ANSI 2019 Student Paper Winner: Cybersecurity & Ukraine Power Grid Attack

Loading
loading...

ANSI 2019 Student Paper Winner: Cybersecurity & Ukraine Power Grid Attack

April 24, 2022
mike@standardsmichigan.com
No Comments

Missouri State University

Cybersecurity Standards and the 2015 Ukraine Power Grid Attack: Mitigating Catastrophic Cyber Disruptions on Electrical Infrastructure

By Sam Cohen
Missouri State University DC Graduate Campus
Georgetown University

Abstract: The 2015 attack on Ukraine’s power grid represented the first publically documented cyber incident disrupting electrical utility and power distribution control systems. While the incident was temporary, it impacted critical services supporting 225,000 customers—including businesses, industrial facilities, and government offices. The attack has been recognized as a highly complex and persistent operation that could have escalated to a significantly larger power outage disaster, threatening long-term essential service disruptions at hospitals, government facilities, telecommunication sites, and financial institutions. This paper examines how cybersecurity standards developed or approved by organizations such as the National Institute for Standards and Technology (NIST), the American National Standards Institute (ANSI), the International Organization for Standardization (ISO), the North American Electric Reliability Corporation (NERC), and the International Electrotechnical Commission (IEC) could have either mitigated or entirely prevented this attack. Specifically, log collection and analysis (NERC CIP007-6 and NIST SP-800-92), external network and boundary protection (IEC 62443-3, adopted as ANSI/ISA 99.03.03), and incident response (NIST-7628 Rev.1 and ISO/IEC 27002:2013) standards are mapped against key cybersecurity gaps that enabled the attackers to compromise and exploit key assets throughout Ukraine. The paper then determines how controls listed in these standards could have assisted cybersecurity and IT staff with the defense of their control systems and supervisory control and data acquisition (SCADA) networks, thereby reducing the destructive potential of the attack and possibly mitigating the disaster altogether. The standards analyzed in this paper are identified for their mitigation utility during the Ukraine attacks, and also for their applicability to any power grid owner or operator aiming to reduce cyber risk.

Issue: [12-78]

Category: Academics, Public Policy

Colleagues: Mike Anthony, Christine Fischer, Paul Green, 

 


More

2022 Student Paper Competition

ANSI Essential Requirements: Due process requirements for American National Standards. 

ANSI Committee on Education Student Paper Competition

https://www.standardslearn.org/

Missouri State University Department of Defense and Strategic Studies

 

https://cultivate.caes.uga.edu/experts-study-mystery-irises-at-coastal-georgia-botanical-gardens/index.html

Spring Week 21 | May 19 – May 25

April 22, 2022
mike@standardsmichigan.com
No Comments

 

“There was a time when meadow, grove, and stream,
The earth, and every common sight
To me did seem
Apparelled in celestial light,
The glory and the freshness of a dream….”

Ode on Intimations of Immortality from Recollections of Early Childhood
William Wordsworth

https://www.fortedward.org/

Fort Edward Free School District | Washington County New York


Monday | May 19 | Colloquium 15:00 UTC

Lingua Franca 300


Tuesday | May 20 | Colloquium 15:00 UTC

“Backup” Power Systems


Wednesday | May 21 | Colloquium 15:00 UTC

Animals 300


Thursday | May 22 |  Colloquium 15:00 UTC

Bucolia 300


Friday | May 23 |  Colloquium 15:00 UTC

Colloquy (May)

Start of Memorial Day Weekend in the United States


Saturday | May 24

 


Sunday | May 25

 


List of multinational festivals and holidays

 

Financial Terms and Concepts

April 21, 2022
mike@standardsmichigan.com

No Comments

This content is accessible to paid subscribers. To view it please enter your password below or send mike@standardsmichigan.com a request for subscription details.

H.R. 7503: American Innovation Act of 2022

April 21, 2022
mike@standardsmichigan.com
No Comments

117th Congress Swearing In Floor Proceedings – January 3, 2021, House Chamber

 

H.R. 7488 Freedom of Association in Higher Education Act of 2022

April 20, 2022
mike@standardsmichigan.com
No Comments

117th Congress Swearing In Floor Proceedings – January 3, 2021, House Chamber

 

 

H.R. 7578 Countering Limitless Overtaking of User Data Act

April 19, 2022
mike@standardsmichigan.com
No Comments

117th Congress Swearing In Floor Proceedings – January 3, 2021, House Chamber

Layout mode
Predefined Skins
Custom Colors
Choose your skin color
Patterns Background
Images Background
error: Content is protected !!
Skip to content