Requirements or recommendations? Sorting out NERC CIP, NIST, and DOE cybersecurity

2011 64th Annual Conference for Protective Relay Engineers

Volumn , Issue , 2011, Pages 328-333

  Dolezilek, David ^a   Hussey, Laura ^a  

^a SCHWEITZER ENGINEERING LABORATORIES INC   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

ASYNCHRONOUS DATA; BULK POWER SYSTEMS; COMMUNICATIONS NETWORKS; COMPUTER HACKING; CONTROL APPLICATIONS; CRITICAL INFRASTRUCTURE PROTECTION; CYBER SECURITY; CYBER-ATTACKS; DEMAND RESPONSE; DISTRIBUTION AUTOMATION; ECONOMIC STABILITY; ELECTRIC POWER; ELECTRIC RELIABILITY; ENERGY INDEPENDENCE AND SECURITY ACT OF 2007; ESSENTIAL SERVICES; FEDERAL GOVERNMENTS; INFORMATION EXCHANGES; INFORMATION SECURITY MANAGEMENTS; MESSAGE EXCHANGE; MONITORING SYSTEM; NATIONAL INSTITUTE OF STANDARDS AND TECHNOLOGY; NATIONAL SECURITY; NORTH AMERICAN; OIL AND GAS; REAL TIME; REGULATORY REQUIREMENTS; SMART GRID; STATE MEASUREMENTS; SUPERVISORY CONTROL AND DATA ACQUISITION; SYNCHRONOUS DATA EXCHANGE; SYNCHROPHASORS; TELEPROTECTION;

AUTOMATION; COMPUTER CRIME; CRITICAL INFRASTRUCTURES; ELECTRIC UTILITIES; ENGINEERS; INFORMATION DISSEMINATION; PERSONAL COMPUTING; RELAY PROTECTION; SCADA SYSTEMS; SECURITY OF DATA; STANDARDS;

SMART POWER GRIDS;

EID: 80054980847     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/CPRE.2011.6035634     Document Type: Conference Paper

References (12)

1. Energy Policy Act of 2005, Pub. L. No 109-58, Title XII, Subtitle A, 119 Stat. 594, 941 (2005).
2. NERC Rules of Procedure. Available: http://www.nerc.com/page.php?cid= 1|8|169.
3. Mandatory Reliability Standards for Critical Infrastructure Protection, Federal Energy Regulatory Commission, Order No. 706, 73 FR 7368 (Feb. 7, 2008), 122 FERC 61,040, 123 FERC 61,174 (2008).
4. NERC Project 2008-06, Cyber Security Order 706. Available: http://www.nerc.com/filez/standards/Project-2008-06-Cyber-Security.html.
5. E-Government Act of 2002, Pub. L. 107-347, Title III, 116 Stat. 2899 (2002).
6. "Guide to NIST Information Security Documents." Available: http://csrc.nist.gov/publications/CSD-DocsGuide.pdf.
7. "Risk Management Framework," National Institute of Standards and Technology (2002). Available: http://csrc.nist.gov/groups/SMA/fisma/ framework.html.
8. "Minimum Security Requirements for Federal Information and Information Systems," FIPS Publication 200, National Institute of Standards and Technology. Available: http://csrc.nist.gov/publications/fips/fips200/FIPS- 200-final-march.pdf.
9. D. Dolezilek, "Case Study Examples of Interoperable Ethernet Communications Within Distribution, Transmission, and Wide-Area Control Systems," proceedings of Grid-Interop, Denver, CO, November 2009.
10. Energy Independence and Security Act of 2007, Pub. L. 110-140 (2007).
11. "Catalog of Control Systems Security: Recommendations for Standards Developers," U.S. Department of Homeland Security, U.S. Computer Emergency Readiness Team, September 2009. Available: http://www.us-cert.gov/control- systems/pdf/Catalog-of-Control-Systems-Security-Recommendations.pdf.
12. E. O. Schweitzer, III, "Ten Tips for Improving the Security of Your Assets." Available: http://www.selinc.com.