Cybersecurity Information Sharing in Electric Utilities
Free Research

Cybersecurity Information Sharing in Electric Utilities

  • Programs for sharing information on cyber threats to the grid
  • Standardized approaches for sharing information on cyber threats
  • Overview of legislation on sharing cybersecurity information

Sharing information on cybersecurity threats to the grid

Sharing of information on cyber threats will play a major role in protecting critical utility infrastructure, as it enables utilities to be better prepared to respond to cyber attacks on the electrical grid system.

This paper provides an overview of various programs and standardized approaches for cybersecurity information sharing, including the California Energy Systems for the 21st Century (CES-21), the Cybersecurity Risk Information Sharing Program (CRISP), Structured Threat Information Expression (STIX), Trusted Automated Exchange of Indicator Information (TAXII), and Cyber Observable eXpression (CybOX). This paper also provides an overview of the National Institute of Standards and Technology’s (NIST) guidance for cyber threat information sharing and the Cybersecurity Information Sharing Act of 2015.

Fill out this form to get the report.