northeastern university seal

Regulating Cybersecurity: Institutional Learning or a Lesson in Futility?

Topics: Energy, Information Technology and Cybersecurity, Critical Infrastructure Theory,

This short piece examines the Federal Energy Regulatory Commission's November 2013 Critical Infrastruction Protection (CIP) Reliability Standards, which it cites as notable because of the central role industry actors played in their development. The CIP standards, meant to address cybersecurity concerns to the bulk power system, proved to be fairly controversial. The author addresses critiques of the regulations, introducing case studies from Canada and the Northeast to do so, and identifies room for further improvement.

View Source