Power System Communications & Cybersecurity Committee IEEE

NERC Releases Remote Access Study Report

“Pursuant to Order No. 822 of the Federal Energy Regulatory Commission (“FERC” or “Commission),1 the North American Electric Reliability Corporation hereby submits a report providing the results of a study on the remote access protections required by NERC’s Critical Infrastructure Protection (“CIP”) Reliability Standards (“Remote Access Study Report”). Remote access refers to the ability to access a system, application, or data from a remote location. Remote access technology allows logging into a system as an authorized user without being physically present at its keyboard. NERC completed the Remote Access Study consistent with the FERC directive in Order No. 822 to perform a study to assess: (1) the effectiveness of the controls in the CIP Reliability Standards to mitigate known remote access vulnerabilities; (2) the risks posed by remote access-related threats and vulnerabilities; and (3) appropriate mitigating controls for any identified risks.”

Read More