•  PURPOSE

Critical infrastructure protection (CIP) programs developed by utilities are highly dependent on the functionality and capabilities of IEDs in regards to cyber security.  This standard provides utilities which develop such programs with the ability and assurance to procure, install and commission IEDs which do not compromise their program.  The standard also provides the required suite of functions and capabilities to the various vendors who will understand exactly what the customer base requirements are.

• REASON

The North American Electric Reliability Council (NERC) is issuing a series of CIP standards which cannot be implemented without cyber security features in IEDs.  Without a clearly defined standard of security features, including their functionality, a substation owner may unwittingly compromise his CIP program by the deployment of an IED with assumed features which are inconsistent with the user’s intentions/assumptions.  Stakeholders for the project are:

Utilities/Users who can specify IEDs meet this standard to be consistent with their CIP programs

Vendors who will have a clear understanding of the functions and features that must be present in their product offerings

Regulatory agencies and government who have a vested interest in critical infrastructure protection program effectiveness