Section 14
Security
14.7
14.7.1
14.7.2
608
The binary input signal LOCK controlling the function is defined in ACT or SMT:
Binary input
1
0
Denial of service DOS
Functionality
The Denial of service functionality limits overload on the IED produced by heavy
Ethernet network traffic. The communication facilities must not be allowed to
compromise the primary functionality of the device. All inbound network traffic
will be quota controlled so that too heavy network loads can be controlled. Heavy
network load might for instance be the result of malfunctioning equipment
connected to the network.
Operation principle
The denial of service protection is designed to protect the IED from overload when
exposed to high amount of Ethernet network traffic. The communication facilities
must not be allowed to compromise the primary functionality of the device. All
inbound network traffic is quota controlled, so that a too heavy network load can be
controlled. Heavy network load might for instance be the result of malfunctioning
equipment connected to the network.
The denial of service functionality in SCHLCCH and RCHLCCH measures the
IED load from communication and, if necessary, limits it from jeopardizing the
IED's control and protection functionality. The function has the following outputs:
•
RCHLCCH
•
LinkAUp and LinkBUp indicates the Ethernet link status for the rear
ports channel A and B
•
DOSLINKA and DOSLINKB indicates that DOS functionality is active
on channel A and channel B
•
DOSALARM indicates that DOS functionality is active on the access
point
•
SCHLCCH
•
LINKUP indicates the Ethernet link status
•
DOSALARM indicates that DOS functionality is active on the access
point
1MRK 511 424-UEN B
Function
Activated
Deactivated
GUID-407250CA-0076-41E1-AD2D-434077AC3F1D v5
GUID-94340D4F-4D32-409B-BA1A-BA49A0C3F297 v6
Bay control REC650 2.2 IEC
Technical manual