SlideShare a Scribd company logo

Power station monitoring and cyber security

Thames Global Consultants, profile picture
Thames Global Consultants

Power plants are increasingly monitoring equipment using internet-connected systems, but this connectivity also increases cybersecurity risks. A computer virus once infiltrated a US power plant network through an infected USB drive, shutting down the plant for three weeks. To address such risks, the US Federal Energy Regulatory Commission proposes strengthening cybersecurity standards for power grids, including expanding protections to more assets and implementing new security controls. However, many control systems still use outdated software and operating systems without adequate protection.

TechnologyBusiness
1 of 16
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
Improving Power Plant Monitoring An essential step in improving power plant efficiency and operational performance
Trends for Equipment Monitoring For over a decade a wide range of equipment in power plants have been connected to specialist maintenance engineers at equipment suppliers by the Internet and other communication networks. Monitoring equipment located throughout the plant is linked to the power plant’s operating systems - continually monitoring the performance and status of the equipment.
Extract from GE Brochure of Power Plant Monitoring When equipment starts to deviate from normal and efficient operating parameters a warning will be displayed in the power plant’s control room – and in many cases an email or other alert containing data is dispatched to the appropriate maintenance staff [who may be working with the equipment suppliers]. The maintenance engineers and equipment suppliers could be based in different countries or other global regions.
These alerts could prompt immediate action and maintenance – which could avoid an unplanned outage of the equipment [and possibly the while plant]. These new systems have led to improvements in plant operational efficiency and performance – and should be considered as an essential component of a clean coal technology strategy.
Monitoring and IT Systems evolve New and evolving networks and software can allow far greater degrees of integration of: • Plant databases, • Real-time equipment operating performance data, • Enterprise social networks (including online chats and/or voice mail on desktop and mobile systems], • As well as many other bespoke features (such as specialist Apps).
An example of these new evolving systems is Chatter – developed by the IT company Salesforce.com These interactive systems can allow significant improvements in plant efficiency and operating performance. Chatter and other similar systems are being rapidly adopted by many thousands of companies each year. But linking all these features via the Internet also creates a new potential threat for power plant and grid system operators – Cyber Security.
Cyber Security A key issue for all power plants and grid systems
Hackers at work? Hackers can be based in any country. They can have several goals – such as causing malicious damage to computer systems or they attempt to steal valuable intellectual property [IP]. Are your plant and networks vulnerable to a cyber attack?
A computer virus attacked a turbine control system at a US power company when a technician unknowingly inserted an infected USB computer drive into the network, keeping a plant off-line for three weeks, according to a report posted on a US government website. The [US] Department of Homeland Security [DHS] report did not identify the plant but said criminal software, which is used to conduct financial crimes such as identity theft, was behind the incident. It was introduced by an employee of a third- party contractor that does business with the utility, according to the agency. October 2012 US Power Plant Incident
The DHS reported the incident on its website, which occurred in October 2012 - along with a second incident which involved a more sophisticated virus. This report was released to coincide with a high- profile cyber crime conference held in Miami [S4] to review emerging threats against power plants, water utilities and critical infrastructure. In addition to not identifying the plants, the DHS declined to say where they are located. The report did not say who the DHS believed was behind the sophisticated virus or if it was capable of sabotage. The DHS uses the term "sophisticated" to describe a wide variety of malicious software that is designed to do things besides commit routine cyber-crimes. They include viruses capable of espionage and sabotage.
It is worth noting that the infamous Stuxnet virus was delivered to its target in Iran via a USB drive. Attackers use that technique to place malicious software on computer systems that are "air gapped" or cut off from the public Internet.
Antiquated Software and Aging Systems Recent surveys have also highlighted the fact that many critical infrastructure control systems run on Windows XP and Windows 2000 - operating systems that were designed more than a decade ago. Some Internet-linked equipment still has no cyber protection at all. Many systems still have "auto run" features – which are enabled by default. This makes them an easy target for infection - because malicious software loads as soon as a USB is plugged into the system unless operators have changed that setting.
Shodan The search engine Shodan [Sentient Hyper- Optimized Data Access Network] has been developed to identify a huge range of devises linked to the web and their vulnerability See: http://www.shodanhq.com/
US To Take More Action Press Release from: [US] Federal Energy Regulatory Commission https://www.ferc.gov/ FERC Proposes to Adopt New Cyber Security Standards 18th April 2013 The Federal Energy Regulatory Commission (FERC) moved to strengthen the cyber security of the bulk electric system today with a proposed rule that would extend the scope of the systems that are protected by cyber security standards. The proposal, submitted in January 2013 by the North American Electric Reliability Corporation (NERC), constitutes version 5 of the Critical Infrastructure Protection Reliability Standards, or CIP standards. The proposal is intended to improve the security posture of responsible entities and represents an improvement in the CIP standards.
The proposal includes 12 requirements with new cyber security controls that address Electronic Security Perimeters, Systems Security Management, Incident Reporting and Response Planning, Recovery Plans for BES Cyber Systems, and Configuration Change Management and Vulnerability Assessments. It also would use a new, tiered approach to identifying and classifying bulk electric system cyber assets that is a step toward applying CIP protections more comprehensively to better assure protection of the bulk electric system. The Commission is seeking comment on certain language in the proposed CIP version 5 Standards to alleviate concerns regarding the potential ambiguity and, ultimately, enforceability of the proposed Standards. NERC is the FERC-certified Electric Reliability Organization for the bulk electric system. Comments on the proposed rule are due 60 days after publication in the Federal Register.
Are your power plants and networks safe?

More Related Content

PDF
Utilization of Encryption for Security in SCADA Networks
International Journal of Engineering Inventions www.ijeijournal.com
 
PDF
Viewfinity Application Control and Monitoring 2015
Joseph Iannelli
 
PDF
Medical Device Cybersecurity : A Regulatory Perspective
Jon Lendrum
 
PPTX
IoT Threat Intel - Steppa
Steppa Cyber Security
 
PDF
Critical Infrastructure Protection against targeted attacks on cyber-physical...
Enrique Martin
 
PDF
New technologies security threats (Brussels 2014)
Alexey Kachalin
 
PDF
World best web apps security and Active detection of malicious link
임채호 박사님
 
PPTX
CYBER THREAT ASSESSMENT
Lan & Wan Solutions
 
Utilization of Encryption for Security in SCADA Networks
International Journal of Engineering Inventions www.ijeijournal.com
 
Viewfinity Application Control and Monitoring 2015
Joseph Iannelli
 
Medical Device Cybersecurity : A Regulatory Perspective
Jon Lendrum
 
IoT Threat Intel - Steppa
Steppa Cyber Security
 
Critical Infrastructure Protection against targeted attacks on cyber-physical...
Enrique Martin
 
New technologies security threats (Brussels 2014)
Alexey Kachalin
 
World best web apps security and Active detection of malicious link
임채호 박사님
 
CYBER THREAT ASSESSMENT
Lan & Wan Solutions
 

What's hot (20)

PDF
Application security Best Practices Framework
Sujata Raskar
 
DOCX
WHAT IS SOFTWARE ENGINEERING (CYBERSECURITY)
ChristopherAntonius
 
PPT
Managing System Security
PIREH
 
PDF
Wireless security trends
Ashmar Kalangottil
 
PPTX
20170112 Working Group Assessment Mandate Presentation DRAFT V1[2]
Walter Richard Sweeney
 
PPTX
Securing Industrial Control Systems
Eric Andresen
 
PPTX
Security Issues in SCADA based Industrial Control Systems
aswanthmrajeev112
 
PPT
386sum08ch8
virtualmemory
 
PPT
Securing information systems
Prof. Othman Alsalloum
 
PDF
Analytics for Smart Grid Cyber security
Boston Global Forum
 
PDF
IRJET-Managing Security of Systems by Data Collection
IRJET Journal
 
PDF
Healthcare_Security_White_Paper
James Maudlin
 
PDF
YUDU - Managing a Breach (LDSC Cyber Themed Evening)
Tom Lejava
 
PPTX
Back to the Office: Privacy and Security Solutions to Compliance Issues for 2...
Aggregage
 
PPTX
Presentation1 160729072733
SIVA SASTHRI
 
PDF
Indexing Building Evaluation Criteria
IJERA Editor
 
PPTX
Securing Industrial Control Systems - CornCON II: The Wrath Of Corn
Eric Andresen
 
PPTX
Security and Control Issues in Information System
Daryl Conson
 
PPT
SGSB Webcast 4: Smart Grid Security Standards in Mid 2010
Andy Bochman
 
PPTX
SeaCat: and SDN End-to-end Application Containment ArchitecTure
US-Ignite
 
Application security Best Practices Framework
Sujata Raskar
 
WHAT IS SOFTWARE ENGINEERING (CYBERSECURITY)
ChristopherAntonius
 
Managing System Security
PIREH
 
Wireless security trends
Ashmar Kalangottil
 
20170112 Working Group Assessment Mandate Presentation DRAFT V1[2]
Walter Richard Sweeney
 
Securing Industrial Control Systems
Eric Andresen
 
Security Issues in SCADA based Industrial Control Systems
aswanthmrajeev112
 
386sum08ch8
virtualmemory
 
Securing information systems
Prof. Othman Alsalloum
 
Analytics for Smart Grid Cyber security
Boston Global Forum
 
IRJET-Managing Security of Systems by Data Collection
IRJET Journal
 
Healthcare_Security_White_Paper
James Maudlin
 
YUDU - Managing a Breach (LDSC Cyber Themed Evening)
Tom Lejava
 
Back to the Office: Privacy and Security Solutions to Compliance Issues for 2...
Aggregage
 
Presentation1 160729072733
SIVA SASTHRI
 
Indexing Building Evaluation Criteria
IJERA Editor
 
Securing Industrial Control Systems - CornCON II: The Wrath Of Corn
Eric Andresen
 
Security and Control Issues in Information System
Daryl Conson
 
SGSB Webcast 4: Smart Grid Security Standards in Mid 2010
Andy Bochman
 
SeaCat: and SDN End-to-end Application Containment ArchitecTure
US-Ignite
 
Ad

Viewers also liked (20)

PDF
Zigbee based parameter monitoring and controlling system for induction machine
Naqeeb Ullah Kakar
 
DOCX
Power plant parameters monitoring & controlling using x beezig bee
Pvrtechnologies Nellore
 
PDF
Bi directional speed control of dc motor and stepper motor through mat lab us...
eSAT Journals
 
PDF
Nokia_Sub-station_Automation_White_Paper_EN
Juan Boggiano
 
PPTX
Presentation on electrical and automation system of cgl plant (CRM-2) JSW KR.
neeraj mishra
 
PPT
Voltage & frequency monitoring through lcd
HariKishore Karanapu
 
PDF
Power Plant Performance Monitoring and Trend Analysis
Md. Moynul Islam
 
PPTX
Substation monitoring1
buckky
 
PDF
Using Kittiwake Oil Test Center in Oil Analysis Laboratory
Md. Moynul Islam
 
DOCX
BHELreport
Vinay R
 
PDF
Automation- Metering, Sub Station & Industrial Automation
EPC Solutions LLP
 
PPTX
Power system automation
Guider Lee
 
DOC
SCADA PROJECTS ABSTRACT-Scada for power station substation monitoring and aut...
ASHOKKUMAR RAMAR
 
PPT
Stepper motor
sethuvalmiki
 
PPTX
Stepper motor
Speaking Technology
 
PPT
slide on stepper motor
Samikshya Kar
 
PPT
Steper Motor Control Through Wireless
Pawan Bahuguna
 
PPT
AUTOMATIC IRRIGATION SYSTEM USING ARDUINO UNO
Rizki Verdian
 
DOCX
automatic plant irrigation using aurdino and gsm technology
thamil arasan
 
PPTX
Stepper motor control
Jatin Arora
 
Zigbee based parameter monitoring and controlling system for induction machine
Naqeeb Ullah Kakar
 
Power plant parameters monitoring & controlling using x beezig bee
Pvrtechnologies Nellore
 
Bi directional speed control of dc motor and stepper motor through mat lab us...
eSAT Journals
 
Nokia_Sub-station_Automation_White_Paper_EN
Juan Boggiano
 
Presentation on electrical and automation system of cgl plant (CRM-2) JSW KR.
neeraj mishra
 
Voltage & frequency monitoring through lcd
HariKishore Karanapu
 
Power Plant Performance Monitoring and Trend Analysis
Md. Moynul Islam
 
Substation monitoring1
buckky
 
Using Kittiwake Oil Test Center in Oil Analysis Laboratory
Md. Moynul Islam
 
BHELreport
Vinay R
 
Automation- Metering, Sub Station & Industrial Automation
EPC Solutions LLP
 
Power system automation
Guider Lee
 
SCADA PROJECTS ABSTRACT-Scada for power station substation monitoring and aut...
ASHOKKUMAR RAMAR
 
Stepper motor
sethuvalmiki
 
Stepper motor
Speaking Technology
 
slide on stepper motor
Samikshya Kar
 
Steper Motor Control Through Wireless
Pawan Bahuguna
 
AUTOMATIC IRRIGATION SYSTEM USING ARDUINO UNO
Rizki Verdian
 
automatic plant irrigation using aurdino and gsm technology
thamil arasan
 
Stepper motor control
Jatin Arora
 
Ad

Similar to Power station monitoring and cyber security (20)

PDF
David Blanco ISHM 8280-2016
David Blanco
 
PDF
Industrial Control Security USA Sacramento California Oct 13/14
James Nesbitt
 
PDF
Dhana Raj Markandu: Control System Cybersecurity - Challenges in a New Energy...
Dhana Raj Markandu
 
PDF
Need for Improved Critical Industrial Infrastructure Protection
William McBorrough
 
PDF
Industrial Control Systems Security and Resiliency Practice and Theory Craig ...
tworkaireyl9
 
PPTX
Defending against industrial malware
Ayed Al Qartah
 
PDF
Standards based security for energy utilities
Nirmal Thaliyil
 
PDF
Digital danger zone tackling cyber security
John Kingsley
 
PDF
Digital danger zone tackling cyber security
iFluidsEng
 
PDF
Cyber security white paper final PMD 12_28_16
Dave Darnell
 
PDF
SCADA White Paper March2012
James Collinge, CISSP
 
PDF
Industrial Control Systems Security and Resiliency Practice and Theory Craig ...
kocyiumqh184
 
PDF
IRJET- Edge Deployed Cyber Security Hardware Architecture for Energy Delivery...
IRJET Journal
 
PDF
115.pdf
AhmHamza
 
DOCX
The efficacy and challenges of scada and smart grid integration
Faizal Faizi
 
PDF
L479096.pdf
American Research Journal of Humanities & Social Science
 
PDF
CYBER SECURITY TRANDS FOR FUTURE SMART GRID SYSTEMS
George Wainblat
 
PDF
Cyber-Defensive Architecture for Networked Industrial Control Systems
IJEACS
 
PDF
Cyber security regulation strictly regulated by nrc feb 2013
Yury Chemerkin
 
PDF
Conférence ENGIE ACSS 2018
African Cyber Security Summit
 
David Blanco ISHM 8280-2016
David Blanco
 
Industrial Control Security USA Sacramento California Oct 13/14
James Nesbitt
 
Dhana Raj Markandu: Control System Cybersecurity - Challenges in a New Energy...
Dhana Raj Markandu
 
Need for Improved Critical Industrial Infrastructure Protection
William McBorrough
 
Industrial Control Systems Security and Resiliency Practice and Theory Craig ...
tworkaireyl9
 
Defending against industrial malware
Ayed Al Qartah
 
Standards based security for energy utilities
Nirmal Thaliyil
 
Digital danger zone tackling cyber security
John Kingsley
 
Digital danger zone tackling cyber security
iFluidsEng
 
Cyber security white paper final PMD 12_28_16
Dave Darnell
 
SCADA White Paper March2012
James Collinge, CISSP
 
Industrial Control Systems Security and Resiliency Practice and Theory Craig ...
kocyiumqh184
 
IRJET- Edge Deployed Cyber Security Hardware Architecture for Energy Delivery...
IRJET Journal
 
115.pdf
AhmHamza
 
The efficacy and challenges of scada and smart grid integration
Faizal Faizi
 
L479096.pdf
American Research Journal of Humanities & Social Science
 
CYBER SECURITY TRANDS FOR FUTURE SMART GRID SYSTEMS
George Wainblat
 
Cyber-Defensive Architecture for Networked Industrial Control Systems
IJEACS
 
Cyber security regulation strictly regulated by nrc feb 2013
Yury Chemerkin
 
Conférence ENGIE ACSS 2018
African Cyber Security Summit
 

Recently uploaded (20)

PPTX
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
PPTX
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
PDF
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
PDF
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
PPTX
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PPT
Teaching material agriculture food technology
LiaRayya
 
PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PDF
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PDF
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
PDF
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
PDF
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
Approach and Philosophy of On baking technology
30anthuong17
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
Teaching material agriculture food technology
LiaRayya
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 

Power station monitoring and cyber security

  • 1. Improving Power Plant Monitoring An essential step in improving power plant efficiency and operational performance
  • 2. Trends for Equipment Monitoring For over a decade a wide range of equipment in power plants have been connected to specialist maintenance engineers at equipment suppliers by the Internet and other communication networks. Monitoring equipment located throughout the plant is linked to the power plant’s operating systems - continually monitoring the performance and status of the equipment.
  • 3. Extract from GE Brochure of Power Plant Monitoring When equipment starts to deviate from normal and efficient operating parameters a warning will be displayed in the power plant’s control room – and in many cases an email or other alert containing data is dispatched to the appropriate maintenance staff [who may be working with the equipment suppliers]. The maintenance engineers and equipment suppliers could be based in different countries or other global regions.
  • 4. These alerts could prompt immediate action and maintenance – which could avoid an unplanned outage of the equipment [and possibly the while plant]. These new systems have led to improvements in plant operational efficiency and performance – and should be considered as an essential component of a clean coal technology strategy.
  • 5. Monitoring and IT Systems evolve New and evolving networks and software can allow far greater degrees of integration of: • Plant databases, • Real-time equipment operating performance data, • Enterprise social networks (including online chats and/or voice mail on desktop and mobile systems], • As well as many other bespoke features (such as specialist Apps).
  • 6. An example of these new evolving systems is Chatter – developed by the IT company Salesforce.com These interactive systems can allow significant improvements in plant efficiency and operating performance. Chatter and other similar systems are being rapidly adopted by many thousands of companies each year. But linking all these features via the Internet also creates a new potential threat for power plant and grid system operators – Cyber Security.
  • 7. Cyber Security A key issue for all power plants and grid systems
  • 8. Hackers at work? Hackers can be based in any country. They can have several goals – such as causing malicious damage to computer systems or they attempt to steal valuable intellectual property [IP]. Are your plant and networks vulnerable to a cyber attack?
  • 9. A computer virus attacked a turbine control system at a US power company when a technician unknowingly inserted an infected USB computer drive into the network, keeping a plant off-line for three weeks, according to a report posted on a US government website. The [US] Department of Homeland Security [DHS] report did not identify the plant but said criminal software, which is used to conduct financial crimes such as identity theft, was behind the incident. It was introduced by an employee of a third- party contractor that does business with the utility, according to the agency. October 2012 US Power Plant Incident
  • 10. The DHS reported the incident on its website, which occurred in October 2012 - along with a second incident which involved a more sophisticated virus. This report was released to coincide with a high- profile cyber crime conference held in Miami [S4] to review emerging threats against power plants, water utilities and critical infrastructure. In addition to not identifying the plants, the DHS declined to say where they are located. The report did not say who the DHS believed was behind the sophisticated virus or if it was capable of sabotage. The DHS uses the term "sophisticated" to describe a wide variety of malicious software that is designed to do things besides commit routine cyber-crimes. They include viruses capable of espionage and sabotage.
  • 11. It is worth noting that the infamous Stuxnet virus was delivered to its target in Iran via a USB drive. Attackers use that technique to place malicious software on computer systems that are "air gapped" or cut off from the public Internet.
  • 12. Antiquated Software and Aging Systems Recent surveys have also highlighted the fact that many critical infrastructure control systems run on Windows XP and Windows 2000 - operating systems that were designed more than a decade ago. Some Internet-linked equipment still has no cyber protection at all. Many systems still have "auto run" features – which are enabled by default. This makes them an easy target for infection - because malicious software loads as soon as a USB is plugged into the system unless operators have changed that setting.
  • 13. Shodan The search engine Shodan [Sentient Hyper- Optimized Data Access Network] has been developed to identify a huge range of devises linked to the web and their vulnerability See: http://www.shodanhq.com/
  • 14. US To Take More Action Press Release from: [US] Federal Energy Regulatory Commission https://www.ferc.gov/ FERC Proposes to Adopt New Cyber Security Standards 18th April 2013 The Federal Energy Regulatory Commission (FERC) moved to strengthen the cyber security of the bulk electric system today with a proposed rule that would extend the scope of the systems that are protected by cyber security standards. The proposal, submitted in January 2013 by the North American Electric Reliability Corporation (NERC), constitutes version 5 of the Critical Infrastructure Protection Reliability Standards, or CIP standards. The proposal is intended to improve the security posture of responsible entities and represents an improvement in the CIP standards.
  • 15. The proposal includes 12 requirements with new cyber security controls that address Electronic Security Perimeters, Systems Security Management, Incident Reporting and Response Planning, Recovery Plans for BES Cyber Systems, and Configuration Change Management and Vulnerability Assessments. It also would use a new, tiered approach to identifying and classifying bulk electric system cyber assets that is a step toward applying CIP protections more comprehensively to better assure protection of the bulk electric system. The Commission is seeking comment on certain language in the proposed CIP version 5 Standards to alleviate concerns regarding the potential ambiguity and, ultimately, enforceability of the proposed Standards. NERC is the FERC-certified Electric Reliability Organization for the bulk electric system. Comments on the proposed rule are due 60 days after publication in the Federal Register.
  • 16. Are your power plants and networks safe?