Boosting NERC-CIP Compliance
RAD’s SAN solutions are in line with recent North American Electric Reliability Corporation Critical Infrastructure Protection (NERC-CIP) directives to boost your cyber security and compliance levels:
- Encryption and integrity for all communications outside ESP
- Application (SCADA) aware firewall
- Record/monitor all device connections in substations
- Strategically located to securely manage all electronic access to the substation’s ESP, and to protect the cyber assets within it from external and internal attacks:
a) Device connection control (DCC) using IEEE 802.1x Network Access Control to ensure authenticated and authorized internal substation connections
b) SCADA-aware security layer, including firewall, intrusion prevention, anomaly detection, and more
c) IEEE 802.1AE (MACsec) and IPsec encryption and data integrity verification to prevent sourcespoofing, session hijacking, Man in the Middle and Distributed Denial of Service (DDoS) attacks
- Boost compliance level with NERC-CIP requirements for bulk electric systems (BES) protection
- Layered security approach addresses all vulnerability points including integrity, confidentiality (encryption), authentication, authorization, and auditing
- Access control, user authentication and privilegelevel associations for local and remote access using Secure Shell (SSH), TACACS or RADIUS
