Abstract
Control systems of nuclear power plants have been faced with the risk of cyber-security attacks from inside or outside agents. Thus control systems should efficiently and strongly account for the attacks. We propose a cyber-security implementation framework by integrating conventional concepts and paradigm such as CC, PP, ST, operational system evaluation, certification and accreditation, risk management, and etc.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Regulatory Guide 5.71, Cyber security programs for nuclear facilities, U.S. Nuclear Regulatory Commission (2010)
FIPS 140-2, Security Requirements for Cryptographic Modules, NIST (2001)
CCMB-2009-07-002, Common Criteria for Information Technology Security Evaluation, Version 3.1 (2009)
ISO/IEC TR 19791, Operational system protection profiles (2010)
Jayawickrama, W.: Managing Critical Information Infrastructure Security Compliance: A Standard Based Approach Using ISO/IEC 17799 and 27001. In: Meersman, R., Tari, Z., Herrero, P. (eds.) OTM 2006 Workshops. LNCS, vol. 4277, pp. 565–574. Springer, Heidelberg (2006)
NIST SP 800-53, Rev 3, recommended security controls for federal information systems (2009)
System Protection Profile - Industrial Control Systems, Version 1.0, NIST (2004)
NIST SP 800-82, Guide to Industrial Control Systems (ICS) Security, NIST (2008)
Catalog of Control Systems Security: recommendations for Standards Developers, Control systems security program, National cyber security division, Homeland security (2009)
IEC 62465 CD1 ed. 1.0, Nuclear Power Plants - instrumentation and control important to safety - requirements for security programmes for computer-based systems (2011)
CIP–002–3 ~ CIP–009–3 —Cyber Security (2011)
NIST SP 800-37, Rev.1, Guide for applying the risk management framework to federal information systems (2010)
DePoy, J., et al.: Critical Infrastructure Systems of Systems Assessment Methodology. SANDIA REPORT (2006)
Polk, W., Malkewicz, P.: Jaroslav Novak, Industrial Cyber Security From the Perspective of the Power Sector. Revision 1, DEFCONÂ 18 (2010)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2011 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Lee, Ck., Song, Jg., Lee, Dy., Jung, Hm., Lee, Gs. (2011). A Cyber-Security Implementation Framework for Nuclear Power Plant Control Systems. In: Lee, G., Howard, D., Ślęzak, D. (eds) Convergence and Hybrid Information Technology. ICHIT 2011. Communications in Computer and Information Science, vol 206. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-24106-2_25
Download citation
DOI: https://doi.org/10.1007/978-3-642-24106-2_25
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-24105-5
Online ISBN: 978-3-642-24106-2
eBook Packages: Computer ScienceComputer Science (R0)