d9.3-a: report on pre-normative research and...

eDIANA Embedded Systems for Energy Efficient Buildings

Grant agreement no.: 100012

Dissemination level

X PU = Public

PP = Restricted to other programme participants (including the JU)

RE = Restricted to a group specified by the consortium (including the JU)

CO = Confidential, only for members of the consortium (including the JU)

D9.3-A: Report on pre-normative research and implementation activity plan

Author(s): Rafael Socorro Acciona Ingolf Karls Intel Oliver Schreyer Pres Adrian Noguero Tecnalia

Issue Date January 2012 (m36)

Deliverable Number D9.3-A

WP Number WP9: Pre-normative research and implementation towards standardization

Status Delivered

Pre-normative research and implementation activity plan eDIANA: GA no.: 100012

D9.3-A

January 2012

Disclaimer

The information in this document is provided as is and no guarantee or warranty is given that the information is fit for any particular purpose. The user thereof uses the information at its sole risk and liability.

The document reflects only the author’s views and the Community is not liable for any use that may be made of the information contained therein.

Document history

V Date Author Description

0.1 01.04.2011 Intel Initial version with ToC

0.2 13.10.2011 Intel Updated TOC

0.3 09.01.2012 Intel Draft

0.9 24.01.2012 Intel Final draft

1.0 30.01.2012 Intel, Pres, Tecnalia

Final version, comments and changes included

1.1. 31.01.2012 Pres Editorial changes


D9.3-A

January 2012

Summary

This document presents the deliverable D9.3-A of Task 9.3 of eDIANA and in particular the relevant stakeholders which got supplied with information on the activities in the eDIANA project with regard to review and comment standardization activities e.g. to overcome possible gaps and or barriers in existing standards and legislation according to the action plan developed in task 9.2. In cooperation with these stakeholders proposals for the implementation of new or modified inputs or regulations were discussed and made.

For those technologies that are not yet covered by existing standards or regulations recommendations were made for extensions to relevant standardization bodies and associations. This included the clear need to limit the variety of standards at the various layers and in particular the number of access interfaces, secondly the requirement of a sustainable standard landscape and roadmap and thirdly the insurance and enforcement of security, safety and privacy of the energy management frameworks. In this task, inputs from the technology developing work packages and the demonstration work packages were used. From these work packages experiences were taken to specify the recommendations for comments, remarks and inputs to change request procedures.

The activities for this purpose were:

gathering input from development and demonstration work packages being relevant for standardization and certification issues,

drafting of recommendations for comments in change request procedures,

review discussion of the drafts with experts in the field,

Completion of change request procedures.

Activities in this task comprised:

setting up information material regarding the proposed changes and extensions,

interviews and discussions with experts from standardization and regulatory bodies,

attending meetings and discussions with standardization and regulatory bodies,

presentation of recommended comments and remarks at SDOs/SIGs meetings,

Writing the pre-normative research and implementation activity report.


D9.3-A

January 2012

Contents1. INTRODUCTION ....................................................................................... 7

2. CEN/CENELEC/ETSI SG-CG ACTIVITIES ...............................................10

3. ETSI TC M2M ..........................................................................................13

4. CONCLUSION .........................................................................................16

5. ACKNOWLEDGEMENTS...........................................................................18

6. REFERENCES ..........................................................................................19


D9.3-A

January 2012

Abbreviations

3GPP 3rd Generation Partnership Project

CoAP Constrained Application Protocol

CEN Comité Européen de Normalisation

CENELEC Comité Européen de Normalisation Électrotechnique

COSEM COmpanion Specification for Energy Metering

dla Reference point between device application and SCL

DLC Distribution Line Carrier

DLMS Device Language Message Specification

DPP Data Protection and Privacy

EAP Extensible Authentication Protocol

eDIANA Embedded Systems for Energy Efficient Buildings

ESMIG European Smart Metering Industry Group

ETP European Technology platform

ETSI European Telecommunications Standards Institute

GSMA GSM Association

HGI Home Gateway Initiative

HTTP Hypertext Transfer Protocol

ICT Information and Communication Technology

ICT4E2B ICT 4 E2B Forum

IEC International Electrotechnical Commission

IEEE Institute of Electrical and Electronics Engineers

IETF Internet Engineering Task Force

IP Internet Protocol

ISO International Organization for Standardization

ITU International Telecommunication Union

KNX Worldwide standard for Home and Building Control

mla M2M reference point between SCL & Network Application

mld M2M reference point between devices (SCL to SCL)

NIST National Institute of Standards and Technology


D9.3-A

January 2012

OASIS Organization for the Advancement of Structured Information Standards

OMA Open Mobile Alliance

OpenSG Open Smart Grid

OSGi Open Services Gateway Alliance (formerly initiative)

ProSE Promoting standardisation for embedded systems

REEB European Strategic Research Roadmap to ICT enabled Energy-Efficiency in Building and Construction

RESTful Representational State Transfer

SCL Service Capability Layer

SDO Standard Developing Organization

SIG Standards and Industry Group

SGIS Smart Grid Information Security

TC M2M Technical Committee (TC) M2M

UICC Universal Integrated Circuit Card

UPnP Universal Plug and Play

URI Universal Resource Identifier

W3C World Wide Web Consortium

XML Extensible Markup Language

XSD XML Schema Definition


D9.3-A

January 2012

1. Introduction

eDIANA WP9.2 resulted in an action plan to recommend the findings of eDIANA WP 9.1 mainly to CEN/CNELEC/ETSI SG-CG and ETSI TC M2M working groups. The result was taken under the assumption that activities in these two organisations makes most efficient use of the assigned eDIANA project resources and fit best the European standardisation and regulation landscape.

The CEN, CENELEC and ETSI Smart Meters Co-ordination Group (SM-CG) worked in already in 2009 with emphasis on European Commission DG enterprise and industry: M/441 standardisation mandate to CEN, CENELEC and ETSI in the field of measuring instruments for the development of an open architecture for utility meters involving communication protocols enabling interoperability. Two ad hoc groups met several times considering communications and additional functionalities. Harmonization, interoperability and the requirement of open standards were concluded. Work item results enclosed in particular standards for functional reference architecture for communications, meter data exchange over power lines, application layer messages exchange on DLC and IP networks, meter database and data structures, electricity metering data exchange using DLMS/COSEM and the assessment of compliance to security requirements.

Figure 1: SM-CG architecture for smart meter communication [5]


D9.3-A

January 2012

The CEN, CENELEC and ETSI Smart Grid Co-ordination Group (SG-CG, chair Ralph Sporer) focus on European Commission DG energy: M/490 standardisation mandate to European standardisation organizations (ESOs) to support European Smart Grid deployment. SG-CG focused during eDIANA WP9.2 and WP9.3 run time on European Commission DG energy: M/490 standardisation mandate to European standardisation organizations (ESOs) to support European Smart Grid deployment.

Figure 2: Overview of IEC TR 62357 framework architecture including CENELEC TC 57 agreed standards [4]

As concluded in eDIANA D9.2-A analysis report and detailed activity plan for the prioritized actions ETSI TC M2M (chair Ray Forbes) was chosen as second European SDO to be active in for dissemination and exploitation of eDIANA results of several WPs. Furthermore the Protocols WG was taken out of the current five current working groups (the others are requirements and use cases, functional architecture, security and management). ETSI TC M2M Protocols WG is mainly responsible to identify protocol and interface aspects from the M2M domain, to find and specify protocols and application programming interfaces for M2M services, to make the TC M2M protocol, mapping, XML schemas and XSD definition files, specifications and stage 3 use cases reports and to the latter. ETSI TC M2M Protocols WG works amongst others for applications, including home automation, city automation and smart grid. It liaises with the TC M2M Architecture


D9.3-A

January 2012

Specifications WG, the TC M2M Security WG and external bodies including 3GPP, GSMA, HGi, OMA, SM-CG and SG-CG.


D9.3-A

January 2012

2. CEN/CENELEC/ETSI SG-CG activities

According to eDIANA findings SG-SC concluded as well that quite a lot of standards for the management e.g. of a smart grid exist and therefore worked at a consolidated recommendation list of them.

The working group “First set of standards” (chair Laurent Guise) identified existing ones and remaining gaps, as a result a list containing a first set of standards was issued. eDIANA WP9 identified XML as an crucial standard for common data models and the implementation of certain user interfaces. SG-SC considered a common information model like IEC 61970 as necessary to provide sufficient seamless integration and interoperability for data models. XML naming, design rules, process and methodology as standardized in IEC 61970 are recommended. IEC 61968 is cited a standards source for communication interface for energy distribution management, including data services to access databases from applications.

Figure 3: Overview of IEC 61968/61970 [4]

Both – IEC 61968 and 61970 – are already recognized globally for the implementation of common information models. Therefore eDIANA and more importantly SG-CG reference them as necessary.

CENELEC TC 13 got tasked to specify new technical reports and specifications for new communication technologies in a common interoperable framework. It is planned to specify for PHY and MAC layer and IEC 62056 DLMS/COSEM profiles for PLC OFDM type 1 and type 2. All of this is in line with eDIANA project findings. To avoid conflicting standards liaisons with several committees active in PLC standardization like IEC TC57, CLC TC13, ETSI PLT, ITU-T and IEEE are proposed. In addition CENELEC TC 13 continues to collaborate with CEN TC 294 to further harmonize IEC 62056 DLMS/COSEM and EN13757-1 and negotiates with ETSI M2M the use of service capabilities proposed by ETSI M2M for smart metering.


D9.3-A

January 2012

The working group “Reference Architecture” (chair Emmanuel Darmois) results will be ready by end 2012. The WG references several defined data models to ensure a certain level of interoperability. IEEE 802.14.4 ZigBee Smart Energy Profile 2.0 seen by eDIANA as an essential standard for communication is amongst them. Others proposed are ANSI C12, IEC 61850 and IEC 62056-XX (DLMS/COSEM).

The working group “Security” (chairs Laurent Schmitt / Alfred Malina) is undertaking a gap analysis of security standards for smart grids considering ISO 27000, IEC 62351, NIST IR 7628, SG JWG and the SGTF Expert Group 2 and confirms eDIANA project findings so far. The WG did an inventory of many data sources specifically of the European Commission smart grids task force (expert group 2 - regulatory recommendations for data safety, data handling and data protection), IEC 62351, ISO/IEC 27000 and NIST IR 7628. The investigation confirmed in more detail the eDIANA result that insurance and enforcement of security, safety and privacy of energy management frameworks is strongly needed. SG-CG WG “Security” identified a lack of data security essential use cases, threats and requirements for confidentiality and privacy, integrity, authentication, legitimacy, validity, tamper proofness, fraud avoidance, and auditability. The final report of the WG asked the European Commission to provide to ESOs a detailed set of harmonized system security requirements for SGIS and DPP that should cover multiple information security levels. At present there will be no winning standards matching all security requirements with an end to end vision. Therefore European Commission recommended to ESOs do own work and compare regularly the results with NIST ones.

CENELEC TC 13 will use IEC 62056 addressing data access security and data transport security. The specification which is currently using 128 bit symmetric key security based on NIST standards will be extended to a 256 bit symmetric key and public key algorithms using elliptic curves using the NSA Security Suite B.

SG-CG will issue a report version 2.0 in 2012 which includes the revision of 20 standards, and the creation of 29 standards at present. An excerpt of the available gap summary clearly shows the working at issues which have been identified in eDIANA as well, e.g.

Harmonization between IEC 62056-XX (DLMS/COSEM) data model and IEC 61850/CIM specifically for revenue metering

IEC 61850 extended field data modeling standard to support demand response, DER, VPP and home, building and industry automation

Unified language for tariff information for demand-response

Specify security around IEC 62351

Develop communication standards relying on the Internet based standard web services and harmonize them with CIM and IEC 61850

Ensure seamless communication between control center and substation

Match activities on data transport technologies


D9.3-A

January 2012

Smart metering data to building system interface

Figure 4: SG-CG work program status [6]

The SG-CG plenary meeting on October 7th 2011 confirmed meeting schedule 2012 as follows:

The next Smart Grid Coordination Group Plenary meeting is scheduled on 2012-02-14 in the CEN-CLC Meeting Centre

A 2 days Alignment Workshop is taking place on 19 and 20 March 2012 in the CEN-CLC Meeting Centre. This technical meeting is dedicated to coordination and exchange of views/issues between working groups.

A first international plenary meeting is scheduled on 18 & 19 June 2012 in Brussels. The intention is to present the work of the Smart Grid Coordination Group, to foster and align the major standardization activities. More info will be circulated early 2012


D9.3-A

January 2012

3. ETSI TC M2M

ETSI TC M2M Protocols WG worked mainly at TS 102 921 mla, dla and mld interfaces and security features during the eDIANA WP 9.2 and 9.3 project time.

Figure 5: ETSI TC M2M High Level Architecture [1]

TS 102 921 is based on the ETSI TC M2M specification that the M2M system is resource built and the application programming interfaces use the RESTful approach. In line with eDIANA project outcomes it is stated that interfaces are able to support a wide range of network technologies and can be used in all M2M application domains. Resources are defined implementing a URI comprising e.g. of a mapping to HTTP and CoAP, XML definitions and security procedures.

Security was one of the eDIANA findings to be addressed more in SDOs and SIGs. The ETSI M2M Release 1 provides a standardized security mechanism for the reference point mld and the device and gateway needs to have keys for securing the connection. The device and gateway is provisioned with the key M2M Root Key. The high level procedures are to perform mutual mld end point authentication, M2M Connection key agreement, establish optionally a secure session over mld and to perform RESTful procedures over the mld.

New security features were elaborated at in collaboration with TC M2M Security WG. HTTP for CoAP was firstly investigated with regard to necessary changes in authentication in particular either to introduce a new header (x-asserted-identity) or reuse the (basic) authorization header, ignoring the password part. Key provisioning


D9.3-A

January 2012

and hierarchy derivation was defined in ETSI TS 102 690 including service root key and service connection key provisioning independent of and based on access network credentials and key derivation respectively. Another activity was related to M2M service bootstrapping and the evaluation of related procedures. E.g. bootstrapping from EAP based access network layers is applicable to networks like WiFi, Ethernet and ZigBee which are already using EAP-based mutual authentication.

ETSI TC M2M is improving security issues further most recently in particular M2M security, M2M service bootstrap, service provisioning and M2M service connection procedures in a CR for ETSI TS 102 690. The M2M security framework will lay down the underlying functions and key hierarchy pertaining to M2M security. Furthermore secure bootstrapping and service provisioning of D/G M2M nodes will be supported and security procedures for M2M service connection between the D/G M2M node and the network domain will be specified. M2M communication security over mld including SCL registration data protection and M2M application data protection over mld is ongoing.

ETSI M2M WG4 and SG-CG SGIS (Smart Grid Information Security technical group) liaise to investigate telecom security standards considering the difficulty being that they highly depend on used technology. Therefore ETSI provided a list of relevant security standards.

Standard Stakeholder Description

IEC 62351-1 TC57:WG15 Introduction and overview

IEC 62351-2 TC57:WG15 Glossary of terms

IEC 62351-3 TC57:WG15 Profiles Including TCP/IP

IEC 62351-4 TC57:WG15 Profiles Including MMS

IEC 62351-5 TC57:WG15 Security for IEC 60870-5 and Derivatives

IEC 62351-6 TC57:WG15 Security for IEC 61850

IEC 62351-7 TC57:WG15 Network and system management (NSM) data object models

IEC 62351-8 TC57:WG15 Role-Based Access Control for Power systems management

IEC 62351-9 TC57:WG15 Credential Management

IEC 62351-10 TC57:WG15 Security Architecture Guidelines

IEC 61850-90-5 TC57:WG10 Use of IEC 61850 to transmit synchrophasor information according to IEEE C37.118

IEC 62056 TC13:WG14 COSEM: COmpanion Specification for Energy Metering (COSEM)

IEC 61334 TC57 Device Language Message Specification (DLMS)


D9.3-A

January 2012

IEC 61400-25 TC88 Communications for monitoring and control of wind power plants

RFC 5246 IETF Transport Layer Security (TLS)

RFC 5247 IETF Extensible Authentication Protocol (EAP)

RFC 6407 IETF Group Domain of Interpretation (GDOI)

RFC 4101 IETF Base standards for IP Security (IPSec)



RFC 5746 IETF Datagram Transport Layer Security (DTLS

RFC 3711 IETF Secure Real-time Transport Protocol (SRTP)

RFC 3547 IETF Group Domain of Interpretation (GDOI)

RFC 4962 IETF Authentication, Authorization, and Accounting

RFC 5247 IETF Extensible Authentication Protocol (EAP) Key Management Framework

IEEE 802.1X IEEE Port Based Network Access Control

IEEE 802.1AE IEEE MAC security

IEEE 802.1AR IEEE Secure Device Identity

ETSI TS 102 689 ETSI M2M M2M Service layer requirements (Stage 1)

ETSI TS 102 690 ETSI M2M M2M Service Layer Architecture (Stage 2)

ETSI TS 102 921 ETSI M2M M2M Service Layer Interfaces & Protocols (Stage 3)

ETSI TR 103 167 ETSI M2M Threat Analysis and Counter Measures for M2M service Layer

ETSI TS 102 225 ETSI SCP Secured Packet Structure for UICC Based Applications

ETSI TS 102 226 ETSI SCP Remote APDU structure for UICC Based applications

ETSI TS 102 484 ETSI SCP Secure Channel between UICC and terminal

ETSI TS 187 001 ETSI TISPAN TISPAN Network Security Requirements

ETSI TS 187 003 ETSI TISPAN TISPAN Network Security Architecture

ETSI TR 187 002 ETSI TISPAN TISPAN Network Threat Vulnerability and Risk Analysis

Table 1: Security standard candidates [3]


D9.3-A

January 2012

4. Conclusion

CEN, CENELEC and ETSI SM-CG, SG-CG and ETSI TC M2M make recommendations which reflect eDIANA WP9 findings and results very well. So the final report of CEN, CENELEC and ETSISG-CG concluded to develop the report further in issues such as energy storage and security. Like eDIANA the working group endorses the use of existing European and international standards which are already globally recognized e.g. ZigBee. The reference that standards must be generic and open to be agnostic for future technological developments and market requirements is another example how eDIANA findings got reflected.

There is on-going extensive discussion on the importance of promoting the use of one common standards solution with the vertical industries e.g. energy in the area of EC M/441 smart metering mandate at ETSI TC M2M. In relationship to that the importance of communication standards like emphasized in eDIANA is pointed out by telecommunication network provides which would like to provide standards based solutions to the verticals. E.g. it is proposed to apply ETSI M2M service capabilities to M/441 reference architecture and to create the necessary collaborations with CENELEC TC 13, CEN TC294 and CENELEC TC 205. Use cases from eDIANA have been communicated in these circumstances.

Possible testing scenarios for ETSI TC M2M became recently an issue and stakeholders got invited to contribute to a plan for testing in 2012. According to eDIANA findings feedback was given on possibilities for testing the various interfaces and to sketch a test application. It turned out that interoperable test system deployments would be more sustainable and would allow more and better conformance testing.

ETSI TC M2M is targeting the issue of SDO and SIG coordination and collaboration, one of the issues the eDIANA project brought up. For example there is the open question where the security requirements are being specified. E.g. the need for embedded security could be answered by soldering the UICC. The request came from the GSMA into the requirements group of ETSI TC SCP. ETSI TC SCP has not yet reached a conclusion on the embedded UICC, since there are two different proposals. A study idem was proposed in 3GPP SA1, but it has not yet been started. Finally the solution needs to be agreed between GSMA, ETSI 3GPP and ETSI TC SCP and further SDOs and SIGs

CENELEC TC 13 WG02 (Gyozo Kmethy) collaborates with ETSI TC M2M (Marylin Arndt) on mutual understanding and common actions to analyze how in detail in the scope of the CENELEC TC 13 the M2M architecture as proposed by ETSI can be addressed, knowing that regarding meters, a collection of the standard sets has already been selected, DLMS/COSEM object model and application layer are used at the top of this these standards and current smart meters already in the market place complying with one or several of these standards which should not be discarded in the future. Currently a 3 steps approach has been proposed to start with the following scenarios:


D9.3-A

January 2012

1. Meters and Gateways are ETSI M2M compliant,

2. Meters are not ETSI M2M compliant but the Gateways are,

3. Meters and Gateways are not ETSI M2M compliant.

Both SDOs are stating according to eDIANA’s findings that it is necessary:

To ensure the stability of the protocols selected, because the lifetime of the meters on the field is about 15years. One cannot rely on firmware upgrade functionalities without cost penalty. This is valid in particular for all communication modules.

To solve the issue that several protocols proposed by CENELC TC13 WG02 standardization landscape are not IP protocol whereas IP protocol is requested by ETSI M2M architecture.

In line with eDIANA results it is proposed to make firstly the data concentrator ETSI M2M compliant by using DLMS/COSEM. Furthermore it will be envisaged to consider security not only on the transport level, but also on the application layer level. The work in both SDO working groups is ongoing.


D9.3-A

January 2012

5. Acknowledgements

The eDIANA Consortium would like to acknowledge the financial support of the European Commission and National Public Authorities from Spain, Netherlands, Germany, Finland and Italy under the ARTEMIS Joint Technology Initiative.


D9.3-A

January 2012

6. References

1. European Commission DG Enterprise and Industry: M/441 Standardisation mandate to CEN, CENELEC and ETSI in the field of measuring instruments for the development of an open architecture for utility meters involving communication protocols enabling interoperability March 12th 2009

2. European Commission DG Energy: M/490 Standardisation mandate to European Standardisation Organisations (ESOs) to support European Smart Grid deployment March 11th 2011

3. CEN, CENELEC, ETSI Standardization mandate to CEN, CENELEC and ETSI in the field of measuring instruments for the development of an open architecture for utility meters involving communication protocols enabling interoperability M/441 SM-CG final report (Version 0.7 – 2009-12-10)

4. Final report of the CEN/CENELEC/ETSI Joint Working Group on Standards for Smart Grids 2011-06-05

5. Comments resolution on SGCG_Sec0030_DC Programme of standardisation work for the Smart Grid 2011-12-21

6. SGCG Report Programme of standardisation work for the Smart Grid v1.4 2011-12-21

7. Mandate M/441 - Smart Meters – Co-ordination Group - prTR50xxx - Functional reference architecture for smart metering systems - Draft v0.4.3

8. IEC 61968-14, System Interfaces for distribution management – XML Naming and Design Rules

9. IEC 61970, Energy management system application program interface (EMS-API)

10. IEC 61968, Application integration at electric utilities – System interfaces for distribution management

11. ETSI TS 102 221 Smart Cards – UICC-Terminal interface – Physical and logical characteristics

12. ETSI TS 102 223 Smart Cards – Card Application Toolkit (CAT)

13. ETSI TS 102 671 Smart Cards – Machine to Machine UICC – Physical and logical characteristics

14. ETSI TS 102 225 Smart Cards – Secured packet structure for UICC based applications

15. ETSI TS 102 484 Smart Cards – Secure channel between a UICC and an end-point terminal

16. 3GPP TS 41.101 Technical Specifications and Technical Reports for a GERAN-based 3GPP system


D9.3-A

January 2012

17. 3GPP TS 21.101 Technical Specifications and Technical Reports for a UTRAN-based 3GPP system

18. 3GPP TS 21.201 Technical Specifications and Technical Reports for an Evolved Packet System (EPS) based 3GPP system

19. 3GPP TS 21.202 Technical Specifications and Technical Reports relating to the Common IP Multimedia Subsystem (IMS)

20. ETSI TR 187 010 V2.1.1, Telecommunications and Internet converged Services and Protocols for Advanced Networking (TISPAN) – NGN SECurity (SEC) – Requirements

21. IEC 62351, Power systems management and associated information exchange – data communication security

22. eDIANA D9.1B Report on analysis and prioritization of white spots opportunities 2011-04-28

23. eDIANA D9.2-A Analysis report and detailed activity plan for the prioritized actions 2012-01-31

24. ETSI TS 102.921 v0.8.4 Machine- to- Machine communications (M2M); mla, dla and mld interfaces 2011-10

25. ETSI TR 102 725

26. ETSI TS 102 690

27. W3C Recommendation 28 October 2004 "XML Schema Part 2: Datatypes Second Edition" http://www.w3.org/TR/xmlschema-2/

28. W3C Recommendation 10 March 2011 "Efficient XML Interchange (EXI) Format 1.0" http://www.w3.org/TR/exi/

http://www.w3.org/TR/exi/

d9.3-a: report on pre-normative research and...

Documents