TY - GEN
T1 - Risk-Informing Critical Digital Assets (CDAs) for Nuclear Power Systems
AU - Muhlheim, M. D.
AU - Hudson, F. G.
AU - Youngblood, R. W.
N1 - Funding Information:
This manuscript has been authored by UT-Battelle, LLC, under contract DE-AC05-00OR22725 with the US Department of Energy (DOE). The US government retains and the publisher, by accepting the article for publication, acknowledges that the US government retains a nonexclusive, paid-up, irrevocable, worldwide license to publish or reproduce the published form of this manuscript, or allow others to do so, for US government purposes. DOE will provide public access to these results of federally sponsored research in accordance with the DOE Public Access Plan (http://energy.gov/downloads/doe-public-access-plan).
Publisher Copyright:
© 2023 Proceedings of 18th International Probabilistic Safety Assessment and Analysis, PSA 2023. All Rights Reserved.
PY - 2023
Y1 - 2023
N2 - Regulatory requirements have been established by the US Nuclear Regulatory Commission (NRC) to ensure that nuclear power plants provide reasonable assurance of adequate protection of public health and safety. The current body of NRC regulations (including cybersecurity) is largely based upon deterministic or prescriptive methods. A risk-informed approach modifies this traditional deterministic approach by considering a broader set of potential challenges to plant safety, providing a logical means for prioritizing challenges based on risk significance, and considering a broader set of capabilities to respond to these challenges. In contrast to the traditional deterministic approach, a risk-informed approach addresses the impact of credible initiating events by assessing event frequency and mitigating system reliability and event consequences, enabling treatment of structures, systems, and components (SSCs) in accordance with their relative risk significance over the lifetime of the plant. The overall result of a risk-informed approach is increased emphasis on risk-significant SSCs such that public health and safety is adequately protected while improving the efficiency of plant operation. Underlying risk assessment techniques used by a risk-informed approach can range from very simple and qualitative to very complex and quantitative. ANS Working Group 3.15, “Risk-Informing Critical Digital Assets (CDAs) for Nuclear Power Plant Systems,” is developing a standard whose implementation would utilize a risk-informed approach to protect certain digital systems and components the compromise of which by cyberattack could result in failure of nuclear plant digital assets (DAs), causing unwanted actions and/or preventing wanted actions. The application of a risk-informed approach is envisioned as a two-step process with the first step being to identify DAs warranting protection from cyberattacks. These assets would be designated as critical DAs (CDAs). Having identified and categorized DAs warranting protection, the second step would be development of a portfolio of cybersecurity countermeasures appropriate for each DA risk category. Collectively, such a programmatic risk-informed approach should improve the efficiency and effectiveness of nuclear power plant cybersecurity programs. The current focus of the ANS Working Group is on the first step, applying risk-informed methods to the identification and categorization of DAs. To achieve this, 14 candidate methods are under review. Test cases on effectiveness and user-friendliness of these methods are currently being explored. The result of this effort may be the recommendation of a single method or a combination of methods. This paper describes the status and envisioned path forward of this risk-informed methodology review effort.
AB - Regulatory requirements have been established by the US Nuclear Regulatory Commission (NRC) to ensure that nuclear power plants provide reasonable assurance of adequate protection of public health and safety. The current body of NRC regulations (including cybersecurity) is largely based upon deterministic or prescriptive methods. A risk-informed approach modifies this traditional deterministic approach by considering a broader set of potential challenges to plant safety, providing a logical means for prioritizing challenges based on risk significance, and considering a broader set of capabilities to respond to these challenges. In contrast to the traditional deterministic approach, a risk-informed approach addresses the impact of credible initiating events by assessing event frequency and mitigating system reliability and event consequences, enabling treatment of structures, systems, and components (SSCs) in accordance with their relative risk significance over the lifetime of the plant. The overall result of a risk-informed approach is increased emphasis on risk-significant SSCs such that public health and safety is adequately protected while improving the efficiency of plant operation. Underlying risk assessment techniques used by a risk-informed approach can range from very simple and qualitative to very complex and quantitative. ANS Working Group 3.15, “Risk-Informing Critical Digital Assets (CDAs) for Nuclear Power Plant Systems,” is developing a standard whose implementation would utilize a risk-informed approach to protect certain digital systems and components the compromise of which by cyberattack could result in failure of nuclear plant digital assets (DAs), causing unwanted actions and/or preventing wanted actions. The application of a risk-informed approach is envisioned as a two-step process with the first step being to identify DAs warranting protection from cyberattacks. These assets would be designated as critical DAs (CDAs). Having identified and categorized DAs warranting protection, the second step would be development of a portfolio of cybersecurity countermeasures appropriate for each DA risk category. Collectively, such a programmatic risk-informed approach should improve the efficiency and effectiveness of nuclear power plant cybersecurity programs. The current focus of the ANS Working Group is on the first step, applying risk-informed methods to the identification and categorization of DAs. To achieve this, 14 candidate methods are under review. Test cases on effectiveness and user-friendliness of these methods are currently being explored. The result of this effort may be the recommendation of a single method or a combination of methods. This paper describes the status and envisioned path forward of this risk-informed methodology review effort.
UR - http://www.scopus.com/inward/record.url?scp=85184353365&partnerID=8YFLogxK
U2 - 10.13182/PSA23-40961
DO - 10.13182/PSA23-40961
M3 - Conference contribution
AN - SCOPUS:85184353365
T3 - Proceedings of 18th International Probabilistic Safety Assessment and Analysis, PSA 2023
SP - 219
EP - 228
BT - Proceedings of 18th International Probabilistic Safety Assessment and Analysis, PSA 2023
PB - American Nuclear Society
T2 - 18th International Probabilistic Safety Assessment and Analysis, PSA 2023
Y2 - 15 July 2023 through 20 July 2023
ER -