Abstract
The U.S. Federal Energy Regulatory Commission (FERC) approved the first critical infrastructure protection (CIP) standards for transmission and generation providers in January 2008. These standards require utilities to implement cyber security measures to protect assets critical to the reliability of the bulk electric system. Many utilities experienced significant organizational challenges to implement these standards for full compliance by July 2009. Particularly complex was critical asset identification and establishing adequate physical and electronic security perimeters. This paper reviews the current industry approaches to meet the standards and difficulties identified with implementations to three specific standards (CIP 002, 004, and 006). It highlights the differences between previous research on critical asset identification in the U.S. electric grid and the current industry guideline approach. These differences reveal potential vulnerabilities that must be addressed and mitigated to adequately protect the electric grid's critical assets, leading utilities to implement additional measures to assure security.
Sign-in/Register to access full text options 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callDisclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
