iTeh Standards logo
EURUSD
Your shopping cart is empty.
CLC

EN 62351-7:2017

(Main)

Power systems management and associated information exchange - Data and communications security - Part 7: Network and System Management (NSM) data object models

Power systems management and associated information exchange - Data and communications security - Part 7: Network and System Management (NSM) data object models

IEC 62351-7:2017 defines network and system management (NSM) data object models that are specific to power system operations. These NSM data objects will be used to monitor the health of networks and systems, to detect possible security intrusions, and to manage the performance and reliability of the information infrastructure. The goal is to define a set of abstract objects that will allow the remote monitoring of the health and condition of IEDs (Intelligent Electronic Devices), RTUs (Remote Terminal Units), DERs (Distributed Energy Resources) systems and other systems that are important to power system operations. This new edition constitutes a technical revision and includes the following significant technical changes with respect to IEC TS 62351-7 (2010): NSM object data model reviewed and enriched; UML model adopted for NSM objects description; SNMP protocol MIBs translation included as Code Components. The Code Components included in this IEC standard are also available as electronic machine readable file at: http://www.iec.ch/tc57/supportdocuments/IEC_62351-7.MIBS.light.zip.

Datenmodelle, Schnittstellen und Informationsaustausch für Planung und Betrieb von Energieversorgungsunternehmen – Daten- und Kommunikationssicherheit - Teil 7: Datenobjektmodelle für Netzwerk- und Systemmanagement (NSM)

Gestion des systèmes d’alimentation et échange d’informations associées - Sécurité des données et des communications - Partie 7: Modèles d’objets de données pour la gestion des réseaux et systèmes (NSM)

IEC 62351-7:2017 définit des modèles d’objets de données de gestion de réseaux et de systèmes (NSM – network and system management) spécifiques aux opérations des systèmes de puissance. Ces objets de données NSM servent à surveiller la bonne santé des réseaux et des systèmes afin de détecter les intrusions de sécurité potentielles, et de gérer les performances et la fiabilité de l’infrastructure d’information. L’objectif est de définir un ensemble d’objets abstraits qui permet de surveiller à distance la bonne santé des appareils électroniques intelligents (IED – Intelligent Electronic Devices), des terminaux à distance (RTU – Remote Terminal Units), des systèmes de ressources énergétiques décentralisées (DER – Distributed Energy Resources) et des autres systèmes importants pour les opérations des opérations des systèmes de puissance. Cette édition de l’IEC 62351-7 annule et remplace l’IEC TS 62351-7 parue en 2010. Cette nouvelle édition constitue une révision technique et inclut les modifications techniques majeures suivantes par rapport à l'IEC TS 62351-7:2010: a) revue et enrichissement du modèle de données d’objets NSM; b) adoption du modèle UML pour la description des objets NSM; c) traduction des MIB de protocole SNMP inclus comme composants codés. Les composants codés inclus dans la présente norme IEC sont également disponibles sous forme d’un fichier électronique lisible sur machine: http://www.iec.ch/tc57/supportdocuments/IEC_62351-7.MIBS.light.zip.

Upravljanje elektroenergetskega sistema in pripadajoča izmenjava informacij - Varnost podatkov in komunikacij - 7. del: Podatkovni modeli pri upravljanju omrežij in sistemov (NSM)

Ta del standarda IEC 62351 opredeljuje podatkovne modele pri upravljanju omrežij in sistemov (NSM), ki se nanašajo na delovanje elektroenergetskega sistema. Ti podatkovni modeli pri upravljanju omrežij in sistemov bodo uporabljeni za nadziranje ustreznega delovanja omrežij in sistemov, odkrivanje morebitnih varnostnih vdorov ter za upravljanje zmogljivosti in zanesljivosti informacijske infrastrukture. Cilj je določiti niz abstraktnih predmetov, ki bodo omogočili oddaljeno nadzorovanje ustreznosti in stanja inteligentnih elektronskih naprav (IED), daljinskih terminalskih enot (RTU), sistemov distribuiranih virov energije (DER) in drugih sistemov, ki so pomembni za delovanje elektroenergetskega sistema. Delovanje elektroenergetskega sistema je vse bolj odvisno od informacijskih infrastruktur, vključno s komunikacijskimi omrežji, inteligentnimi elektronskimi napravami in samoopredeljenimi komunikacijskimi protokoli. Zaradi tega je upravljanje informacijske infrastrukture postalo ključno za zagotavljanje potrebnih visokih ravni varnosti in zanesljivosti delovanja elektroenergetskega sistema.
Telekomunikacijska infrastruktura, ki je v uporabi za prenos protokolov daljinskega vodenja in avtomatizacijo, je že pod nadzorom za spremljanje ustreznosti in stanja s pomočjo konceptov, že razvitih v standardih za upravljanje omrežij, ki obravnavajo protokol za upravljanje naprav v omrežju IETF (SNMP). Toda za posebne naprave v elektroenergetskem sistemu (npr. zaščita na daljavo, daljinsko vodenje, avtomatizacija razdelilne naprave, sinhroni faznik, inverterji in zaščite) so namesto tega potrebne posebne rešitve za nadzor ustreznosti njihovega delovanja.
Ti podatkovni modeli pri upravljanju omrežij in sistemov zagotavljajo nadzorne podatke za protokole IEC, ki se uporabljajo za elektroenergetski sistem (IEC 61850, IEC 60870-5-104) ter za okoljski in varnostni status določenih naprav. Kot izpeljanka standarda IEC 60870-5-104 je IEEE 1815 DNP3 prav tako vključen na seznam nadzorovanih protokolov. Podatkovni modeli pri upravljanju omrežij in sistemov upoštevajo dogovor glede poimenovanj za IEC 61850, ki dodatno obravnava vprašanja v zvezi s temi modeli. Zaradi splošnosti teh podatkovnih objektov in vrst podatkov, iz katerih so sestavljeni, so opredeljeni kot abstraktni modeli podatkovnih objektov. Poleg abstraktnega modela je za integracijo nadzora nad napravami elektroenergetskega sistema v okolju upravljanja omrežij in sistemov v tem delu IEC 62351 potrebna preslikava objektov na protokol za upravljanje naprav v omrežju, ki je del upravljanja informacijske baze (MIB).
Objekti, ki jih že zajema obstoječe upravljanje informacijske baze, tukaj niso opredeljeni, vendar se zanje predvideva, da so skladni z obstoječimi standardi za upravljanje informacijskih baz.

General Information

Status
Published
Publication Date
14-Dec-2017
Withdrawal Date
14-Dec-2020
ICS
33.200 - Telecontrol. Telemetering
Technical Committee
CLC/TC 57 - Power systems management and associated information exchange
Drafting Committee
IEC/TC 57 - IEC_TC_57
Current Stage
6060 - Document made available - Publishing
Start Date
15-Dec-2017
Completion Date
15-Dec-2017
Mandate
M/490 - Standardisation mandate to the European Standardisation Organisations (ESOs) to support European Smart Grid deployment
Ref Project
SIST EN 62351-7:2018 - Power systems management and associated information exchange - Data and communications security - Part 7: Network and System management (NSM) data object models

Relations

Revised
FprEN IEC 62351-7:2025 - Power systems management and associated information exchange - Data and communications security - Part 7: Network and System Management (NSM) data object models
Effective Date
07-Jun-2022
EN 62351-7:2018 - BARVE! POZOR: del standarda IEC so tudi zip datoteke: "IEC-62351-7.MIBS.full" in "IEC-62351-7.MIBS.light"EN 62351-7:2018 - BARVE! POZOR: del standarda IEC so tudi zip datoteke: "IEC-62351-7.MIBS.full" in "IEC-62351-7.MIBS.light"
PreviousNext
Standard
EN 62351-7:2018 - BARVE! POZOR: del standarda IEC so tudi zip datoteke: "IEC-62351-7.MIBS.full" in "IEC-62351-7.MIBS.light"
English language
237 pages
sale 10% off
Preview
sale 10% off
Preview
e-Library read for
1 day

Standards Content (Sample)


SLOVENSKI STANDARD
01-marec-2018
8SUDYOMDQMHHOHNWURHQHUJHWVNHJDVLVWHPDLQSULSDGDMRþDL]PHQMDYDLQIRUPDFLM
9DUQRVWSRGDWNRYLQNRPXQLNDFLMGHO3RGDWNRYQLPRGHOLSULXSUDYOMDQMX
RPUHåLMLQVLVWHPRY 160
Power systems management and associated information exchange - Data and
communications security - Part 7: Network and System management (NSM) data object
models
Ta slovenski standard je istoveten z: EN 62351-7:2017
ICS:
29.240.30 Krmilna oprema za Control equipment for electric
elektroenergetske sisteme power systems
35.240.50 Uporabniške rešitve IT v IT applications in industry
industriji
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

EUROPEAN STANDARD EN 62351-7
NORME EUROPÉENNE
EUROPÄISCHE NORM
December 2017
ICS 33.200
English Version
Power systems management and associated information
exchange - Data and communications security -
Part 7: Network and System Management (NSM) data object
models
(IEC 62351-7:2017)
Gestion des systèmes d'alimentation et échange Datenmodelle, Schnittstellen und Informationsaustausch für
d'informations associées - Sécurité des données et des Planung und Betrieb von Energieversorgungsunternehmen
communications - Partie 7: Modèles d'objets de données - Daten- und Kommunikationssicherheit -
pour la gestion des réseaux et systèmes (NSM) Teil 7: Netzwerk und System-Management (NSM) Daten-
(IEC 62351-7:2017) Objekt-Modelle
(IEC 62351-7:2017)
This European Standard was approved by CENELEC on 2017-08-22. CENELEC members are bound to comply with the CEN/CENELEC
Internal Regulations which stipulate the conditions for giving this European Standard the status of a national standard without any alteration.
Up-to-date lists and bibliographical references concerning such national standards may be obtained on application to the CEN-CENELEC
Management Centre or to any CENELEC member.
This European Standard exists in three official versions (English, French, German). A version in any other language made by translation
under the responsibility of a CENELEC member into its own language and notified to the CEN-CENELEC Management Centre has the
same status as the official versions.
CENELEC members are the national electrotechnical committees of Austria, Belgium, Bulgaria, Croatia, Cyprus, the Czech Republic,
Denmark, Estonia, Finland, Former Yugoslav Republic of Macedonia, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia,
Lithuania, Luxembourg, Malta, the Netherlands, Norway, Poland, Portugal, Romania, Serbia, Slovakia, Slovenia, Spain, Sweden,
Switzerland, Turkey and the United Kingdom.

European Committee for Electrotechnical Standardization
Comité Européen de Normalisation Electrotechnique
Europäisches Komitee für Elektrotechnische Normung
CEN-CENELEC Management Centre: Rue de la Science 23, B-1040 Brussels
© 2017 CENELEC All rights of exploitation in any form and by any means reserved worldwide for CENELEC Members.
Ref. No. EN 62351-7:2017 E
European foreword
The text of document 57/1857/FDIS, future edition 1 of IEC 62351-7, prepared by IEC/TC 57 "Power
systems management and associated information exchange" was submitted to the IEC-CENELEC
parallel vote and approved by CENELEC as EN 62351-7:2017.

The following dates are fixed:
(dop) 2018-06-15
• latest date by which the document has to be
implemented at national level by
publication of an identical national
standard or by endorsement
• latest date by which the national (dow) 2020-12-15
standards conflicting with the
document have to be withdrawn
Attention is drawn to the possibility that some of the elements of this document may be the subject of
patent rights. CENELEC shall not be held responsible for identifying any or all such patent rights.

This document has been prepared under a mandate given to CENELEC by the European Commission
and the European Free Trade Association.
Endorsement notice
The text of the International Standard IEC 62351-7:2017 was approved by CENELEC as a European
Standard without any modification.
In the official version, for Bibliography, the following notes have to be added for the standards indicated:

IEC 61850-7-2 NOTE Harmonized as EN 61850-7-2.
IEC 61850-7-4 NOTE Harmonized as EN 61850-7-4.
IEC 61850-8-1 NOTE Harmonized as EN 61850-8-1.
IEC 61850-9-2 NOTE Harmonized as EN 61850-9-2.
Annex ZA
(normative)
Normative references to international publications
with their corresponding European publications

The following documents are referred to in the text in such a way that some or all of their content
constitutes requirements of this document. For dated references, only the edition cited applies. For
undated references, the latest edition of the referenced document (including any amendments)
applies.
NOTE 1  Where an International Publication has been modified by common modifications, indicated by (mod), the relevant
EN/HD applies.
NOTE 2  Up-to-date information on the latest versions of the European Standards listed in this annex is available here:
www.cenelec.eu.
Publication Year Title EN/HD Year

IEC/TS 62351-1 -  Power systems management and - -
associated information exchange - Data
and communications security -
Part 1: Communication network and
system security - Introduction to security
issues
IEC/TS 62351-2 -  Power systems management and - -
associated information exchange - Data
and communications security -
Part 2: Glossary of terms
IEC 62351-3 -  Power systems management and EN 62351-3 -
associated information exchange - Data
and communications security -
Part 3: Communication network and
system security - Profiles including TCP/IP
1 2
IEC 62351-4 -  Power systems management and prEN 62351-4 -
associated information exchange -
Data and communications security -
Part 4: Profiles including MMS
IEC/TS 62351-5 -  Power systems management and - -
associated information exchange - Data
and communications security -
Part 5: Security for IEC 60870-5 and
derivatives
IEC/TS 62351-8 -  Power systems management and - -
associated information exchange - Data
and communications security -
Part 8: Role-based access control
IEC 62351-9 -  Power systems management and EN 62351-9 -
associated information exchange - Data
and communications security -
Part 9: Cyber security key management for
power system equipment
Under preparation. Stage at the time of publication: IEC CDV 62351-4:2017.
Under preparation. Stage at the time of publication: prEN 62351-4:2017.
Publication Year Title EN/HD Year

IEEE 754 2008 IEEE Standard for Binary Floating-Point - -
Arithmetic
IETF RFC 2578 1999 Structure of Management Information - -
Version 2 (SMIv2), April 1999,
http://tools.ietf.org/html/rfc2578
IETF RFC 3410 2002 Introduction and Applicability Statements - -
for Internet Standard Management
Framework, December 2002,
http://tools.ietf.org/rfc/rfc3410
IETF RFC 3414 2002 User-based Security Model (USM) for - -
version 3 of the Simple Network
Management Protocol (SNMPv3),
December 2002,
http://tools.ietf.org/rfc/rfc3414
IETF RFC 3826 2004 The Advanced Encryption Standard (AES) - -
Cipher Algorithm in the SNMP User-based
Security Model, June 2004, http://www.rfc-
editor.org/rfc/rfc3826
IETF RFC 4022 2005 Management Information Base for the - -
Transmission Control Protocol (TCP),
March 2005,
http://tools.ietf.org/html/rfc4022
IETF RFC 4113 2005 Management Information Base for the User - -
Datagram Protocol (UDP), June 2005,
http://tools.ietf.org/html/rfc4113
IETF RFC 4292 2006 IP Forwarding Table MIB, April 2006, - -
http://www.rfc-editor.org/rfc/rfc4292
IETF RFC 4293 2006 Management Information Base for the - -
Internet Protocol (IP), April 2006,
http://tools.ietf.org/rfc/rfc4293
IETF RFC 4898 2007 TCP Extended Statistics MIB, May 2007, - -
http://tools.ietf.org/rfc/rfc4898
IETF RFC 5132 2007 IP Multicast MIB, December 2007, - -
http://tools.ietf.org/rfc/rfc5132
IETF RFC 5905 2010 Network Time Protocol Version 4: Protocol - -
and Algorithms Specification, June 2010,
http://tools.ietf.org/rfc/rfc5905
IETF RFC 5590 2009 Transport Subsystem for the Simple - -
Network Management Protocol (SNMP),
June 2009, http://tools.ietf.org/rfc/rfc5590
IETF RFC 5591 2009 Transport Security Model for the Simple - -
Network Management Protocol (SNMP),
June 2009, http://tools.ietf.org/rfc/rfc5591
IETF RFC 5592 2009 Secure Shell Transport Model for the - -
Simple Network Management Protocol
(SNMP), June 2009, http://www.rfc-
editor.org/rfc/rfc5592
Publication Year Title EN/HD Year

IETF RFC 5953 2010 Transport Layer Security (TLS) Transport - -
Model for the Simple Network
Management Protocol (SNMP), August
2010, http://www.rfc-editor.org/rfc/rfc5953
IETF RFC 6347 2012 Datagram Transport Layer Security - -
Version 1.2, January 2012,
http://tools.ietf.org/rfc/rfc6347
IETF RFC 6353 2011 Transport Layer Security (TLS) Transport - -
Model for the Simple Network
Management Protocol (SNMP), July 2011,
http://tools.ietf.org/rfc/rfc6353
IETF RFC 7860 2016 HMAC-SHA-2, Authentication Protocols in - -
User-Based Security Model (USM) for
SNMPv3, April 2016,
http://tools.ietf.org/rfc/rfc7860

IEC 62351-7 ®
Edition 1.0 2017-07
INTERNATIONAL
STANDARD
colour
inside
Power systems management and associated information exchange – Data and

communications security –
Part 7: Network and System Management (NSM) data object models

INTERNATIONAL
ELECTROTECHNICAL
COMMISSION
ICS 33.200 ISBN 978-2-8322-4442-5

– 2 – IEC 62351-7:2017 © IEC 2017
CONTENTS
FOREWORD . 8
1 Scope . 10
2 Normative references . 10
3 Terms and definitions . 12
4 Abbreviated terms and acronyms . 13
5 Overview of Network and System Management (NSM) . 14
5.1 Objectives . 14
5.2 NSM concepts. 15
5.2.1 Simple Network Management Protocol (SNMP) . 15
5.2.2 ISO NSM categories . 15
5.2.3 NSM “data objects” for power system operations . 16
5.2.4 Other NSM protocols . 16
5.3 Communication network management . 16
5.3.1 Network configuration . 16
5.3.2 Network backup . 17
5.3.3 Communications failures and degradation . 17
5.4 Communication protocols . 18
5.5 End systems management . 18
5.6 Intrusion detection systems (IDS) . 19
5.6.1 IDS guidelines . 19
5.6.2 IDS: Passive observation techniques . 20
5.6.3 IDS: Active security monitoring architecture with NSM data objects . 20
5.7 End-to-end security . 21
5.7.1 End-to-end security concepts. 21
5.7.2 Role of NSM in end-to-end security . 22
5.8 NSM requirements: detection functions . 24
5.8.1 Detecting unauthorized access . 24
5.8.2 Detecting resource exhaustion as a denial of service (DoS) attack . 24
5.8.3 Detecting invalid buffer access DoS attacks . 25
5.8.4 Detecting tampered/malformed PDUs . 25
5.8.5 Detecting physical access disruption . 25
5.8.6 Detecting invalid network access . 25
5.8.7 Detecting coordinated attacks . 26
5.9 Abstract object and agent UML descriptions. 26
5.9.1 Purpose of UML . 26
5.9.2 Abstract types and base types . 27
5.9.3 Enumerated Types. 28
5.9.4 Abstract agents . 28
5.9.5 Unsolicited Event Notification . 31
5.9.6 UML Model extension . 31
5.10 Abstract Object UML translation to SNMP . 31
5.10.1 Simple Network Management Protocol (SNMP) . 31
5.10.2 Management information bases (MIBs) . 32
5.11 SNMP mapping of UML model Objects . 33
5.12 SNMP Security. 34
6 Abstract objects . 36

IEC 62351-7:2017 © IEC 2017 – 3 –
6.1 General . 36
6.2 Package Abstract Types . 37
6.2.1 General . 37
6.2.2 BooleanValue . 37
6.2.3 BooleanValueTs . 37
6.2.4 CounterTs. 37
6.2.5 CntRs . 38
6.2.6 Floating . 38
6.2.7 FloatingTs . 38
6.2.8 EntityIndex . 39
6.2.9 Integer . 39
6.2.10 IntegerTs . 39
6.2.11 InetAddress . 40
6.2.12 InetAddressType . 40
6.2.13 MacAddress . 40
6.2.14 Selector . 40
6.2.15 Timestamp . 41
6.2.16 CharString . 41
6.2.17 CharStringTs . 41
6.2.18 AbstractBaseType root class . 41
6.2.19 AbstractAgent root class . 42
6.3 Package EnumeratedTypes . 42
6.3.1 General . 42
6.3.2 AppDatStKind enumeration . 42
6.3.3 PhyHealthKind enumeration. 42
6.3.4 ExtKind enumeration . 42
6.3.5 IntKind enumeration. 43
6.3.6 LnkKind enumeration . 43
6.3.7 PSPAccKind enumeration . 43
6.3.8 ProtIdKind enumeration . 43
6.3.9 EventKind enumeration . 44
6.3.10 TimSyncIssueKind enumeration . 44
6.3.11 SecurityProfileKind enumeration . 45
6.3.12 TimSyncSrcKind enumeration . 45
6.3.13 AppDatStType . 45
6.3.14 PhyHealthType . 46
6.3.15 ExtType . 46
6.3.16 IntType . 46
6.3.17 EventType . 46
6.3.18 PSPAccType . 47
6.3.19 ProtIdType . 47
6.3.20 TimSyncIssueType . 47
6.3.21 SecurityProfileType . 47
6.3.22 TimSyncSrcType . 48
6.3.23 LnkType . 48
7 Agents . 48
7.1 Package Overview . 48
7.2 Package Environmental Agent . 50
7.2.1 General . 50

– 4 – IEC 62351-7:2017 © IEC 2017
7.2.2 Environmental . 51
7.2.3 PSUPEntry . 51
7.2.4 Notification . 52
7.2.5 SecurityNotification . 52
7.3 Package IED Agent . 53
7.3.1 General . 53
7.3.2 IED . 54
7.3.3 CPUEntry . 55
7.3.4 EXTEntry . 56
7.3.5 STOREEntry . 56
7.3.6 Notification . 57
7.3.7 SecurityNotification . 57
7.4 Package Application Protocols Agents . 57
7.4.1 General . 57
7.4.2 Package Common objects . 58
7.4.3 Package IEEE 1815 and IEC 60870-5 Agent. 59
7.4.4 Package IEC61850 Agent . 68
7.5 Package Interfaces Agent . 87
7.5.1 General . 87
7.5.2 Interface . 88
7.5.3 Interfaces . 88
7.5.4 ETHEntry . 90
7.5.5 KEYEntry . 90
7.5.6 SEREntry. 91
7.5.7 ALGEntry . 91
7.5.8 USBEntry. 92
7.5.9 Notification . 92
7.6 Package Clocks Agent . 93
7.6.1 General . 93
7.6.2 Clock . 93
7.6.3 ClockEntry . 94
7.6.4 SecurityNotification . 95
7.7 Network and Transport Agents . 95
7.7.1 TCP . 95
7.7.2 User Datagram Protocol (UDP) . 95
7.7.3 IP . 95
8 SNMP security . 96
9 Secured time synchronization . 96
Annex A (normative) SNMP MIB Mapping . 97
Annex B (informative) Mapping of relevant IEC 61850 Objects . 229
Bibliography . 230

Figure 1 – Example of a power system SCADA architecture extended with NSM Data
Objects . 15
Figure 2 – IDS Information exchange between applications: generic communication
topology . 19
Figure 3 – Active security monitoring architecture with NSM data objects . 21
Figure 4 – Comparison of NSM data objects with IEC 61850 objects . 23

IEC 62351-7:2017 © IEC 2017 – 5 –
Figure 5 – Management of both the power system infrastructure and the information
infrastructure . 23
Figure 6 – Abstract types . 27
Figure 7 – Enumerated types . 28
Figure 8 – Subagents . 29
Figure 9 – Environmental agent . 30
Figure 10 – Model stereotypes . 30
Figure 11 – Object identifier structure . 32
Figure 12 – SNMP table . 34
Figure 13 – SNMP RFCs map and security . 35
Figure 14 – SNMP Entity . 36
Figure 15 – Class diagram Overview::Part7 Classes Overview . 49
Figure 16 – Class diagram Environmental Agent::Environmental . 50
Figure 17 – Class diagram IED Agent::IED . 53
Figure 18 – Class diagram Common objects::Application Protocol common objects . 58
Figure 19 – Class diagram IEEE 1815 and IEC 60870-5 Agent::IEEE 1815 and
IEC 60870 Agent Relationships . 60
Figure 20 – Class diagram ACSI::ACSI . 69
Figure 21 – Class diagram MMS::MMS . 71
Figure 22 – Class diagram SV and GSE common objects::SV and GSE common
objects . 76
Figure 23 – Class diagram SV::SV . 78
Figure 24 – Class diagram GSE::GSE . 82
Figure 25 – Class diagram Interfaces Agent::Interfaces . 87
Figure 26 – Class diagram Clocks Agent::Clocks Agent . 93

Table 1 – Attributes of Abstract Types::BooleanValue . 37
Table 2 – Attributes of Abstract Types::BooleanValueTs . 37
Table 3 – Attributes of Abstract Types::CounterTs . 38
Table 4 – Attributes of Abstract Types::CntRs . 38
Table 5 – Attributes of Abstract Types::Floating . 38
Table 6 – Attributes of Abstract Types::FloatingTs . 39
Table 7 – Attributes of Abstract Types::EntityIndex . 39
Table 8 – Attributes of Abstract Types::Integer . 39
Table 9 – Attributes of Abstract Types::IntegerTs . 39
Table 10 – Attributes of Abstract Types::InetAddress . 40
Table 11 – Attributes of Abstract Types::InetAddressType . 40
Table 12 – Attributes of Abstract Types::MacAddress . 40
Table 13 – Attributes of Abstract Types::Selector . 41
Table 14 – Attributes of Abstract Types::Timestamp . 41
Table 15 – Attributes of Abstract Types::CharString . 41
Table 16 – Attributes of Abstract Types::CharStringTs . 41
Table 17 – Literals of EnumeratedTypes::AppDatStKind . 42
Table 18 – Literals of EnumeratedTypes::PhyHealthKind . 42

– 6 – IEC 62351-7:2017 © IEC 2017
Table 19 – Literals of EnumeratedTypes::ExtKind . 43
Table 20 – Literals of EnumeratedTypes::IntKind . 43
Table 21 – Literals of EnumeratedTypes::LnkKind . 43
Table 22 – Literals of EnumeratedTypes::PSPAccKind . 43
Table 23 – Literals of EnumeratedTypes::ProtIdKind . 44
Table 24 – Literals of EnumeratedTypes::EventKind . 44
Table 25 – Literals of EnumeratedTypes::TimSyncIssueKind . 44
Table 26 – Literals of EnumeratedTypes::SecurityProfileKind . 45
Table 27 – Literals of EnumeratedTypes::TimSyncSrcKind . 45
Table 28 – Attributes of EnumeratedTypes::AppDatStType . 46
Table 29 – Attributes of EnumeratedTypes::PhyHealthType . 46
Table 30 – Attributes of EnumeratedTypes::ExtType . 46
Table 31 – Attributes of EnumeratedTypes::IntType . 46
Table 32 – Attributes of EnumeratedTypes::EventType . 47
Table 33 – Attributes of EnumeratedTypes::PSPAccType . 47
Table 34 – Attributes of EnumeratedTypes::ProtIdType . 47
Table 35 – Attributes of EnumeratedTypes::TimSyncIssueType . 47
Table 36 – Attributes of EnumeratedTypes::SecurityProfileType . 48
Table 37 – Attributes of EnumeratedTypes::TimSyncSrcType . 48
Table 38 – Attributes of EnumeratedTypes::LnkType . 48
Table 39 – Attributes of Environmental Agent::Environmental . 51
Table 40 – Attributes of Environmental Agent::PSUPEntry . 51
Table 41 – Attributes of Environmental Agent::Notification . 52
Table 42 – Attributes of Environmental Agent::SecurityNotification . 52
Table 43 – Attributes of IED Agent::IED . 54
Table 44 – Attributes of IED Agent::CPUEntry. 55
Table 45 – Attributes of IED Agent::EXTEntry . 56
Table 46 – Attributes of IED Agent::STOREEntry . 56
Table 47 – Attributes of IED Agent::Notification . 57
Table 48 – Attributes of IED Agent::SecurityNotification . 57
Table 49 – Attributes of Common objects::CommonProtocolInfo . 58
Table 50 – Attributes of IEEE 1815 and IEC 60870-5
Agent::60870andDNPProtocolInfo . 61
Table 51 – Attributes of IEEE 1815 and IEC 60870-5 Agent::Association . 62
Table 52 – Attributes of IEEE 1815 and IEC 60870-5 Agent::Summary . 64
Table 53 – Attributes of IEEE 1815 and IEC 60870-5
Agent::60870andDNPSecurityNotification . 65
Table 54 – Attributes of IEEE 1815 and IEC 60870-5 Agent::60870andDNPNotification . 65
Table 55 – Attributes of IEEE 1815 and IEC 60870-5 Agent::MasterAssociation . 66
Table 56 – Attributes of IEEE 1815 and IEC 60870-5 Agent::OutstationAssociation . 67
Table 57 – Attributes of ACSI::ACSISummary . 70
Table 58 – Attributes of MMS::MMSProtocolInfo . 72
Table 59 – Attributes of MMS::MMSProvider . 73
Table 60 – Attributes of MMS::MMSAssociation . 74

IEC 62351-7:2017 © IEC 2017 – 7 –
Table 61 – Attributes of MMS::MMSSecurityNotification . 75
Table 62 – Attributes of MMS::MMSNotification . 75
Table 63 – Attributes of SV and GSE common objects::GSEandSVCommon . 76
Table 64 – Attributes of SV and GSE common
objects::GSEandSVPublisherAssociation . 77
Table 65 – Attributes of SV and GSE common
objects::GSEandSVSubscriberAssociation . 77
Table 66 – Attributes of SV::SVProvider. 79
Table 67 – Attributes of SV::SVPublisherAssociationIP . 79
Table 68 – Attributes of SV::SVPublisherAssociationL2 . 80
Table 69 – Attributes of SV::SVSubcriberAssociationIP. 80
Table 70 – Attributes of SV::SVSubcriberAssociationL2 . 81
Table 71 – Attributes of SV::SVNotification . 81
Table 72 – Attributes of GSE::GSESubscriberAssociation . 83
Table 73 – Attributes of GSE::GSEProvider . 83
Table 74 – Attributes of GSE::GSEPublisherAssociationIP . 84
Table 75 – Attributes of GSE::GSEPublisherAssociationL2 . 84
Table 76 – Attributes of GSE::GSESubcriberAssociationIP . 85
Table 77 – Attributes of GSE::GSESubscriberAssociationL2 . 85
Table 78 – Attributes of GSE::GSENotification . 86
Table 79 – Attributes of Interfaces Agent::Interface. 88
Table 80 – Attributes of Interfaces Agent::Interfaces . 89
Table 81 – Attributes of Interfaces Agent::ETHEntry . 90
Table 82 – Attributes of Interfaces Agent::KEYEntry . 90
Table 83 – Attributes of Interfaces Agent::SEREntry . 91
Table 84 – Attributes of Interfaces Agent::ALGEntry . 91
Table 85 – Attributes of Interfaces Agent::USBEntry . 92
Table 86 – Attributes of Interfaces Agent::Notification . 92
Table 87 – Attributes of Clocks Agent::Clock . 93
Table 88 – Attributes of Clocks Agent::ClockEntry . 94
Table 89 – Attributes of Clocks Agent::SecurityNotification . 95
Table B.1 – IEC 61850-7-4 objects mapping . 229

– 8 – IEC 62351-7:2017 © IEC 2017
INTERNATIONAL ELECTROTECHNICAL COMMISSION
____________
POWER SYSTEMS MANAGEMENT AND
ASSOCIATED INFORMATION EXCHANGE –
DATA AND COMMUNICATIONS SECURITY –

Part 7: Network and System Management (NSM) data object models

FOREWORD
1) The International Electrotechnical Commission (IEC) is a worldwide organization for standardization comprising
all national electrotechnical committees (IEC National Committees). The object of IEC is to promote
international co-operation on all questions concerning standardization in the electrical and electronic fields. To
this end and in addition to other activities, IEC publishes International Standards, Technical Specifications,
Technical Reports, Publicly Available Specifications (PAS) and Guides (hereafter referred to as “IEC
Publication(s)”). Their preparation is entrusted to technical committees; any IEC National Committee interested
in the subject dealt with may participate in this preparatory work. International, governmental and non-
governmental organizations liaising with the IEC also participate in this preparation. IEC collaborates closely
with the International Organization for Standardization (ISO) in accordance with conditions determined by
agreement between the two organizations.
2) The formal decisions or agreements of IEC on technical matters express, as nearly as possible, an international
consensus of opinion on the relevant subjects since each technical committee has representation from all
interested IEC National Committees.
3) IEC Publications have the form of recommendations for international use and are accepted by IEC National
Committees in that sense. While all reasonable efforts are made to ensure that the technical content of IEC
Publications is accurate, IEC cannot be held responsible for the way in which they are used or for any
misinterpretation by any end user.
4) In order to promote international uniformity, IEC National Committees undertake to apply IEC Publications
transparently to the maximum extent possible in their national and regional publications. Any divergence
between any IEC Publication and the corresponding national or regional publication shall be clearly indicated in
the latter.
5) IEC itself does not provide any attestation of conformity. Independent certification bodies provide conformity
assessment services and, in some areas, access to IEC marks of conformity. IEC is not responsible for any
services carried out by independent certification bodies.
6) All users should ensure that they have the latest edition of this publication.
7) No liability shall attach to IEC or its directors, employees, servants or agents including individual experts and
members of its technical committees and IEC National Committees for any personal injury, property damage or
other damage of any nature whatsoever, whether direct or indirect, or for costs (including legal fees) and
expenses arising out of the publication, use of, or reli
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

Loading comments...

This May Also Interest You

CLC
EN IEC 62488-1:2025(Main)
Power line communication systems for power utility applications - Part 1: Planning of analogue and digital power line carrier systems operating over HV electricity grids
SIST EN IEC 62488-1:2025

IEC 62488-1:2025 applies to the planning of analogue (APLC), digital (DPLC) and hybrid analogue-digital (ADPLC) power line carrier communication systems operating over HV electric power networks. The object of this document is to establish the planning of the services and performance parameters for the operational requirements to transmit and receive data efficiently and reliably. Such analogue and digital power line carrier systems are used by the different electricity supply industries and integrated into their communication infrastructure using common communication technologies such as radio links, fibre optic and satellite networks This second edition cancels and replaces the first edition published in 2012. This edition constitutes a technical revision. This edition includes the following significant technical changes with respect to the previous edition: a) Complete revision of this edition with respect to the previous edition with the main focus on planning of analogue and digital power line carrier systems operating over HV power networks; b) A general structure of a bidirectional point-to-multipoint APLC, DPLC or ADPLC link has been introduced; c) Introduction of a new approach for global frequency planning.

  • Standard
    108 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CLC
EN 61850-10:2013/A1:2025(Amendment)
Communication networks and systems for power utility automation - Part 10: Conformance testing
SIST EN 61850-10:2013/A1:2025
  • Amendment
    76 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CLC
EN IEC 62746-4:2025(Main)
Systems interface between customer energy management system and the power management system - Part 4: Demand Side Resource Interface
SIST EN IEC 62746-4:2025

IEC 62746-4:2024 describes CIM profiles for Demand-Side Resource Interface and is based on the use case shown in Annex A of this document. Schemas associated with this document were generated using the CIM101 UML and leverages the Market package. This document defines profiles complimentary to other standards, namely those in IEC 61970, IEC 61968, and IEC 62325.

  • Standard
    76 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CLC
EN 61850-6:2010/A2:2025(Amendment)
Communication networks and systems for power utility automation - Part 6: Configuration description language for communication in power utility automation systems related to IEDs
SIST EN 61850-6:2010/A2:2025
  • Amendment
    94 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CLC
EN IEC 61968-9:2024(Main)
Enterprise business function interfaces for utility operations - Part 9: Interfaces for meter reading and control
SIST EN IEC 61968-9:2024

IEC 61968-9:2024 specifies the information content of a set of message types that can be used to support many of the business functions related to meter reading and control. Typical uses of the message types include meter reading, controls, events, customer data synchronization and customer switching. Although intended primarily for electrical distribution networks, IEC 61968-9 can be used for other metering applications, including non-electrical metered quantities necessary to support gas and water networks. The purpose of this document is to define a standard for the integration of metering systems (MS), which includes traditional manual systems, and (one or two-way) automated meter reading (AMR) systems, and meter data management (MDM) systems with other enterprise systems and business functions within the scope of IEC 61968. The scope of this document is the exchange of information between metering systems, MDM systems and other systems within the utility enterprise. The specific details of communication protocols those systems employ are outside the scope of this document. Instead, this document will recognize and model the general capabilities that can be potentially provided by advanced and/or legacy meter infrastructures, including two-way communication capabilities such as load control, dynamic pricing, outage detection, distributed energy resource (DER) control signals and on-request read. In this way, this document will not be impacted by the specification, development and/or deployment of next generation meter infrastructures either through the use of standards or proprietary means. The focus of IEC 61968-9 is to define standard messages for the integration of enterprise applications, these messages may be directly or indirectly related to information flows within a broader scope. Examples would include messaging between head end systems and meters or PAN devices. The various components described later in this document will typically fall into either the category of a metering system (MS) head end, an MDM or other enterprise application (e.g. OMS, DRMS, CIS). The capabilities and information provided by a meter reading and meter data management systems are important for a variety of purposes, including (but not limited to) interval data, time-based demand data, time-based energy data (usage and production), outage management, service interruption, service restoration, quality of service monitoring, distribution network analysis, distribution planning, demand response, customer billing and work management. This standard also extends the CIM (Common Information Model) to support the exchange of meter data. This third edition cancels and replaces the second edition published in 2013. This edition constitutes a technical revision. Please see the foreword of IEC 61968-9 for further details.

  • Standard
    359 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CLC
EN IEC 61970-457:2024(Main)
Energy management system application program interface (EMS-API) - Part 457: Dynamics profile
SIST EN IEC 61970-457:2024

IEC 61970-457:2024 specifies a standard interface for exchanging dynamic model information needed to support the analysis of the steady state stability (small-signal stability) and/or transient stability of a power system or parts of it. The schema(s) for expressing the dynamic model information are derived directly from the CIM, more specifically from IEC 61970-302. The scope of this document includes only the dynamic model information that needs to be exchanged as part of a dynamic study, namely the type, description and parameters of each control equipment associated with a piece of power system equipment included in the steady state solution of a complete power system network model. Therefore, this profile is dependent upon other standard profiles for the equipment as specified in IEC 61970-452: CIM static transmission network model profiles, the topology, the steady state hypothesis and the steady state solution (as specified in IEC 61970-456: Solved power system state profiles) of the power system, which bounds the scope of the exchange. The profile information described by this document needs to be exchanged in conjunction with IEC 61970-452 and IEC 61970-456 profiles’ information to support the data requirements of transient analysis tools. IEC 61970-456 provides a detailed description of how different profile standards can be combined to form various types of power system network model exchanges. This document supports the exchange of the following types of dynamic models: • standard models: a simplified approach to exchange, where models are contained in predefined libraries of classes interconnected in a standard manner that represent dynamic behaviour of elements of the power system. The exchange only indicates the name of the model along with the attributes needed to describe its behaviour. • proprietary user-defined models: an exchange that would provide users the ability to exchange the parameters of a model representing a vendor or user proprietary device where an explicit description of the model is not described in this document. The connections between the proprietary models and standard models are the same as described for the standard models exchange. Recipient of the data exchange will need to contact the sender for the behavioural details of the model. This document builds on IEC 61970-302, CIM for dynamics which defines the descriptions of the standard dynamic models, their function block diagrams, and how they are interconnected and associated with the static network model. This type of model information is assumed to be pre-stored by all software applications hence it is not necessary to be exchanged in real-time or as part of a dynamics model exchange. This second edition cancels and replaces the first edition published in 2021. This edition constitutes a technical revision. This edition includes the following significant technical changes with respect to the previous edition: a) The majority of issues detected in IEC 61970-302:2018 and fixed in IEC 61970-302:2022 led to update of this document; b) IEEE 421.5-2016 on Excitation systems is fully covered; c) IEEE turbine report from 2013 was considered and as a result a number of gas, steam and hydro turbines/governors are added; d) IEC 61400-27-1:2020 on wind turbines is fully incorporated; e) WECC Inverter-Based Resource (IBR) models, Hybrid STATCOM models and storage models are added; f) The user defined models approach was enhanced in IEC 61970-302:2022 adding a model which enables modelling of a detailed dynamic model. This results in the creation of two additional pr

  • Standard
    780 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CLC
EN IEC 61970-302:2024(Main)
Energy management system application program interface (EMS-API) - Part 302: Common information model (CIM) dynamics
SIST EN IEC 61970-302:2024

IEC 61970-302:2024 specifies a Dynamics package which contains part of the CIM to support the exchange of models between software applications that perform analysis of the steady-state stability (small-signal stability) or transient stability of a power system as defined by IEEE / CIGRE, Definition and classification of power system stability IEEE/CIGRE joint task force on stability terms and definitions. The model descriptions in this document provide specifications for each type of dynamic model as well as the information that needs to be included in dynamic case exchanges between planning/study applications. The scope of the CIM Dynamics package specified in this document includes: • standard models: a simplified approach to describing dynamic models, where models representing dynamic behaviour of elements of the power system are contained in predefined libraries of classes which are interconnected in a standard manner. Only the names of the selected elements of the models along with their attributes are needed to describe dynamic behaviour. • proprietary user-defined models: an approach providing users the ability to define the parameters of a dynamic behaviour model representing a vendor or user proprietary device where an explicit description of the model is not provided by this document. The same libraries and standard interconnections are used for both proprietary user-defined models and standard models. The behavioural details of the model are not documented in this document, only the model parameters. • A model to enable exchange of models’ descriptions. This approach can be used to describe user defined and standard models. • A model to enable exchange of simulation results. This second edition cancels and replaces the first edition published in 2018. This edition constitutes a technical revision. This edition includes the following significant technical changes with respect to the previous edition: a) The majority of issues detected in IEC 61970-302:2018 are addressed; b) IEEE 421.5-2016 on Excitation systems is fully covered; c) The IEEE turbine report from 2013 was considered and as a result a number of gas, steam and hydro turbines/governors are added; d) IEC 61400-27-1:2020 on wind turbines is fully incorporated; e) WECC Inverter-Based Resource (IBR) models, Hybrid STATCOM models and storage models are added; f) The user defined models are enhanced with a model which enables modelling of detailed dynamic model; g) A model to enable exchange of simulation results is added; h) The work on the HVDC models is not complete. The HVDC dynamics models are a complex domain in which there are no models that are approved or widely recognised on international level, i.e. there are only project-based models. At this stage IEC 61970-302:2022 only specifies some general classes. However, it is recognised that better coverage of HVDC will require a further edition of this document; i) Models from IEEE 1547-2018 "IEEE Standard for Interconnection and Interoperability of Distributed Energy Resources with Associated Electric Power Systems Interfaces" are added. j) Statements have been added to certain figures, tables, schemas, and enumerations throughout the document that indicate that they are reproduced with the permission of the UCA International User Group (UCAIug). These items are derived from the CIM.

  • Standard
    894 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CLC
EN 60870-5-104:2006/A1:2016/AC:2023-09(Corrigendum)
Telecontrol equipment and systems - Part 5-104: Transmission protocols - Network access for IEC 60870-5-101 using standard transport profiles
SIST EN 60870-5-104:2007/A1:2017/AC:2024
  • Corrigendum
    3 pages
    English and French language
    sale 10% off
    e-Library read for
    1 day
CLC
EN IEC 62351-3:2023(Main)
Power systems management and associated information exchange - Data and communications security - Part 3: Communication network and system security - Profiles including TCP/IP
SIST EN IEC 62351-3:2023

IEC 62351-3:2023 specifies how to provide confidentiality, integrity protection, and message level authentication for protocols that make use of TCP/IP as a message transport layer and utilize Transport Layer Security when cyber-security is required. This may relate to SCADA and telecontrol protocols, but also to additional protocols if they meet the requirements in this document. IEC 62351-3 specifies how to secure TCP/IP-based protocols through constraints on the specification of the messages, procedures, and algorithms of Transport Layer Security (TLS) (TLSv1.2 defined in RFC 5246, TLSv1.3 defined in RFC 8446). In the specific clauses, there will be subclauses to note the differences and commonalities in the application depending on the target TLS version. The use and specification of intervening external security devices (e.g., "bump-in-the-wire") are considered out-of-scope. In contrast to previous editions of this document, this edition is self-contained in terms of completely defining a profile of TLS. Hence, it can be applied directly, without the need to specify further TLS parameters, except the port number, over which the communication will be performed. Therefore, this part can be directly utilized from a referencing standard and can be combined with further security measures on other layers. Providing the profiling of TLS without the need for further specifying TLS parameters allows declaring conformity to the described functionality without the need to involve further IEC 62351 documents. This document is intended to be referenced as a normative part of other IEC standards that have the need for providing security for their TCP/IP-based protocol exchanges under similar boundary conditions. However, it is up to the individual protocol security initiatives to decide if this document is to be referenced. The document also defines security events for specific conditions, which support error handling, security audit trails, intrusion detection, and conformance testing. Any action of an organization in response to events to an error condition described in this document are beyond the scope of this document and are expected to be defined by the organization’s security policy. This document reflects the security requirements of the IEC power systems management protocols. Should other standards bring forward new requirements, this document may need to be revised. This second edition cancels and replaces the first edition published in 2014, Amendment 1:2018 and Amendment 2:2020. This edition constitutes a technical revision. This edition includes the following significant technical changes with respect to the previous edition: a) Inclusion of the TLSv1.2 related parameter required in IEC 62351-3 Ed.1.2 to be specified by the referencing standard. This comprises the following parameter: • Mandatory TLSv1.2 cipher suites to be supported. • Specification of session resumption parameters. • Specification of session renegotiation parameters. • Revocation handling using CRL and OCSP. • Handling of security events. b) Inclusion of a TLSv1.3 profile to be applicable for the power system domain in a similar way as for TLSv1.2 session.

  • Standard
    52 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Standard
    52 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CLC
EN IEC 62351-9:2023(Main)
Power systems management and associated information exchange - Data and communications security - Part 9: Cyber security key management for power system equipment
SIST EN IEC 62351-9:2023

IEC 62351-9:2023 specifies cryptographic key management, primarily focused on the management of long-term keys, which are most often asymmetric key pairs, such as public-key certificates and corresponding private keys. As certificates build the base this document builds a foundation for many IEC 62351 services (see also Annex A). Symmetric key management is also considered but only with respect to session keys for group-based communication as applied in IEC 62351-6. The objective of this document is to define requirements and technologies to achieve interoperability of key management by specifying or limiting key management options to be used. This document assumes that an organization (or group of organizations) has defined a security policy to select the type of keys and cryptographic algorithms that will be utilized, which may have to align with other standards or regulatory requirements. This document therefore specifies only the management techniques for these selected key and cryptography infrastructures. This document assumes that the reader has a basic understanding of cryptography and key management principles. The requirements for the management of pairwise symmetric (session) keys in the context of communication protocols is specified in the parts of IEC 62351 utilizing or specifying pairwise communication such as: • IEC 62351-3 for TLS by profiling the TLS options • IEC 62351-4 for the application layer end-to-end security • IEC TS 62351-5 for the application layer security mechanism for IEC 60870-5-101/104 and IEEE 1815 (DNP3) The requirements for the management of symmetric group keys in the context of power system communication protocols is specified in IEC 62351-6 for utilizing group security to protect GOOSE and SV communication. IEC 62351-9 utilizes GDOI as already IETF specified group-based key management protocol to manage the group security parameter and enhances this protocol to carry the security parameter for GOOSE, SV, and PTP. This document also defines security events for specific conditions which could identify issues which might require error handling. However, the actions of the organisation in response to these error conditions are beyond the scope of this document and are expected to be defined by the organizations security policy. In the future, as public-key cryptography becomes endangered by the evolution of quantum computers, this document will also consider post-quantum cryptography to a certain extent. Note that at this time being no specific measures are provided. This second edition cancels and replaces the first edition published in 2017. This edition constitutes a technical revision. This edition includes the following significant technical changes with respect to the previous edition: a) Certificate components and verification of the certificate components have been added; b) GDOI has been updated to include findings from interop tests; c) GDOI operation considerations have been added; d) GDOI support for PTP (IEEE 1588) support has been added as specified by IEC/IEEE 61850-9-3 Power Profile; e) Cyber security event logging has been added as well as the mapping to IEC 62351-14; f) Annex B with background on utilized cryptographic algorithms and mechanisms has been added.

  • Standard
    147 pages
    English language
    sale 10% off
    e-Library read for
    1 day