Request for Comments on Draft NIST Interagency Report (NISTIR) 7628 Rev. 1, Guidelines for Smart Grid Cyber Security, 63964-63966 [2013-25168]
Download as PDF
<![CDATA[
63964
Federal Register / Vol. 78, No. 207 / Friday, October 25, 2013 / Notices
meeting of the Environmental
Technologies Trade Advisory
Committee (ETTAC).
DEPARTMENT OF COMMERCE
The meeting is scheduled for
Tuesday, November 19, 2013, at 9:00
a.m. Eastern Standard Time (EST).
Meeting of the Manufacturing Council
International Trade Administration
DATES:
The meeting will be held in
Room 4830 at the U.S. Department of
Commerce, Herbert Clark Hoover
Building, 1401 Constitution Avenue
NW., Washington, DC 20230.
ADDRESSES:
Ms.
Maureen Hinman, Office of Energy &
Environmental Industries (OEEI),
International Trade Administration,
Room 4053, 1401 Constitution Avenue
NW., Washington, DC 20230 (Phone:
202–482–0627; Fax: 202–482–5665;
email: maureen.hinman@trade.gov.)
This meeting is physically accessible to
people with disabilities. Requests for
sign language interpretation or other
auxiliary aids should be directed to
OEEI at (202) 482–5225 no less than one
week prior to the meeting.
FOR FURTHER INFORMATION CONTACT:
The
meeting will take place from 9:00 a.m.
to 3:30 p.m. EST. The general meeting
is open to the public and time will be
permitted for public comment from
3:00–3:30 p.m. EST. Those interested in
attending must provide notification by
Tuesday, November 12, 2013 at 5:00
p.m. EST, via the contact information
provided above. Written comments
concerning ETTAC affairs are welcome
any time before or after the meeting.
Minutes will be available within 30
days of this meeting.
Topics to be considered: The agenda
for this meeting will include
discussions about proposed
recommendations to the Secretary of
Commerce. The status of the U.S.
Environmental Export Initiative will
also be discussed.
Background: The ETTAC is mandated
by Public Law 103–392. It was created
to advise the U.S. government on
environmental trade policies and
programs, and to help it to focus its
resources on increasing the exports of
the U.S. environmental industry.
ETTAC operates as an advisory
committee to the Secretary of Commerce
and the Trade Promotion Coordinating
Committee (TPCC). ETTAC was
originally chartered in May of 1994. It
was most recently re-chartered until
September 2014.
emcdonald on DSK67QTVN1PROD with NOTICES
SUPPLEMENTARY INFORMATION:
Catherine Vial,
Acting Office Director, Office of Energy and
Environmental Industries.
[FR Doc. 2013–25066 Filed 10–24–13; 8:45 am]
BILLING CODE 3510–DR–P
VerDate Mar<15>2010
17:55 Oct 24, 2013
Jkt 232001
International Trade
Administration, U.S. Department of
Commerce.
ACTION: Notice of an open meeting.
AGENCY:
The Manufacturing Council
will hold a meeting to discuss the work
the Council will focus on for the
remainder of its term. At the meeting,
the Council will hear updates from its
four subcommittees on workforce
development and public perception of
manufacturing; manufacturing energy
policy; tax policy and export growth;
and innovation, research and
development. The Council will discuss
current workforce development efforts
by the federal government, the
importance of alternative energy
technologies for manufacturers, the
effects of current tax policies on
manufacturers, and the importance of
continued research and development for
the manufacturing industry. A final
agenda will be available on the
Council’s Web site one week prior to the
meeting. The Council was re-chartered
on April 5, 2012, to advise the Secretary
of Commerce on government programs
and policies that affect U.S.
manufacturing and provide a means of
ensuring regular contact between the
U.S. Government and the manufacturing
sector.
DATES: November 13, 2013, 9 a.m.–12
p.m. Central Standard Time (CST).
ADDRESSES: The meeting will be held at
the Hilton Americas—Houston, 1600
Lamar Street, Houston, TX 77010 in the
Lanier Grand Ballroom. Due to building
security, all attendees must pre-register.
This meeting will be physically
accessible to people with disabilities.
Seating is limited and will be on a first
come, first served basis. Requests for
sign language interpretation, other
auxiliary aids, or pre-registration,
should be submitted no later than
November 6, 2013, to Elizabeth
Emanuel, the Manufacturing Council,
Room 4043, 1401 Constitution Avenue
NW., Washington, DC 20230, telephone
202–482–1369, elizabeth.emanuel@
trade.gov. Last minute requests will be
accepted, but may be impossible to fill.
FOR FURTHER INFORMATION CONTACT:
Elizabeth Emanuel, the Manufacturing
Council, Room 4043, 1401 Constitution
Avenue NW., Washington, DC, 20230,
telephone: 202–482–1369, email:
elizabeth.emanuel@trade.gov.
SUPPLEMENTARY INFORMATION: A limited
amount of time, from 11:30–12, will be
SUMMARY:
PO 00000
Frm 00006
Fmt 4703
Sfmt 4703
made available for pertinent brief oral
comments from members of the public
attending the meeting. To accommodate
as many speakers as possible, the time
for public comments will be limited to
5 minutes per person. Individuals
wishing to reserve speaking time during
the meeting must contact Ms. Emanuel
and submit a brief statement of the
general nature of the comments, as well
as the name and address of the proposed
speaker, by 5 p.m. Eastern Standard
Time (EST) on Thursday, November 7,
2013. If the number of registrants
requesting to make statements is greater
than can be reasonably accommodated
during the meeting, the International
Trade Administration may conduct a
lottery to determine the speakers.
Speakers are requested to bring at least
25 copies of their oral comments for
distribution to the members of the
Manufacturing Council and to the
public at the meeting. Any member of
the public may submit pertinent written
comments concerning the
Manufacturing Council’s affairs at any
time before or after the meeting.
Comments may be submitted to
Elizabeth Emanuel, the Manufacturing
Council, Room 4043, 1401 Constitution
Avenue NW., Washington, DC, 20230,
telephone: 202–482–1369, email:
elizabeth.emanuel@trade.gov. To be
considered during the meeting, written
comments must be received by 5:00
p.m. EST on Thursday, November 7,
2013, to ensure transmission to the
Manufacturing Council prior to the
meeting. Comments received after that
date will be distributed to the members
but may not be considered at the
meeting.
Copies of Council meeting minutes
will be available within 90 days of the
meeting.
Dated: October 22, 2013.
Elizabeth Emanuel,
Executive Secretary, The Manufacturing
Council.
[FR Doc. 2013–25202 Filed 10–22–13; 4:15 pm]
BILLING CODE 3510–DR–P
DEPARTMENT OF COMMERCE
National Institute of Standards and
Technology
[Docket No. 130612544–3544–01]
Request for Comments on Draft NIST
Interagency Report (NISTIR) 7628 Rev.
1, Guidelines for Smart Grid Cyber
Security
National Institute of Standards
and Technology (NIST), Department of
Commerce.
AGENCY:
E:\FR\FM\25OCN1.SGM
25OCN1
Federal Register / Vol. 78, No. 207 / Friday, October 25, 2013 / Notices
ACTION:
Notice; request for comments.
The National Institute of
Standards and Technology (NIST) seeks
comments on draft NISTIR 7628 Rev. 1,
Guidelines for Smart Grid Cyber
Security. Draft NISTIR 7628 Rev. 1 was
completed by the NIST-led Smart Grid
Cybersecurity Committee (formerly the
Cyber Security Working Group) of the
Smart Grid Interoperability Panel. The
document has been updated to address
changes in technologies and
implementations since the release of
NISTIR 7628 in September 2010. In
addition, the document development
strategy, cryptography and key
management, privacy, vulnerability
classes, research and development
topics, standards review, and key power
system use cases have been updated and
expanded to reflect changes in the
Smart Grid environment since 2010.
The final version is expected to be
posted in the fall of 2013.
DATES: Comments must be received by
December 24, 2013.
ADDRESSES: Please submit your
comments, using the comment template
forms available electronically from the
NIST Web site at: https://csrc.nist.gov/
publications/PubsDrafts.html. Written
comments concerning the document
may be sent to: Information Technology
Laboratory, ATTN: Tanya Brewer,
National Institute of Standards and
Technology, 100 Bureau Drive, Stop
8930, Gaithersburg, MD 20899–8930.
Electronic comments should be sent
to: NISTIR.7628.Rev1@nist.gov, with the
Subject line: Draft NISTIR 7628 Rev. 1
Comments.
Draft NISTIR 7628 Rev. 1, Guidelines
for Smart Grid Cyber Security, is
available electronically from the NIST
Web site at: https://csrc.nist.gov/
publications/PubsDrafts.html. The
comment templates are available at the
same address.
FOR FURTHER INFORMATION CONTACT:
Tanya Brewer, telephone: 301–975–
4534, National Institute of Standards
and Technology, 100 Bureau Drive, Stop
8930, Gaithersburg, MD 20899–8930 or
via email: tanya.brewer@nist.gov.
SUPPLEMENTARY INFORMATION:
SUMMARY:
emcdonald on DSK67QTVN1PROD with NOTICES
Background
Section 1305 of the Energy
Independence and Security Act of 2007
(EISA) (Pub. L. 110–140) requires the
Director of the National Institute of
Standards and Technology (NIST) ‘‘to
coordinate the development of a
framework that includes protocols and
model standards for information
management to achieve interoperability
of smart grid devices and systems.’’
VerDate Mar<15>2010
17:55 Oct 24, 2013
Jkt 232001
EISA also specifies in Section 1301 that,
‘‘It is the policy of the United States to
support the modernization of the
Nation’s electricity transmission and
distribution system to maintain a
reliable and secure electricity
infrastructure that can meet future
demand growth and to achieve each of
the following, which together
characterize a Smart Grid:
(1) Increased use of digital
information and controls technology to
improve reliability, security, and
efficiency of the electric grid.
(2) Dynamic optimization of grid
operations and resources, with full
cyber-security. . . .’’
With the transition to the Smart
Grid—the ongoing transformation of the
nation’s electric system to a two-way
flow of electricity and information—the
information technology (IT) and
telecommunications infrastructures
have become critical to the energy sector
infrastructure.
NISTIR 7628 was first drafted in 2009
by NIST staff and industry technical
experts. NIST published a Request for
Comments in the Federal Register on
October 9, 2009 (74 FR 52183) soliciting
comments on the working draft. NIST
issued a second Request for Comments
on April 13, 2010 (75 FR 18819), which
also included a summary disposition of
comments received in response to the
October 9, 2009 Request for Comments.
Comments from both Requests for
Comments informed the final version of
NISTIR 7628, which was released on
September 1, 2010, at https://
csrc.nist.gov/publications/
PubsNISTIRs.html#NIST-IR-7628.
NISTIR 7628 has been utilized by a
variety of stakeholders including
utilities, Smart Grid vendors and service
providers, and regulatory organizations
since its initial publication.
Additionally, emerging Smart Grid
technologies have matured since the
initial publication and are being
considered in this revision.
Draft NISTIR 7628 Rev. 1
Draft NISTIR 7628 Rev. 1 was
completed by the NIST-led Smart Grid
Cybersecurity Committee (formerly the
Cyber Security Working Group) of the
Smart Grid Interoperability Panel. This
document incorporates updates to
address changes in technologies and
implementations since the release of
NISTIR 7628 in September 2010. In
addition, this document updates and
expands the development strategy,
cryptography and key management,
privacy, vulnerability classes, research
and development topics, standards
review, and key power system use cases
to reflect changes in the Smart Grid
PO 00000
Frm 00007
Fmt 4703
Sfmt 4703
63965
environment since 2010. The final
version is expected to be posted in the
fall of 2013.
Summary of Changes to Draft NISTIR
7628 Rev. 1
• Chapter 1, Document Development
Strategy, was updated to reflect progress
and completion of previously
outstanding issues and remaining tasks,
including a new section addressing
cyber-physical attacks.
• Chapter 2, Logical Architecture and
Interfaces of the Smart Grid, was
updated to address feedback from the
SGIP Smart Grid Architecture
Committee and includes an expanded
section on defense-in-depth security.
• Chapter 3, High-Level Security
Requirements, was updated to include
additional background information on
selection of security requirements, and
includes a revised Crosswalk of Cyber
Security Documents.
• Chapter 4, Cryptography and Key
Management, was updated to reflect the
recommended transition lifetimes for
cryptographic algorithms and key
lengths in NIST Special Publication
800–131 A, Transitions:
Recommendation for Transitioning the
Use of Cryptographic Algorithms and
Key Lengths.
• Chapter 5, Privacy and the Smart
Grid, has been updated to reflect
changes in the regulatory and legislative
areas regarding Smart Grid. The update
also addresses emerging Plug-In Electric
Vehicle (PEV) technologies and
associated privacy concerns, an
expanded Appendix of privacy use
cases, a new Appendix summarizing
how two states (California and
Colorado) arrived at their respective
privacy-related regulations, and a new
Appendix containing recommendations
for how third parties should handle
consumer energy usage data.
• Chapter 6, Vulnerability Classes,
has been updated to incorporate
changes in technologies since the
original publication.
• Chapter 8, Research and
Development Themes for Cyber Security
in the Smart Grid, has been updated to
incorporate changes in technologies
since the original publication.
• Chapter 9, Overview of the
Standards Review, has been updated to
reflect the SGCC review and analysis
methodology of Smart Grid standards
against the high-level security
requirements of NISTIR 7628.
• Chapter 10, Key Power System Use
Cases for Security Requirements has
been updated to include more granular
use case scenarios in the area of the
Advanced Metering Infrastructure.
E:\FR\FM\25OCN1.SGM
25OCN1
63966
Federal Register / Vol. 78, No. 207 / Friday, October 25, 2013 / Notices
• A number of editorial changes that
do not have substantive impact on the
document to improve readability,
update references, and standardize
writing style.
Request for Comments
NIST seeks public comments on draft
NISTIR 7628, Rev. 1, Guidelines for
Smart Grid Cyber Security; particularly
on the changes made since the
originally published version. The draft
report is available electronically from
the NIST Web site at: https://
csrc.nist.gov/publications/
PubsDrafts.html. The comment
templates are available at the same
address, and are required for both
written and electronic comments.
Interested parties should submit
comments in accordance with the DATES
and ADDRESSES sections of this notice.
Dated: October 1, 2013.
Willie E. May,
Associate Director for Laboratory Programs.
[FR Doc. 2013–25168 Filed 10–24–13; 8:45 am]
BILLING CODE 3510–13–P
DEPARTMENT OF COMMERCE
National Oceanic and Atmospheric
Administration
RIN 0648–XC930
Gulf of Mexico Fishery Management
Council; Public Meeting
National Marine Fisheries
Service (NMFS), National Oceanic and
Atmospheric Administration (NOAA),
Commerce.
ACTION: Notice; public meeting.
emcdonald on DSK67QTVN1PROD with NOTICES
Authority: 16 U.S.C. 1801 et seq.
Dated: October 22, 2013.
Tracey L. Thompson,
Acting Deputy Director, Office of Sustainable
Fisheries, National Marine Fisheries Service.
DEPARTMENT OF COMMERCE
The meeting will be held from
9 a.m. Until 5 p.m. on Friday, November
8, 2013.
ADDRESSES: The meeting will be held at
the Gulf of Mexico Fishery Management
Council, 2203 North Lois Avenue, Suite
1100, Tampa, FL 33607.
FOR FURTHER INFORMATION CONTACT: Dr.
Assane Diagne, Economist, Gulf of
Mexico Fishery Management Council;
telephone: (813) 348–1630; fax: (813)
348–1711; email: Assane.Diagne@
gulfcouncil.org.
The items
for discussion on the meeting agenda
are as follows:
Jkt 232001
SUMMARY:
BILLING CODE 3510–22–P
DATES:
17:55 Oct 24, 2013
1. Socio-economic evaluation of
alternative red snapper allocations
2. Suggested Methods of Analysis
3. Recommendations to the Council
4. Other Business
For meeting materials, call (813) 348–
1630.
Although other non-emergency issues
not on the agenda may come before the
Scientific and Statistical Committees for
discussion, in accordance with the
Magnuson-Stevens Fishery
Conservation and Management Act,
those issues may not be the subject of
formal action during this meeting.
Actions of the Scientific and Statistical
Committees will be restricted to those
issues specifically identified in the
agenda and any issues arising after
publication of this notice that require
emergency action under section 305(c)
of the Magnuson-Stevens Fishery
Conservation and Management Act,
provided the public has been notified of
the Council’s intent to take action to
address the emergency.
This meeting is physically accessible
to people with disabilities. Requests for
sign language interpretation or other
auxiliary aids should be directed to
Kathy Pereira at the Council Office (see
ADDRESSES), at least 5 working days
prior to the meeting.
[FR Doc. 2013–25159 Filed 10–24–13; 8:45 am]
The Gulf of Mexico Fishery
Management Council (Council) will
hold a meeting of the Socioeconomic
Scientific and Statistical Committee
(SSC).
SUMMARY:
VerDate Mar<15>2010
trends using a 5 year time period for
determination of tide level datums.
Note: The times and sequence specified in
this agenda are subject to change.
AGENCY:
SUPPLEMENTARY INFORMATION:
Socioeconomic SSC Agenda, Friday,
November 8, 2013, 9 a.m. until 5 p.m.
National Oceanic and Atmospheric
Administration
Notice of Change to the Nation’s Tidal
Datums With the Adoption of a
Modified Procedure for Computation of
Tidal Datums in Area of Anomalous
Sea-Level Change
National Ocean Service (NOS),
National Oceanic and Atmospheric
Administration (NOAA), Department of
Commerce.
ACTION: Notice to advise the public of
periodic updates to tidal datums due to
the adoption of modified procedures for
computation of accepted tidal datums in
areas of anomalous relative sea-level
AGENCY:
PO 00000
Frm 00008
Fmt 4703
Sfmt 4703
NOAA has typically updated
tidal datum elevations for the nation to
new National Tidal Datum Epoch
(NTDE) time periods every 20–25 years.
Updates are necessary due to long-term
sea level change. In 1998, NOS
recognized the need for a modified
procedure for determination of tidal
datums for regions with anomalously
high rates of relative sea level change.
This modified procedure is necessary at
selected stations to ensure that the tidal
datums accurately represent the existing
stand of sea level.
The procedure is limited only to those
stations in areas with high rates of
vertical land motion that have
documented anomalous relative sea
level trends exceeding 9.0 millimeters
per year. Sea level analyses in these
anomalous regions are conducted
approximately every 5 years to
determine if the mean sea level
difference exceeds the established
threshold tolerances in order to qualify
for a special update. Anomalous relative
sea level trends are seen along the
western Gulf Coast, southeast Alaska,
and southern Cook Inlet, AK. For
example, the magnitude of the sea level
trends in these areas is +9.24
millimeters per year in Grand Isle, LA;
–12.92 millimeters per year in Juneau,
AK; and –9.45 millimeters per year in
Seldovia, AK.
This procedure is necessary to
provide the most accurate information
available for applications that are
essential to supporting Federal, State
and private sector coastal zone
activities, including hydrographic
surveys and coastal mapping,
navigational safety, wetland restoration,
marine boundary determinations,
coastal engineering, storm warnings and
hazard mitigation, emergency
management, and hydrodynamic
modeling.
While maintaining the 19 year NTDE
computational period for tidal mean
range and diurnal range, a shorter more
recent 5 year computational period is
used to compute the mean tide level
datums to better reflect the current
elevation of mean sea level relative to
the land. Consequently, tidal datums at
stations exhibiting anomalous trends are
computed from mean sea level, diurnal
tide level and mean tide level values for
the most recent 5 year time period, and
tidal ranges (GT and MN) based on the
most recent full 19 year NTDE at
stations.
The average absolute difference
between 19 year NTDE time periods
across the nation of 0.03 meters (0.10
E:\FR\FM\25OCN1.SGM
25OCN1
]]>Agencies
[Federal Register Volume 78, Number 207 (Friday, October 25, 2013)]
[Notices]
[Pages 63964-63966]
From the Federal Register Online via the Government Printing Office [www.gpo.gov]
[FR Doc No: 2013-25168]
-----------------------------------------------------------------------
DEPARTMENT OF COMMERCE
National Institute of Standards and Technology
[Docket No. 130612544-3544-01]
Request for Comments on Draft NIST Interagency Report (NISTIR)
7628 Rev. 1, Guidelines for Smart Grid Cyber Security
AGENCY: National Institute of Standards and Technology (NIST),
Department of Commerce.
[[Page 63965]]
ACTION: Notice; request for comments.
-----------------------------------------------------------------------
SUMMARY: The National Institute of Standards and Technology (NIST)
seeks comments on draft NISTIR 7628 Rev. 1, Guidelines for Smart Grid
Cyber Security. Draft NISTIR 7628 Rev. 1 was completed by the NIST-led
Smart Grid Cybersecurity Committee (formerly the Cyber Security Working
Group) of the Smart Grid Interoperability Panel. The document has been
updated to address changes in technologies and implementations since
the release of NISTIR 7628 in September 2010. In addition, the document
development strategy, cryptography and key management, privacy,
vulnerability classes, research and development topics, standards
review, and key power system use cases have been updated and expanded
to reflect changes in the Smart Grid environment since 2010. The final
version is expected to be posted in the fall of 2013.
DATES: Comments must be received by December 24, 2013.
ADDRESSES: Please submit your comments, using the comment template
forms available electronically from the NIST Web site at: https://csrc.nist.gov/publications/PubsDrafts.html. Written comments concerning
the document may be sent to: Information Technology Laboratory, ATTN:
Tanya Brewer, National Institute of Standards and Technology, 100
Bureau Drive, Stop 8930, Gaithersburg, MD 20899-8930.
Electronic comments should be sent to: NISTIR.7628.Rev1@nist.gov,
with the Subject line: Draft NISTIR 7628 Rev. 1 Comments.
Draft NISTIR 7628 Rev. 1, Guidelines for Smart Grid Cyber Security,
is available electronically from the NIST Web site at: https://csrc.nist.gov/publications/PubsDrafts.html. The comment templates are
available at the same address.
FOR FURTHER INFORMATION CONTACT: Tanya Brewer, telephone: 301-975-4534,
National Institute of Standards and Technology, 100 Bureau Drive, Stop
8930, Gaithersburg, MD 20899-8930 or via email: tanya.brewer@nist.gov.
SUPPLEMENTARY INFORMATION:
Background
Section 1305 of the Energy Independence and Security Act of 2007
(EISA) (Pub. L. 110-140) requires the Director of the National
Institute of Standards and Technology (NIST) ``to coordinate the
development of a framework that includes protocols and model standards
for information management to achieve interoperability of smart grid
devices and systems.'' EISA also specifies in Section 1301 that, ``It
is the policy of the United States to support the modernization of the
Nation's electricity transmission and distribution system to maintain a
reliable and secure electricity infrastructure that can meet future
demand growth and to achieve each of the following, which together
characterize a Smart Grid:
(1) Increased use of digital information and controls technology to
improve reliability, security, and efficiency of the electric grid.
(2) Dynamic optimization of grid operations and resources, with
full cyber-security. . . .''
With the transition to the Smart Grid--the ongoing transformation
of the nation's electric system to a two-way flow of electricity and
information--the information technology (IT) and telecommunications
infrastructures have become critical to the energy sector
infrastructure.
NISTIR 7628 was first drafted in 2009 by NIST staff and industry
technical experts. NIST published a Request for Comments in the Federal
Register on October 9, 2009 (74 FR 52183) soliciting comments on the
working draft. NIST issued a second Request for Comments on April 13,
2010 (75 FR 18819), which also included a summary disposition of
comments received in response to the October 9, 2009 Request for
Comments. Comments from both Requests for Comments informed the final
version of NISTIR 7628, which was released on September 1, 2010, at
https://csrc.nist.gov/publications/PubsNISTIRs.html#NIST-IR-7628.
NISTIR 7628 has been utilized by a variety of stakeholders
including utilities, Smart Grid vendors and service providers, and
regulatory organizations since its initial publication. Additionally,
emerging Smart Grid technologies have matured since the initial
publication and are being considered in this revision.
Draft NISTIR 7628 Rev. 1
Draft NISTIR 7628 Rev. 1 was completed by the NIST-led Smart Grid
Cybersecurity Committee (formerly the Cyber Security Working Group) of
the Smart Grid Interoperability Panel. This document incorporates
updates to address changes in technologies and implementations since
the release of NISTIR 7628 in September 2010. In addition, this
document updates and expands the development strategy, cryptography and
key management, privacy, vulnerability classes, research and
development topics, standards review, and key power system use cases to
reflect changes in the Smart Grid environment since 2010. The final
version is expected to be posted in the fall of 2013.
Summary of Changes to Draft NISTIR 7628 Rev. 1
Chapter 1, Document Development Strategy, was updated to
reflect progress and completion of previously outstanding issues and
remaining tasks, including a new section addressing cyber-physical
attacks.
Chapter 2, Logical Architecture and Interfaces of the
Smart Grid, was updated to address feedback from the SGIP Smart Grid
Architecture Committee and includes an expanded section on defense-in-
depth security.
Chapter 3, High-Level Security Requirements, was updated
to include additional background information on selection of security
requirements, and includes a revised Crosswalk of Cyber Security
Documents.
Chapter 4, Cryptography and Key Management, was updated to
reflect the recommended transition lifetimes for cryptographic
algorithms and key lengths in NIST Special Publication 800-131 A,
Transitions: Recommendation for Transitioning the Use of Cryptographic
Algorithms and Key Lengths.
Chapter 5, Privacy and the Smart Grid, has been updated to
reflect changes in the regulatory and legislative areas regarding Smart
Grid. The update also addresses emerging Plug-In Electric Vehicle (PEV)
technologies and associated privacy concerns, an expanded Appendix of
privacy use cases, a new Appendix summarizing how two states
(California and Colorado) arrived at their respective privacy-related
regulations, and a new Appendix containing recommendations for how
third parties should handle consumer energy usage data.
Chapter 6, Vulnerability Classes, has been updated to
incorporate changes in technologies since the original publication.
Chapter 8, Research and Development Themes for Cyber
Security in the Smart Grid, has been updated to incorporate changes in
technologies since the original publication.
Chapter 9, Overview of the Standards Review, has been
updated to reflect the SGCC review and analysis methodology of Smart
Grid standards against the high-level security requirements of NISTIR
7628.
Chapter 10, Key Power System Use Cases for Security
Requirements has been updated to include more granular use case
scenarios in the area of the Advanced Metering Infrastructure.
[[Page 63966]]
A number of editorial changes that do not have substantive
impact on the document to improve readability, update references, and
standardize writing style.
Request for Comments
NIST seeks public comments on draft NISTIR 7628, Rev. 1, Guidelines
for Smart Grid Cyber Security; particularly on the changes made since
the originally published version. The draft report is available
electronically from the NIST Web site at: https://csrc.nist.gov/publications/PubsDrafts.html. The comment templates are available at
the same address, and are required for both written and electronic
comments.
Interested parties should submit comments in accordance with the
DATES and ADDRESSES sections of this notice.
Dated: October 1, 2013.
Willie E. May,
Associate Director for Laboratory Programs.
[FR Doc. 2013-25168 Filed 10-24-13; 8:45 am]
BILLING CODE 3510-13-P
