Proposed Information Collection and Request for Comments, 71130-71132 [E7-24249]
Download as PDF
<![CDATA[
71130
Federal Register / Vol. 72, No. 240 / Friday, December 14, 2007 / Notices
Requests for copies of the proposed
information collection request may be
accessed from https://edicsweb.ed.gov,
by selecting the ‘‘Browse Pending
Collections’’ link and by clicking on
link number 3546. When you access the
information collection, click on
‘‘Download Attachments’’ to view.
Written requests for information should
be addressed to U.S. Department of
Education, 400 Maryland Avenue, SW.,
Potomac Center, 9th Floor, Washington,
DC 20202–4700. Requests may also be
electronically mailed to
ICDocketMgr@ed.gov or faxed to 202–
245–6623. Please specify the complete
title of the information collection when
making your request.
Comments regarding burden and/or
the collection activity requirements
should be electronically mailed to
ICDocketMgr@ed.gov. Individuals who
use a telecommunications device for the
deaf (TDD) may call the Federal
Information Relay Service (FIRS) at 1–
800–877–8339.
[FR Doc. E7–24272 Filed 12–13–07; 8:45 am]
BILLING CODE 4000–01–P
DEPARTMENT OF ENERGY
[Certification Notice–215]
Office Electricity Delivery and Energy
Reliability; Notice of Filings of SelfCertifications of Coal Capability Under
the Powerplant and Industrial Fuel Use
Act
Office Electricity Delivery and
Energy Reliability, DOE.
ACTION: Notice of Filings.
rmajette on PROD1PC64 with NOTICES
AGENCY:
SUMMARY: On October 23, 2007, The
WCM Group, Inc., on behalf of three
owners and operators of new base load
electric powerplants, submitted coal
capability self-certifications to the
Department of Energy (DOE) pursuant to
section 201(d) of the Powerplant and
Industrial Fuel Use Act of 1978 (FUA),
as amended, and DOE regulations in 10
CFR 501.60, 61. Section 201(d) of FUA
requires DOE to publish a notice of
receipt of self-certifications in the
Federal Register.
ADDRESSES: Copies of coal capability
self-certification filings are available for
public inspection, upon request, in the
Office of Electricity Delivery and Energy
Reliability, Mail Code OE–20, Room
8G–024, Forrestal Building, 1000
Independence Avenue, SW.,
Washington, DC 20585.
FOR FURTHER INFORMATION CONTACT:
Ellen Russell at (202) 586–9624.
SUPPLEMENTARY INFORMATION: Title II of
FUA, as amended (42 U.S.C. 8301 et
VerDate Aug<31>2005
15:31 Dec 13, 2007
Jkt 214001
seq.), provides that no new base load
electric powerplants may be constructed
or operated without the capability to use
coal or another alternate fuel as a
primary energy source. Pursuant to FUA
section 201(d), in order to meet the
requirement of coal capability, the
owner or operator of such facilities
proposing to use natural gas or
petroleum as its primary energy source
shall certify to the Secretary of Energy
(Secretary) prior to construction, or
prior to operation as a base load electric
powerplant, that such powerplant has
the capability to use coal or another
alternate fuel. Such certification
establishes compliance with FUA
section 201(a) as of the date it is filed
with the Secretary. The Secretary is
required to publish a notice in the
Federal Register reciting that the
certification has been filed.
The following owners of proposed
new base load electric powerplants have
filed self-certifications of coal-capability
with DOE pursuant to FUA section
201(d) and in accordance with DOE
regulations in 10 CFR 501.60, 61:
Owner: Nueces Bay WLE, LP
Capacity: 700 MW
Plant Location: Corpus Christi, Nueces
County, Texas
In-Service Date: June, 2009
Owner: Laredo WLE, LP
Capacity: 200 MW
Plant Location: Laredo, Webb County,
Texas
In-Service Date: June, 2008
Owner: Barney M. Davis, LP
Capacity: 700 MW
Plant Location: Corpus Christi, Nueces
County, Texas
In-Service Date: June, 2009
Issued in Washington, DC, on December 3,
2007.
Anthony J. Como,
Director, Permitting and Siting, Office of
Electricity Delivery and Energy Reliability.
[FR Doc. E7–24232 Filed 12–13–07; 8:45 am]
BILLING CODE 6450–01–P
DEPARTMENT OF ENERGY
Federal Energy Regulatory
Commission
[Docket No. IC08–725C–000]
Proposed Information Collection and
Request for Comments
December 7, 2007.
Federal Energy Regulatory
Commission, Department of Energy.
ACTION: Request for Office of
Management and Budget Emergency
Processing of proposed information
collection and request for comments.
AGENCY:
PO 00000
Frm 00019
Fmt 4703
Sfmt 4703
SUMMARY: The Federal Energy
Regulatory Commission (Commission) is
providing notice of its request to the
Office of Management and Budget
(OMB) for emergency processing of a
proposed collection of information in
connection with steps being taken by
the electric industry to address potential
cyber vulnerabilities, and is soliciting
public comment on that information
collection.
The Commission and OMB must
receive comments on or before January
14, 2008.
ADDRESSES: Send comments to:
(1) Nathan Frey, FERC Desk Officer,
Office of Information and Regulatory
Affairs, Office of Management and
Budget. Mr. Frey may be reached by
telephone at (202) 395–7345.
(2) Michael Miller, Office of the
Executive Director, ED–30, Federal
Energy Regulatory Commission, 888
First Street NE., Washington, DC 20426.
Mr. Miller may be reached by telephone
at (202) 502–8415 and by e-mail at
michael.miller@ferc.gov.
DATES:
FOR FURTHER INFORMATION CONTACT:
Jonathan First, Office of the General
Counsel, Federal Energy Regulatory
Commission, 888 First Street NE.,
Washington, DC 20426. Mr. First may be
reached by telephone at (202) 502–8529
and by e-mail at jonathan.first@ferc.gov.
SUPPLEMENTARY INFORMATION: A recent
experiment conducted for the
Department of Homeland Security by
the Idaho National Laboratory
demonstrated that under certain
conditions energy infrastructure could
be intentionally damaged through cyber
attack. In that experiment, researchers
caused a generator to malfunction
through an experimental cyber attack.
This potential cyber vulnerability,
which was recently broadcast on CNN,
was the subject of an October 17, 2007
hearing before the Homeland Security
Subcommittee on Emerging Threats,
Cybersecurity, and Science and
Technology, U.S. House of
Representatives.
The Commission intends to
immediately issue a directive that
requires all generator owners, generator
operators, transmission owners, and
transmission operators that are
registered by the North American
Electric Reliability Corporation (NERC)
and located in the United States to
provide to NERC certain information
related to actions they have taken or
intend to take to protect against the
potential cyber vulnerability discussed
above. The Commission will also
require NERC to make this information
available for Commission review.
E:\FR\FM\14DEN1.SGM
14DEN1
rmajette on PROD1PC64 with NOTICES
Federal Register / Vol. 72, No. 240 / Friday, December 14, 2007 / Notices
Section 215 of the Federal Power Act,
16 U.S.C. 824o, vests the Commission
with authority over the Electric
Reliability Organization (ERO) and over
the users, owners and operators of the
Bulk-Power System for purposes of
approving and enforcing mandatory
Reliability Standards. Under section
215, the term ‘‘Reliability Standard’’
includes requirements for the cyber
security protection of the Bulk-Power
System. Moreover, the Commission is
charged not merely with approving (or
remanding) Reliability Standards filed
by the ERO, but also with ordering the
ERO to submit a proposed standard or
a modification to an existing standard
that ‘‘addresses a specific matter if the
Commission considers such a new or
modified reliability standard
appropriate to carry out this section.’’
A number of efforts are underway to
secure the Nation’s electric
infrastructure against potential cyber
vulnerabilities. One such effort is an
advisory issued by NERC, acting
through the Electric Sector-Information
Sharing and Analysis Center (ES–ISAC),
to generator owners, generator
operators, transmission owners, and
transmission operators. This advisory
identified a number of short-term
measures, mid-term measures and longterm measures designed to mitigate the
potential cyber vulnerability discussed
above.
It has been represented that a number
of entities are already either secured
against the potential cyber vulnerability
referred to above or have taken steps to
mitigate this vulnerability, and NERC
has since sent a data request to industry
members. That data request is limited in
scope. It is essentially a request that
industry members indicate if their
mitigation plans are ‘‘complete,’’ ‘‘in
progress,’’ or ‘‘not performing.’’ This
information is not sufficient for the
Commission to discharge its duties
under section 215 of the Federal Power
Act because it does not provide
information on what facilities are the
subject of the mitigation plans, what
steps to mitigate the potential cyber
vulnerability are being taken, when
those steps are planned to be taken, and,
if certain actions are not being taken,
why not.
In sum, given the seriousness of this
potential vulnerability and given that
the NERC data request does not provide
information that the Commission needs
to discharge its statutory
responsibilities, the Commission
believes further action is necessary in
order to ensure that the owners and
operators of the Bulk-Power System
have taken or are taking appropriate
steps to protect the Bulk-Power System.
VerDate Aug<31>2005
15:31 Dec 13, 2007
Jkt 214001
Section 307 of the Federal Power Act,
16 U.S.C. 825f, authorizes the
Commission to ‘‘investigate any facts,
conditions, practices, or matters which
it may find necessary or proper * * *
to aid in * * * prescribing rules or
regulations [under the Federal Power
Act], or in obtaining information to
serve as a basis for recommending
further legislation.’’ Section 39.2(d) of
the Commission’s regulations, 18 CFR
39.2(d), requires owners and operators
to ‘‘provide the Commission * * * such
information as is necessary to
implement section 215 of the Federal
Power Act as determined by the
Commission.’’
The Commission believes that the
information that will be requested is
critical to ensuring that appropriate
mitigation of this potential cyber
vulnerability is put in place and that it
is put in place as quickly as possible.
The Commission believes that an
accurate overview of the actions taken
and expected to be taken in the industry
is a necessary first step to determine
whether any further measures need to
be taken by the Commission to ensure
the safety and reliability of the BulkPower System. The Commission is very
sensitive to the need to preserve
confidentiality of the information
requested and the need to minimize the
burden on industry. Accordingly, the
information will be examined on-site at
NERC headquarters, and disclosure by
NERC will be on a need-to-know basis
to NERC personnel and the Commission
and its staff.
Respondents will provide the
information listed below to NERC,
which will secure the information and
treat the responses as nonpublic
information available, as noted above,
on a need-to-know basis to NERC
personnel and to the Commission and
its staff. Following Commission review,
the information will be returned to the
submitters.
Each respondent will be required to
provide the following information to
NERC:
1. A copy of the owner or operator’s
plan for responding to the cyber
vulnerability outlined in the ES–ISAC
advisory, along with a general
description of the facility for each plan,
2. A description of the measures—
short-term, mid-term, and long-term—
taken or planned to be taken (and the
timeframe for implementing such
measures) as recommended by the ES–
ISAC advisory to mitigate the risks
associated with this cyber vulnerability
including projected completion dates if
they fall outside the ES–ISAC advisory
deadlines,
PO 00000
Frm 00020
Fmt 4703
Sfmt 4703
71131
3. An explanation of how the plan
and measures described above secure
the owners or operators’ facilities
against this cyber vulnerability, and
4. If an owner or operator believes no
actions are necessary regarding a
measure, an explanation why it believes
that to be so, along with a general
description of the facility that the
respondent proposes to exempt from
actions under the advisory.
The Commission estimates that it
would take each respondent no more
than 12 hours to generate the requested
information. The Commission estimates
that the number of respondents will be
approximately 1,150. Therefore, the
total number of hours it would take to
comply with the reporting requirement
would be 13,800. The Commission
estimates a total cost of $1,214,400 to
respondents @ $88 per hour, based on
salaries for professional and clerical
staff, as well as direct and indirect
overhead costs.
The Commission has submitted this
reporting requirement to OMB for
approval. OMB’s regulations describe
the process that federal agencies must
follow in order to obtain OMB approval
of reporting requirement. See 5 CFR part
1320. The standards for emergency
processing of information collections
appear at 5 CFR 1320.13. If OMB
approves a reporting requirement, then
it will assign an information collection
control number to that requirement. If a
request for information subject to OMB
review has not been given a valid
control number, then the recipient is not
required to respond.
OMB requires federal agencies
seeking approval of reporting
requirements to allow the public an
opportunity to comment on the
proposed reporting requirement. 5 CFR
1320.5(a)(1)(iv). Therefore, the
Commission is soliciting comment on:
(1) Whether the collection of the
information is necessary for the proper
performance of the Commission’s
functions, including whether the
information will have practical utility;
(2) The accuracy of the Commission’s
estimate of the burden of the collection
of this information, including the
validity of the methodology and
assumptions used;
(3) The quality, utility, and clarity of
the information to be collected; and
(4) How to minimize the burden of the
collection of this information on
respondents, including the use of
appropriate automated electronic,
E:\FR\FM\14DEN1.SGM
14DEN1
71132
Federal Register / Vol. 72, No. 240 / Friday, December 14, 2007 / Notices
mechanical, or other forms of
information technology.
(866) 208–3676 (toll free). For TTY, call
(202) 502–8659.
Kimberly D. Bose,
Secretary.
[FR Doc. E7–24249 Filed 12–13–07; 8:45 am]
Kimberly D. Bose,
Secretary.
[FR Doc. E7–24248 Filed 12–13–07; 8:45 am]
BILLING CODE 6717–01–P
BILLING CODE 6717–01–P
DEPARTMENT OF ENERGY
DEPARTMENT OF ENERGY
Federal Energy Regulatory
Commission
Federal Energy Regulatory
Commission
[Docket No. QF08–110–000]
Combined Notice of Filings #1
Tiqun Energy, Inc.; Notice of Filing of
Notice of Self-Certification of
Qualifying Status of a Cogeneration
Facility
December 7, 2007.
rmajette on PROD1PC64 with NOTICES
December 7, 2007.
Take notice that on December 6, 2007,
Tiqun Energy, Inc. filed with the
Federal Energy Regulatory Commission
a notice of self-certification of a facility
as a qualifying cogeneration facility
pursuant to 18 CFR 292.207(a) of the
Commission’s regulations.
The facility is a cogeneration facility
with the primary energy source being
natural gas. The production equipment
will consist of two GE LM 6000 PF
Sprint gas turbine generators each with
a duct-fired heat recovery steam
generator driving a steam turbine
generator for a total net output capacity
of 140 MWe. The facility will be located
in Anchorage, Alaska.
Chugach Electric Association, Inc.
and Anchorage Municipal Light &
Power are the electric utilities with
which the facility expects to
interconnect, transmit or sell electric
energy to, or purchase supplementary,
standby, back-up and maintenance
power.
A notice of self-certification does not
institute a proceeding regarding
qualifying facility status; a notice of selfcertification provides notice that the
entity making the filing has determined
the facility meets the applicable criteria
to be a qualifying facility. Any person
seeking to challenge such qualifying
facility status may do so by filing a
motion pursuant to 18 CFR
292.207(d)(iii).
This filing is accessible on-line at
https://www.ferc.gov, using the
‘‘eLibrary’’ link and is available for
review in the Commission’s Public
Reference Room in Washington, DC.
There is an ‘‘eSubscription’’ link on the
Web site that enables subscribers to
receive email notification when a
document is added to a subscribed
docket(s). For assistance with any FERC
Online service, please e-mail
FERCOnlineSupport@ferc.gov, or call
VerDate Aug<31>2005
15:31 Dec 13, 2007
Jkt 214001
Take notice that the Commission
received the following electric corporate
filings:
Docket Numbers: EC08–19–000.
Applicants: Quachita Power, LLC,
Entergy Arkansas, Inc.
Description: Quachita Power, LLC &
Entergy Arkansas, Inc’s application for
order authorizing acquisition &
disposition of jurisdictional assets
under Section 203 of the FPA.
Filed Date: 11/30/2007.
Accession Number: 20071205–0128.
Comment Date: 5 p.m. Eastern Time
on Friday, December 21, 2007.
Take notice that the Commission
received the following electric rate
filings:
Docket Numbers: ER96–25–031;
ER01–1363–009.
Applicants: Coral Power LLC; Coral
Energy Management, LLC.
Description: Coral Power, LLC and
Coral Energy Management, LLC submit
a notice of non-material change in status
and compliance filing.
Filed Date: 12/03/2007.
Accession Number: 20071205–0123.
Comment Date: 5 p.m. Eastern Time
on Monday, December 24, 2007.
Docket Numbers: ER97–420–017.
Applicants: ProLiance Energy, LLC.
Description: ProLiance Energy LLC
submits revised tariff sheet to replace
the 11/5/07 filing along with a redlined
copy of its tariff.
Filed Date: 11/29/2007.
Accession Number: 20071203–0009.
Comment Date: 5 p.m. Eastern Time
on Friday, December 14, 2007.
Docket Numbers: ER99–2984–009.
Applicants: Green Country Energy,
LLC.
Description: Green County Energy,
LLC submits a supplement to its 11/9/
07 filing of a notice of a non-material
change in status.
Filed Date: 11/30/2007.
Accession Number: 20071204–0069.
Comment Date: 5 p.m. Eastern Time
on Friday, December 14, 2007.
Docket Numbers: ER01–48–010.
PO 00000
Frm 00021
Fmt 4703
Sfmt 4703
Applicants: Powerex Corp.
Description: Powerex Corp submits a
notice of non-material change in status.
Filed Date: 12/03/2007.
Accession Number: 20071205–0117.
Comment Date: 5 p.m. Eastern Time
on Monday, December 24, 2007.
Docket Numbers: ER03–774–005.
Applicants: Eagle Energy Partners I,
LP.
Description: Eagle Energy Partners I,
LP amends its 10/24/07 filing of a
Notice of Change in Status by including
Appendix B and submits Substitute
First Revised Sheet 1 et al to reflect a
9/18/07 effective date etc.
Filed Date: 12/03/2007.
Accession Number: 20071204–0155.
Comment Date: 5 p.m. Eastern Time
on Monday, December 24, 2007.
Docket Numbers: ER05–1420–004.
Applicants: Lehman Brothers
Commodity Services Inc.
Description: Lehman Brothers
Commodity Services Inc submits a
revised tariff sheets (Attachment II) to
reflect a 9/18/07 effective date for its
market based rate tariff.
Filed Date: 12/03/2007.
Accession Number: 20071204–0154.
Comment Date: 5 p.m. Eastern Time
on Monday, December 24, 2007.
Docket Numbers: ER05–1232–006;
ER05–283–007.
Applicants: JPMorgan Ventures
Energy Corporation; JPMorgan Chase
Bank, N.A.
Description: Errata to Notice on NonMaterial Change in Status Regarding
Market-Based Rate Authority of
JPMorgan Chase Bank, N.A.
Filed Date: 12/04/2007.
Accession Number: 20071203–5088.
Comment Date: 5 p.m. Eastern Time
on Wednesday, December 26, 2007.
Docket Numbers: ER06–1346–002.
Applicants: White Creek Wind I, LLC.
Description: White Creek Wind LLC
submits its revised Third Revised Sheet
1 of its FERC Electric Tariff, Original
Volume 1.
Filed Date: 12/04/2007.
Accession Number: 20071206–0228.
Comment Date: 5 p.m. Eastern Time
on Wednesday, December 26, 2007.
Docket Numbers: ER07–527–002.
Applicants: Longview Fibre Paper and
Packaging, Inc.
Description: Longview Fibre Paper
and Packaging, Inc submits notice of a
non-material change in status related to
a change in its upstream ownership.
Filed Date: 11/30/2007.
Accession Number: 20071204–0060.
Comment Date: 5 p.m. Eastern Time
on Friday, December 21, 2007.
Docket Numbers: ER07–1094–003.
E:\FR\FM\14DEN1.SGM
14DEN1
]]>Agencies
[Federal Register Volume 72, Number 240 (Friday, December 14, 2007)]
[Notices]
[Pages 71130-71132]
From the Federal Register Online via the Government Printing Office [www.gpo.gov]
[FR Doc No: E7-24249]
-----------------------------------------------------------------------
DEPARTMENT OF ENERGY
Federal Energy Regulatory Commission
[Docket No. IC08-725C-000]
Proposed Information Collection and Request for Comments
December 7, 2007.
AGENCY: Federal Energy Regulatory Commission, Department of Energy.
ACTION: Request for Office of Management and Budget Emergency
Processing of proposed information collection and request for comments.
-----------------------------------------------------------------------
SUMMARY: The Federal Energy Regulatory Commission (Commission) is
providing notice of its request to the Office of Management and Budget
(OMB) for emergency processing of a proposed collection of information
in connection with steps being taken by the electric industry to
address potential cyber vulnerabilities, and is soliciting public
comment on that information collection.
DATES: The Commission and OMB must receive comments on or before
January 14, 2008.
ADDRESSES: Send comments to:
(1) Nathan Frey, FERC Desk Officer, Office of Information and
Regulatory Affairs, Office of Management and Budget. Mr. Frey may be
reached by telephone at (202) 395-7345.
(2) Michael Miller, Office of the Executive Director, ED-30,
Federal Energy Regulatory Commission, 888 First Street NE., Washington,
DC 20426. Mr. Miller may be reached by telephone at (202) 502-8415 and
by e-mail at michael.miller@ferc.gov.
FOR FURTHER INFORMATION CONTACT: Jonathan First, Office of the General
Counsel, Federal Energy Regulatory Commission, 888 First Street NE.,
Washington, DC 20426. Mr. First may be reached by telephone at (202)
502-8529 and by e-mail at jonathan.first@ferc.gov.
SUPPLEMENTARY INFORMATION: A recent experiment conducted for the
Department of Homeland Security by the Idaho National Laboratory
demonstrated that under certain conditions energy infrastructure could
be intentionally damaged through cyber attack. In that experiment,
researchers caused a generator to malfunction through an experimental
cyber attack. This potential cyber vulnerability, which was recently
broadcast on CNN, was the subject of an October 17, 2007 hearing before
the Homeland Security Subcommittee on Emerging Threats, Cybersecurity,
and Science and Technology, U.S. House of Representatives.
The Commission intends to immediately issue a directive that
requires all generator owners, generator operators, transmission
owners, and transmission operators that are registered by the North
American Electric Reliability Corporation (NERC) and located in the
United States to provide to NERC certain information related to actions
they have taken or intend to take to protect against the potential
cyber vulnerability discussed above. The Commission will also require
NERC to make this information available for Commission review.
[[Page 71131]]
Section 215 of the Federal Power Act, 16 U.S.C. 824o, vests the
Commission with authority over the Electric Reliability Organization
(ERO) and over the users, owners and operators of the Bulk-Power System
for purposes of approving and enforcing mandatory Reliability
Standards. Under section 215, the term ``Reliability Standard''
includes requirements for the cyber security protection of the Bulk-
Power System. Moreover, the Commission is charged not merely with
approving (or remanding) Reliability Standards filed by the ERO, but
also with ordering the ERO to submit a proposed standard or a
modification to an existing standard that ``addresses a specific matter
if the Commission considers such a new or modified reliability standard
appropriate to carry out this section.''
A number of efforts are underway to secure the Nation's electric
infrastructure against potential cyber vulnerabilities. One such effort
is an advisory issued by NERC, acting through the Electric Sector-
Information Sharing and Analysis Center (ES-ISAC), to generator owners,
generator operators, transmission owners, and transmission operators.
This advisory identified a number of short-term measures, mid-term
measures and long-term measures designed to mitigate the potential
cyber vulnerability discussed above.
It has been represented that a number of entities are already
either secured against the potential cyber vulnerability referred to
above or have taken steps to mitigate this vulnerability, and NERC has
since sent a data request to industry members. That data request is
limited in scope. It is essentially a request that industry members
indicate if their mitigation plans are ``complete,'' ``in progress,''
or ``not performing.'' This information is not sufficient for the
Commission to discharge its duties under section 215 of the Federal
Power Act because it does not provide information on what facilities
are the subject of the mitigation plans, what steps to mitigate the
potential cyber vulnerability are being taken, when those steps are
planned to be taken, and, if certain actions are not being taken, why
not.
In sum, given the seriousness of this potential vulnerability and
given that the NERC data request does not provide information that the
Commission needs to discharge its statutory responsibilities, the
Commission believes further action is necessary in order to ensure that
the owners and operators of the Bulk-Power System have taken or are
taking appropriate steps to protect the Bulk-Power System.
Section 307 of the Federal Power Act, 16 U.S.C. 825f, authorizes
the Commission to ``investigate any facts, conditions, practices, or
matters which it may find necessary or proper * * * to aid in * * *
prescribing rules or regulations [under the Federal Power Act], or in
obtaining information to serve as a basis for recommending further
legislation.'' Section 39.2(d) of the Commission's regulations, 18 CFR
39.2(d), requires owners and operators to ``provide the Commission * *
* such information as is necessary to implement section 215 of the
Federal Power Act as determined by the Commission.''
The Commission believes that the information that will be requested
is critical to ensuring that appropriate mitigation of this potential
cyber vulnerability is put in place and that it is put in place as
quickly as possible. The Commission believes that an accurate overview
of the actions taken and expected to be taken in the industry is a
necessary first step to determine whether any further measures need to
be taken by the Commission to ensure the safety and reliability of the
Bulk-Power System. The Commission is very sensitive to the need to
preserve confidentiality of the information requested and the need to
minimize the burden on industry. Accordingly, the information will be
examined on-site at NERC headquarters, and disclosure by NERC will be
on a need-to-know basis to NERC personnel and the Commission and its
staff.
Respondents will provide the information listed below to NERC,
which will secure the information and treat the responses as nonpublic
information available, as noted above, on a need-to-know basis to NERC
personnel and to the Commission and its staff. Following Commission
review, the information will be returned to the submitters.
Each respondent will be required to provide the following
information to NERC:
1. A copy of the owner or operator's plan for responding to the
cyber vulnerability outlined in the ES-ISAC advisory, along with a
general description of the facility for each plan,
2. A description of the measures--short-term, mid-term, and long-
term--taken or planned to be taken (and the timeframe for implementing
such measures) as recommended by the ES-ISAC advisory to mitigate the
risks associated with this cyber vulnerability including projected
completion dates if they fall outside the ES-ISAC advisory deadlines,
3. An explanation of how the plan and measures described above
secure the owners or operators' facilities against this cyber
vulnerability, and
4. If an owner or operator believes no actions are necessary
regarding a measure, an explanation why it believes that to be so,
along with a general description of the facility that the respondent
proposes to exempt from actions under the advisory.
The Commission estimates that it would take each respondent no more
than 12 hours to generate the requested information. The Commission
estimates that the number of respondents will be approximately 1,150.
Therefore, the total number of hours it would take to comply with the
reporting requirement would be 13,800. The Commission estimates a total
cost of $1,214,400 to respondents @ $88 per hour, based on salaries for
professional and clerical staff, as well as direct and indirect
overhead costs.
The Commission has submitted this reporting requirement to OMB for
approval. OMB's regulations describe the process that federal agencies
must follow in order to obtain OMB approval of reporting requirement.
See 5 CFR part 1320. The standards for emergency processing of
information collections appear at 5 CFR 1320.13. If OMB approves a
reporting requirement, then it will assign an information collection
control number to that requirement. If a request for information
subject to OMB review has not been given a valid control number, then
the recipient is not required to respond.
OMB requires federal agencies seeking approval of reporting
requirements to allow the public an opportunity to comment on the
proposed reporting requirement. 5 CFR 1320.5(a)(1)(iv). Therefore, the
Commission is soliciting comment on:
(1) Whether the collection of the information is necessary for the
proper performance of the Commission's functions, including whether the
information will have practical utility;
(2) The accuracy of the Commission's estimate of the burden of the
collection of this information, including the validity of the
methodology and assumptions used;
(3) The quality, utility, and clarity of the information to be
collected; and
(4) How to minimize the burden of the collection of this
information on respondents, including the use of appropriate automated
electronic,
[[Page 71132]]
mechanical, or other forms of information technology.
Kimberly D. Bose,
Secretary.
[FR Doc. E7-24249 Filed 12-13-07; 8:45 am]
BILLING CODE 6717-01-P
