Overview of Cyber Security Regulatory Framework for NPPs

Abstract of the technical presentation presented at:
The 12th Annual UNENE Workshop on Nuclear I&C Systems
November 11, 2016

Prepared by:
Chul Hwan Jung
Canadian Nuclear Safety Commission


Cyber security has been an emerging issue for key stakeholders of nuclear power plants (NPPs), including design authorities, operating utilities, regulatory bodies, and research and academic societies for the continued safe and secure operation of NPPs.

As Canada’s nuclear regulating authority, the Canadian Nuclear Safety Commission (CNSC) is solely responsible for the oversight of cyber security in the Canadian nuclear industry. The CNSC has developed modern regulatory requirements for cyber security at NPPs. These requirements can be referred to in the CNSC’s regulatory document REGDOC-2.5.2, issued in 2014. Additionally, in 2015, the CSA Group developed CSA standard N290.7, Cyber security for nuclear power plants and small reactor facilities. The CNSC will refer to this new standard in its regulation of cyber security for NPPs and small reactor facilities.

This presentation provides the overall status of the Canadian regulatory framework for cyber security, as well as the key requirements of new CSA standard N290.7-14. Cyber security aspects of computer-based I&C systems will also be discussed.

To obtain a copy of the abstract’s document, please contact us at cnsc.info.ccsn@cnsc-ccsn.gc.ca or call 613.995.5894 or 1.800.668.5284 (in Canada). When contacting us, please provide the title and date of the abstract

Date modified: