skip to main content
OSTI.GOV title logo U.S. Department of Energy
Office of Scientific and Technical Information

Title: Cybersecurity and Resilience


This brochure focuses on cybersecurity capabilities at the ESIF.

Publication Date:
Research Org.:
National Renewable Energy Lab. (NREL), Golden, CO (United States)
Sponsoring Org.:
USDOE Energy Systems Integration Facility (ESIF) Communications
OSTI Identifier:
Report Number(s):
DOE Contract Number:
Country of Publication:
United States
24 POWER TRANSMISSION AND DISTRIBUTION; cybersecurity; ESIF; ESI; Energy Systems Integration

Citation Formats

. Cybersecurity and Resilience. United States: N. p., 2016. Web.
. Cybersecurity and Resilience. United States.
. Tue . "Cybersecurity and Resilience". United States. doi:.
title = {Cybersecurity and Resilience},
author = {},
abstractNote = {This brochure focuses on cybersecurity capabilities at the ESIF.},
doi = {},
journal = {},
number = ,
volume = ,
place = {United States},
year = {Tue Feb 09 00:00:00 EST 2016},
month = {Tue Feb 09 00:00:00 EST 2016}
  • Small electricity utilities -- those with less than 100 employees or 50,000 meters -- provide essential services to large parts of the United States while facing a number of challenges unique to their mission. For instance, they often serve areas that are sparsely populated, meaning that their per-customer cost to provide service is higher. At the same time, they often serve customers that have moderate or fixed incomes, meaning that they are under strong pressure to keep costs down. This pressure puts them on a strict budget and creates a need for innovative solutions to common problems. Further, their servicemore » areas may include extreme climates, making severe weather events more frequent and their aftermaths more expensive to address. This guide considers challenges that small utilities face while ensuring the reliability, resilience, and cybersecurity of their electric service; approaches to address those challenges using existing guidance documents; ways that the federal government could provide support in these areas.« less
  • Government and corporate computer systems are attacked, networks are penetrated by hackers, and enterprises are protected by demilitarized zones. Language that until recently was used to describe security and warfare in military settings has now become common-place in cybersecurity discussions. The concepts of pre-emptive attack, counterattack and offensive defense fit the linguistic cultural thread of security in cyberspace, at least in part due to the taxonomy adopted by cybersecurity as a discipline.
  • In recent years, the nation has recognized that critical infrastructure protection should consider not only the prevention of disruptive events, but also the processes that infrastructure systems undergo to maintain functionality following disruptions. This more comprehensive approach has been termed critical infrastructure resilience (CIR). Given the occurrence of a particular disruptive event, the resilience of a system to that event is the system's ability to efficiently reduce both the magnitude and duration of the deviation from targeted system performance levels. Sandia National Laboratories (Sandia) has developed a comprehensive resilience assessment framework for evaluating the resilience of infrastructure and economic systems.more » The framework includes a quantitative methodology that measures resilience costs that result from a disruption to infrastructure function. The framework also includes a qualitative analysis methodology that assesses system characteristics that affect resilience in order to provide insight and direction for potential improvements to resilience. This paper describes the resilience assessment framework. This paper further demonstrates the utility of the assessment framework through application to a hypothetical scenario involving the disruption of a petrochemical supply chain by a hurricane.« less