دانلود رایگان مقاله انگلیسی بررسی استانداردها با مقررات امنیتی سایبری برای شبکه هوشمند - الزویر 2018

Abstract

Assuring cybersecurity of the smart grid is indispensable for the reliable operation of this new form of the electricity network. Experts agree that standardised solutions and practices should be applied in the first place. In recent years many new standards for smart grids have been published, which paradoxically results in the difficulty of finding a relevant publication in this plethora of literature. This paper presents results of a study which aimed at addressing this issue by identifying all standards that define cybersecurity requirements applicable to smart grids. Based on a systematic literature review seventeen relevant standards were identified that are described in this paper with a focus on the requirements and characterised with respect to evaluation criteria. The relationships between the standards have been analysed to understand where the standards overlap or complement each other and where they are completely independent – as far as cybersecurity requirements are concerned. This together with the requirementsfocused descriptions of the standards can serve as a useful guidance on cybersecurity requirements for smart grid components that should help practitioners in choosing the standards that are applicable to their area or a specific problem.

7. Conclusions

The analysis shows that several standards and guidelines have been published that define cybersecurity requirements foror applicable to- smart grids. They present various level of details and coverage. There are documents dedicated to specific components of the smart grid including substations (1), power plants (1), AMI (2), IACS (4), IEDs (1) and PEV (1), as well as publications that can be adopted to the whole smart grid architecture (see Table 5 and 6). This paper brings in all the relevant standards into one place (based on a systematic study), and overviews the cybersecurity requirements which they specify. Also (criteria-based) indications are provided that aim at helping choose the standards which are applicable to a particular smart grid area and/or that address specific goals. Security requirements in NISTIR 7628 are an amalgam of requirements defined in several sources: NIST SP 800-53, DHS Catalog, NERC CIP, and the NRC Regulatory Guidance, modified to match the specific needs of the smart grid and the electric sector. To facilitate compliance assessments a detailed guide [65] has been published together with a companion spreadsheet. For these reasons the publication might be the first choice of reference as far as general requirements, applicable to all smart grid components, are concerned. When looking at particular smart grid areas, the electric substations as well as IACS are distinctly covered by cybersecurity requirements. The available standards define them on different levels, from general to technical and supplement with practical implementation guidelines. The analogous coverage by cybersecurity requirements of other smart grid domains, for instance by developing standards similar to IEEE C37.240, would be advantageous.