美国电力行业信息安全运作机制和策略分析

doi:10.11930.2015.5.81

摘要/Abstract

摘要： 网络威胁对电力系统的影响是涉及国家安全、公共安全和国民经济的至关重要的问题。美国已形成了多方协同的电力行业信息安全运作机制。以美国电力行业信息安全的战略框架及其实施策略为切入点，梳理了承担美国电力行业信息安全相关职责的政府机构和组织的职责及其工作现状，研究了参与美国电力行业信息安全研究的机构和组织的工作成果。从信息安全标准、安全文化建设、风险管理、协作共享以及网络攻击响应5个角度分析了美国电力行业信息安全运作策略。电力行业信息安全的持续运作和良性发展，不仅需要标准规范的不断完善和主动执行，更需要安全文化、安全风险、应急响应等方面的切实有效的管理和协同。

关键词: 电力行业, 能源传输系统, 信息安全, 风险管理, 协作共享, 应急响应

Abstract: Cyber threats to electric power system have great impact on the national security, public safety and country economy. After years of researches and practices, the United States of America (US) has well formed a multi-party cooperative mechanism for the cybersecurity to safeguard the operation of electric power industry. The cybersecurity framework and strategy for electric power industry in US is presented first. The corresponding duty and its working status of related government agencies and organizations involved in the cybersecurity of the electric power industry is then introduced respectively. The study results and working conclusions of US research institutions and organizations are also briefed. Based on those information, the characteristics of cyber security mechanism in US are studied and analyzed from different points of view including cyber security standard, culture construction, risk management, collaboration and information sharing, and effective response to cyber-attacks. In order to sustain the cybersecurity and evolvement of power information security, not only the standard and specification are required to be continuously improved and actively implemented, but also the culture of security, the risk management, the collaboration and information sharing, the effective response to cyber-attacks are needed to be effectively coordinated and managed.

Key words: electric power industry, energy delivery systems, cyber security, management of risk, collaboration and information sharing, cyber incident response

中图分类号:

TM769

朱晓燕，方泉. 美国电力行业信息安全运作机制和策略分析[J]. 中国电力, 2015, 48(5): 81-88.

ZHU Xiaoyan, FANG Quan. Study on Mechanism and Strategy of Cybersecurity in U.S. Electric Power Industry[J]. Electric Power, 2015, 48(5): 81-88.

导出引用管理器 EndNote|Ris|BibTeX

链接本文: https://www.electricpower.com.cn/CN/10.11930.2015.5.81

https://www.electricpower.com.cn/CN/Y2015/V48/I5/81

参考文献

[1] Energy Sector Control Systems Working Group. Roadmap to achieve energy delivery systems cybersecurity [R/OL]. U.S. Department of Energy, 2011[2014-08-14]. https://www.controlsystemsroadmap.net/Pages/default.aspx.
[2] The Smart Grid Interoperability Panel Smart Grid Cybersecurity Committee. NISTIR 7628, Guidelines for smart grid cybersecurity[S/OL]. National Institute of Standards and Technology, 2013[2014-04-29]. http://csrc.nist.gov/publications/PubsDrafts.html# NIST-IR-7628r1.
[3] BROWN P, FOSTER C, KING S. Cybersecurity and the North American Electric Grid: New policy approaches to address an evolving threat[R/OL]. U.S. Bipartisan Policy Center, 2014[2014-08-07]. http://bipartisanpolicy.org/sites/default/files/Cybersecurity %20Electric%20Grid%20BPC.pdf.
[4] U.S. Department of Homeland Security. National Cyber Incident Response Plan[R/OL]. U.S. Department of Homeland Security,2010[2014-08-24]. http://www.federalnewsradio.com/pdfs/NCIRP_Interim_Version_September_2010.pdf.
[5] HOFFMAN P, ROMINE C H, BARKER W C. DOE/OE-0003 Electricity subsector cybersecurity risk management process[S/OL]. U.S. Department of Energy,2012[2014-05-15]. http://energy.gov/sites/prod/files/RMP%20Guideline%20Second%20Draft%20for%20Public%20Comment%20-%20March%202012.pdf.
[6] CHRISTOPHER J D, MUNEER F, FRY J. Electricity subsector cyber securitycapability maturity model (ES-C2M2)[S/OL] U.S. Department of Energy, 2014[2014-10-25]. http://energy.gov/oe/cybersecurity-capability-maturity-model-c2m2-program/electricity-subsector-cybersecurity.
[7] Energy Sector Control Systems Working Group. Cybersecurity Procurement Language for Energy Delivery systems[M/OL]. 2014[2014-08-24].http://www.energy.gov/oe/downloads/cybersecurity- procurement-language-energy-delivery-april-2014.
[8] North American Electric Reliability Corporation. CIP standards[S/OL].[2014-04-29]. http://www.nerc.com/pa/Stand/Pages/CIPStandards.aspx.
[9] North American Electric Reliability Corporation. Electricity Sub-sector Coordinating Council[EB/OL]. 2013[2014-11-21]. http://www.nerc.com/pa/CI/Pages/ESCC.aspx.
[10] LOCKE G, GALLAGHER P D. NIST Special Publication 800-39, Managing information security risk[M/OL]. National Institute of Standards and Technology, 2011[2014-10-25]. http://csrc.nist.gov/publications/nistpubs/800-39/SP800-39-final.pdf.
[11] National Institute of Standards and Technology Framework for Improving Critical Infrastructure Cybersecurity[S/OL]. 2014[2014-08-24]. http://www.nist.gov/cyberframework/upload/cybersecurity-framework-021214-final.pdf.
[12] CANDELL R, ANAND D M, STOUFFER K. A Cybersecurity testbed for industrial control systems[M/OL]. National Institute of Standards and Technology,2014[2014-10-16]. http://www.nist.gov/manuscript-publication-search.cfm?pub_id=915876.
[13] Daniel Noyes. Cyber Security testing and training programs for industrial control systems[C/OL]. The 18th Pacific Basin Nuclear Conference. Idaho National Laboratory.2012[2014-10-09]. http://www.inl.gov/technicalpublications/Documents/5411182.pdf.
[14] 卢坦，林涛，梁颂. 美国工控安全保障体系研究及启示[J]. 保密科学技术，2014（4）：24-33.
[15] Vulnerability analysis of energy delivery control systems[R/OL]. 2011[2014-8-14]. http://energy.gov/oe/downloads/vulnerability-analysis-energy-delivery-control-systems-september-2011.
[16] 梁潇，高昆仑，徐志博，等. 美国电力行业信息安全工作现状与特点分析[J]. 电网技术，2011，35（12）：221－228．
LIANG Xiao, GAO Kunlun, XU Zhibo, et al. A Survey on cybersecurity of U.S. electric power industry[J]. Power System Technology, 2011, 35(12): 221-228.
[17] WAXMAN H A. Hearing on“Cyber Threats and Security Solutions”[R/OL].[2014-10-25].http://democrats.energycommerce.house.gov/sites/default/files/documents/Statement-Waxman-FC-Cyber-Threats-Security-2013-5-21.pdf.
[18] National initiative for cybersecurity education(NICE) [R/OL]. 2014[2014-10-25].http://csrc.nist.gov/nice/about.html.
[19] Industrial control systems cyber emergency response team, ICS-CERT Year in review[R/OL]. U.S. Department of Homeland Security,2013[2014-10-25]. https://ics-cert.us-cert.gov/ICS-CERT-Year-Review-2013.
[20] Global Industrial Cyber Security Professional.[EB/OL].[2014-11-21].https://www.giac.org/promo/gicsp-special?utm_source=offsite& utm_medium=text-ad&utm_content=PR_GICSP_announce_912 2013&utm_campaign=GIAC_Certification&ref=139030.
[21] Electricity Sector Information Sharing and Analysis Center (ES-ISAC) [EB/OL], [2014-11-21].https://www.esisac.com/SitePages/Home.aspx.
[22] Recommendations for improving information sharing [R/OL]. Electricity Sector Information Sharing Task Force, 2013[2014-12-1]. http://www.nerc.com/comm/CIPC/Electricity%20Sector%20Information%20Sharing%20Task%20For1/Electricity%20Sector %20Information%20Sharing%20Task%20Force%20(ESISTF)%20Draft%20Report.pdf.
[23] Grid Security Exercise (GridEx II) after-action report[R/OL]. North American Electric Reliability Council,2014[2014-10-13].http://www.nerc.com/pa/CI/CIPOutreach/GridEX/GridEx%20II%20After%20Action%20Report.pdf.
[24] North American Electric Reliability Corporation. CIP-008-3 Cyber security-Incident reporting and response planning, standard of critical infrastructure protection reliability standards[S/OL] .：U.S. Department of Energy, 2011 [2014-11-21]. http://www.nerc.com/pa/stand/Pages/default.aspx.
[25] National Level Exercise 2012 quick look report[R/OL]. Federal Emergency Management Agency, 2013[2014-11-21]. https://www.fema.gov/media-library/assets/documents/31733.
[26] 赵婷，高昆仑，郑晓崑，等. 智能电网物联网技术架构及信息安全防护体系研究[J]. 中国电力，2012，45（5）： 87－90．
ZHAO Ting, GAO Kunlun, ZHENG Xiaokun, et al. Research on technical framework and cyber security protection system of IOT in smart grid [J]. Electric Power, 2012, 45(5): 87-90.