Title :
Scaling issues for NERC CIP electronic security perimeter compliance assessment (extended abstract)
Author_Institution :
Dept. of Electr. & Comput. Eng., Univ. of Illinois, Urbana, IL, USA
Abstract :
Electric utilities are audited periodically for compliance with the North American Energy Reliability Corporation´s (NERC) requirements. The Critical Infrastructure Protection (CIP) area contains requirements related to protection of critical cyber assets, and section 005, gives requirements related to electronic access to so-called “critical cyber assets”. Anticipated changes in the scope of what is critical will likely increase the number of devices utilities are responsible for demonstrating limited access. Automated means of doing accessibility analysis are possible using a tool such as NetAPT, but as the size of the network to analyze grows, the algorithmic complexity of doing the analysis grows rapidly. This paper describes the issues and techniques that may be used to aid both utilities and auditors to gain confidence that a utility is in compliance with access control requirements. This abstract outlines points made in a panel presentation at the 2012 IEEE PES Conference on Innovative Smart Grid Technologies.
Keywords :
access control; computer network management; critical infrastructures; power engineering computing; power system management; power system reliability; smart power grids; 2012 IEEE PES conference; NERC CIP electronic security perimeter compliance assessment; North American Energy Reliability Corporation; access control; critical cyber asset; critical infrastructure protection area; electronic access; innovative smart grid technology; Access control; Computational modeling; Computers; Conferences; Power system reliability; Reliability; computer security; networked control systems; power system security;
Conference_Titel :
Innovative Smart Grid Technologies (ISGT), 2012 IEEE PES
Conference_Location :
Washington, DC
Print_ISBN :
978-1-4577-2158-8
DOI :
10.1109/ISGT.2012.6175565
