Point to Point Push is an interaction initiated by the producer or creator of the message. This pattern assumes that the communications is point to point and between entities that are aware of each others identity. o Point to Point Pull – Point to Point Pull is an interaction initiated by the message consumer. It requires that a callback can be associated with a request. This pattern assumes that the communications is point to point and between entities that are aware of each others identity. o Broadcast – A Broadcast is a message sent to a set of parties where the sender does not know who the recipients may be. Access to the broadcast message could be through a message board, a message broker, or other means. A Broadcast may also be considered an anonymous push. o Anonymous Pull – The Anonymous Pull pattern is similar to the point to point pull except that the identity of the consumer is unknown to the sender. It is also assumed that no reply from the consumer is required or expected. • Use Cases 6-8 deal with Feedback provided by a DR Resource to a DR Controlling Entity during the execution of a DR Event. Feedback interactions use Point-to-point Pull and Point-to-point Push as defined above. Use Cases 7-8 are derivatives of Use Case 6. These use cases do not include security controls, such as the use of authentication or encryption. Security controls and their mapping to the roles performing these use cases are found in Section 4. 6 The terminology used for interaction patterns applies only to the pattern being described, and do not imply any specific routing or communication methodology. Version – 0.02 UCA International Users Group December 15, 2011 22
358 359 360 361 362 363 364 365 366 367 368 369 370 371 372 373 374 375 376 377 378 379 380 381 382 The use cases include the depiction of “acknowledgements” in the interaction (sequence) diagrams for the purpose of completeness in the representation. Acknowledgements are considered a separate security control and are not included in the use case summary or addressed individually in context of a use case step. A “reply” to a message contains other information other than a simple acknowledgement that a message has been received (e.g. notice of non-performance, failure information, etc.). Reply messages are included are included in the use case analysis as security controls may vary by context. Each use case contains the following elements: • Use Case Description: This is a summary of the use case, describing the overall flow and steps. • Preconditions: These are conditions that must be true for the use case to be successfully executed. • Minimal Guarantees: These are properties that must remain true any time the use case is initiated, regardless of whether it terminates successfully. • Success Guarantees: These are properties that will be true only if the use case terminates successfully. This requires that all preconditions and all condition checks (e.g., for validity of a request) be satisfied during execution of the use case. • Trigger: This is the stimulus that initiates execution of the use case. • Main Success Scenario: This defines the series of steps undertaken by each role during successful execution of the use case. The scenario is depicted graphically in an activity diagram (the notation used in these diagrams is explained in Appendix B) and each step is summarized in text. SECURITY PROFILE FOR OPENADR Version – 0.02 UCA International Users Group December 15, 2011 23
Page 1 and 2: SECURITY PROFILE FOR OPENADR SECURI
Page 3 and 4: Executive Summary This document pre
Page 5 and 6: 4.2.9 Controls Mapped to Roles ....
Page 7 and 8: Table of Tables TABLE 1 - CONTROLS:
Page 9 and 10: Authors Bruce Bartell Darren Highfi
Page 11 and 12: 22 23 24 25 26 27 28 29 30 31 32 33
Page 13 and 14: 79 80 81 82 83 84 85 86 87 88 89 90
Page 15 and 16: 142 143 144 145 146 147 148 149 150
Page 17 and 18: 200 201 202 203 204 205 206 207 208
Page 19 and 20: 243 244 245 246 247 248 249 250 251
Page 21: 304 305 306 307 308 309 310 311 312
Page 25 and 26: 412 413 414 415 416 417 418 419 420
Page 27 and 28: 455 456 457 458 459 460 461 462 463
Page 29 and 30: 502 503 504 505 506 507 508 509 510
Page 31 and 32: 541 542 543 544 545 546 547 548 549
Page 33 and 34: 581 582 583 584 585 586 587 588 589
Page 35 and 36: 622 623 624 625 626 627 628 629 630
Page 37 and 38: 665 666 667 668 669 670 671 672 673
Page 39 and 40: 700 701 702 703 704 705 706 707 sd
Page 41 and 42: 731 732 733 734 735 736 737 738 739
Page 43 and 44: 803 804 805 806 807 808 809 810 811
Page 45 and 46: 842 843 844 845 846 847 848 849 850
Page 47 and 48: F8 sends an incorrect type of mess
Page 49 and 50: 859 SF1 DR Resource is physically u
Page 51 and 52: 881 882 883 884 885 886 887 888 889
Page 53 and 54: 955 956 957 958 959 960 961 962 •
Page 55 and 56: 966 967 968 Control Control ID ID I
Page 57 and 58: 973 974 975 4.2.5 Identification &
Page 59 and 60: 981 Control Control ID ID ID Short
Page 61 and 62: 984 985 Control Control ID ID ID Sh
Page 63 and 64: Controlling Control Control ID ID S
Page 65 and 66: 987 988 989 990 991 992 993 994 995
Page 67 and 68: 1022 1023 1024 1025 1026 1027 1028
Page 69 and 70: 1048 1049 1050 1051 1052 NIST IR 76
Page 71 and 72: NIST NIST IR IR IR 7628 7628 7628 R
Page 73 and 74:
NIST NIST IR IR IR 7628 7628 7628 R
Page 75 and 76:
NIST NIST IR IR IR 7628 7628 7628 R
Page 77 and 78:
1065 1066 SECURITY PROFILE FOR OPEN
Page 79 and 80:
1074 1075 1076 1077 1078 1079 1080
Page 81 and 82:
1104 1105 1106 1107 1108 1109 1110
Page 83 and 84:
1131 1132 1133 1134 1135 1136 1137
Page 85 and 86:
1197 1198 1199 1200 1201 1202 1203
Page 87 and 88:
1265 1266 1267 1268 1269 1270 1271
Page 89 and 90:
1331 1332 1333 1334 1335 1336 1337
Page 91 and 92:
1364 1365 1366 1367 1368 1369 1370
Page 93 and 94:
1420 1421 1422 1423 1424 1425 1426
Page 95 and 96:
1470 1471 1472 1473 1474 1475 1476
Page 97:
1529 1530 1531 1532 1533 1534 suite
show all

security profile for openadr - Open Smart Grid - OpenSG - UCA ...

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?