Threshold Anomaly Detection Procedures

Means the SEC Subsidiary Document of that name set out in Appendix AA, which has the purpose described in Section G6.1 (Threshold Anomaly Detection Procedures).

The “Threshold Anomaly Detection Procedures” shall be a SEC Subsidiary Document of that name
which:
(a) shall describe the means by which:
(i) each User shall be able securely to notify the DCC of the Anomaly Detection Thresholds set by
that User, and of any exceptions that are applicable to each such Anomaly Detection
Threshold;
(ii) the DCC shall be able securely to notify each User when a communication relating to that User
is quarantined, or deleted from the DCC Systems, by the DCC; and
(iii) each such User shall be able securely to notify the DCC whether it considers that a
communication which has been quarantined should be deleted from the DCC Systems or
processed by the DCC;
(b) shall determine the standard of security at which Users and the DCC must be able to notify each
other in order for such notifications to be considered, for the purposes of paragraph (a), to have
been given ‘securely’;
(c) may make provision relating to the setting by Users and the DCC of Anomaly Detection Thresholds,
including the issue of guidance by the DCC in relation to the appropriate level at which Anomaly
Detection Thresholds should be set by Users; and
(d) may make provision relating to the actions to be taken by Users and the DCC in cases in which an
Anomaly Detection Threshold has been exceeded, which:
(i) in the case of any SMETS1 Service Request which contains a data value that is inconsistent
with a maximum or minimum set in accordance with paragraph (b)(ii) of the definition of
Anomaly Detection Threshold in Section A1 (Definitions), shall include the deletion by the DCC
of that Service Request and notification of the User that the deletion has taken place; and
(ii) in any other case, may include provision for communications to be quarantined and remedial
action to be taken.

« Back to Glossary Index