Browse > Article
http://dx.doi.org/10.13089/JKIISC.2015.25.3.639

Risk Rating Process of Cyber Security Threats in NPP I&C  

Lee, Woomyo (National Security Research Institute)
Chung, Manhyun (National Security Research Institute)
Min, Byung-Gil (National Security Research Institute)
Seo, Jungtaek (National Security Research Institute)
Publication Information
Journal of the Korea Institute of Information Security & Cryptology / v.25, no.3, 2015 , pp. 639-648 More about this Journal
Abstract
SInce 2000, Instrumentation and Control(I&C) systems of Nuclear Power Plant(NPP) based on analog technology began to be applied to the digital technology. NPPs under construction in the country with domestic APR1400 I&C system, most devices were digitalized. Cyber security of NPP I&C systems has emerged as an important issue because digital devices compared to the existing analog equipment are vulnerable to cyber attacks. In this paper, We proposed the risk rating process of cyber security threats in NPP I&C system and applied the proposed process to the Reactor Protection System(RPS) developed through Korea Nuclear Instrumentation & Control System(KINCS) project for evaluating the risk of cyber security threats.
Keywords
risk rating process; NPP I&C system;
Citations & Related Records
연도 인용수 순위
  • Reference
1 Lee Cheol Kwon, "Nuclear Power Plant Instrumentation and Control Systems Cyber Security Technology Trends," Jonornal of The Korea Institute of information Security & Cryptology, 22(5), 28-34, Aug. 2012
2 Jaekwan Park, JeYun Park, Youngki Kim, "Cyber Security Consideration on Digital Instrumentation and Control System Development Process in Nuclear Power Plants," Journal of Korean Institute of Information Scientists and Engineers, 39(1D), 354-356, Jun. 2012
3 Nicolas Falliere, Liam O Murchu, Eric Chien, "W32.Stuxnet Dossier," Symantec Security Response, Rev. 1.4, Feb. 2011
4 B. Bencsath, G. Pek, L. Buttyan, and M. Felegyhazi. "Duqu: Analysis, detection, and lessons learned," In ACM European Workshop on System Security(EuroSec), volume 2012, Apr. 2012
5 Nuclear Regulatory Commission, "Cyber Security Programs for Nuclear Facilities," NRC Regulatory Guide 5.71, Jan. 2010
6 Nuclear Energy Institute, "Cyber Security Plan for Power Reactors," NEI 08-09, Jan. 2010
7 Korea Institute of Nuclear Safety, "Cyber security of instrumentation and control systemsCyber security of instrumentation and control systems," KINS/RG-NO 8.22, 681-688, 2011