Issue No.06 - November/December (2008 vol.6)
Raymond C. Parks , Sandia National Laboratories
Edmond Rogers , North American Electric Reliability Corporation
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MSP.2008.160
Assessing security in critical control systems is a particular task that can have dangerous real-world consequences if done poorly or according to more traditional security assessments. In 2006, the North American Electric Reliability Corporation adopted the Critical Infrastructure Protection standards for cyber vulnerability assessment of critical infrastructure control systems. Such CIP assessments entail challenges at each stage, from planning and assessing to reporting results and recommending vulnerability mitigation approaches.
process control systems, cyber infrastructure, vulnerabilities, assessment, critical infrastructure protection
Raymond C. Parks, Edmond Rogers, "Vulnerability Assessment for Critical Infrastructure Control Systems", IEEE Security & Privacy, vol.6, no. 6, pp. 37-43, November/December 2008, doi:10.1109/MSP.2008.160