A Cyber Security Self-Assessment Method for Nuclear Power Plants

Glantz, Clifford S; Coles, Garill A; Bass, Robert B

Title: A Cyber Security Self-Assessment Method for Nuclear Power Plants

Conference · Mon Nov 01 00:00:00 EST 2004

OSTI ID:898641

Glantz, Clifford S; Coles, Garill A; Bass, Robert B

A cyber security self-assessment method (the Method) has been developed by Pacific Northwest National Laboratory. The development of the Method was sponsored and directed by the U.S. Nuclear Regulatory Commission. Members of the Nuclear Energy Institute Cyber Security Task Force also played a substantial role in developing the Method. The Method's structured approach guides nuclear power plants in scrutinizing their digital systems, assessing the potential consequences to the plant of a cyber exploitation, identifying vulnerabilities, estimating cyber security risks, and adopting cost-effective protective measures. The focus of the Method is on critical digital assets. A critical digital asset is a digital device or system that plays a role in the operation, maintenance, or proper functioning of a critical system (i.e., a plant system that can impact safety, security, or emergency preparedness). A critical digital asset may have a direct or indirect connection to a critical system. Direct connections include both wired and wireless communication pathways. Indirect connections include sneaker-net pathways by which software or data are manually transferred from one digital device to another. An indirect connection also may involve the use of instructions or data stored on a critical digital asset to make adjustments to a critical system. The cyber security self-assessment begins with the formation of an assessment team, and is followed by a six-stage process.

OSTI does not have a digital full text copy available. For more information, please see document availability, search WorldCat, or search Google Scholar.

Cite

Export

Save

Research Organization:: Pacific Northwest National Lab. (PNNL), Richland, WA (United States)

Sponsoring Organization:: USDOE

DOE Contract Number:: AC05-76RL01830

OSTI ID:: 898641

Report Number(s):: PNNL-SA-42797; 401001100; TRN: US0701689

Resource Relation:: Conference: Transactions of the American Nuclear Society , 91:45-6

Country of Publication:: United States

Language:: English

Similar Records

Nuclear Power Plant Cyber Security Discrete Dynamic Event Tree Analysis (LDRD 17-0958) FY17 Report

Technical Report · Fri Sep 01 00:00:00 EDT 2017 · OSTI ID:898641

Wheeler, Timothy A.; Denman, Matthew R.; Williams, R. A.; +2 more

Evaluation Report on "The Department's Unclassified Cyber Security Program"

Technical Report · Thu Oct 01 00:00:00 EDT 2009 · OSTI ID:898641

Assessing Vulnerabilities, Risks, and Consequences of Damage to Critical Infrastructure

Technical Report · Fri Feb 04 00:00:00 EST 2011 · OSTI ID:898641

Suski, N; Wuest, C

Related Subjects

21 SPECIFIC NUCLEAR REACTORS AND ASSOCIATED PLANTS
29 ENERGY PLANNING
POLICY AND ECONOMY
COMMUNICATIONS
DIGITAL SYSTEMS
MAINTENANCE
NUCLEAR ENERGY
NUCLEAR POWER PLANTS
SAFETY
SECURITY
cyber security
digital assets
critical systems
risk assessment
vulnerability assessment

Title: A Cyber Security Self-Assessment Method for Nuclear Power Plants

Citation Formats

Similar Records

Related Subjects