Cybersecurity standards for grid don't go far enough, critics say
Thursday, April 30, 2009
Some network security experts yesterday questioned the effectiveness of a bill being submitted in Congress today that seeks to secure the nation's electric grid from hackers and foreign spies.
The bill, announced on Wednesday by homeland security committee chairmen Joseph Lieberman in the Senate and Bennie Thompson in the House, would give powers to the Federal Energy Regulatory Commission, or FERC, to issue new orders or rules in the event of a national security threat.
Called the Critical Electric Infrastructure Protection Act, the bill would require FERC to issue updated regulations within 120 days of enactment. Under current law, a nongovernmental organization, the North American Electric Reliability Corporation (NERC), develops standards for power plants and transmission companies for FERC approval.
Michael Jacobs, a former cybersecurity official at the National Security Agency, said the bill doesn't go far enough in compelling owners and operators of power plants to take more safety measures, according to a report on Nextgov.com.
"The bill focuses entirely on requirements of the government - there's nothing in there that obligates or enables the owners and operators of these facilities to upgrade their security," Jacobs said, Nextgov.com reported. "There ought to be an obligation to put in place the necessary barriers to prevent an intruder from getting to the control systems themselves."
Related News:
Don't worry about network security: Nine-year-old Marko's got your back - 1.22.2010
Marko Calasan is a Macedonian IT whiz and systems administrator who remotely manages a network of computers owned by a nonprofit that helps connect people with disabilities. Not much of a story, except for the consideration of Calasan's age: He's nine years old.
Apple releases patches for OS X security flaws - 1.21.2010
Vulnerabilities in OS X 10.5 and 10.6 were addressed in Apple's first security update of 2010, patching a dozen known security holes in the Mac operating system.
British university slammed by unknown virus - 1.21.2010
Network security at the UK's University of Exeter was breached by an unidentified virus on Monday, taking down the entirety of the institution's computer capacity and, local paper the Express and Echo reports, even spreading to the school's telephone network.
Pioneering CEO of Real Networks steps down - and some say 'good riddance' - 1.19.2010
Rob Glaser, the controversial head of Real Networks, stepped down from his position last week amid comment from all corners of the tech world, but critics say that not enough accounts mention Glaser's record of spreading intrusive software.
Gmail improves network security for clients - 1.14.2010
Secure HTTP access to Google's free Gmail service is now active by default, the company announced earlier this week, making Gmail messages less susceptible to unauthorized access.
|
