Status of Canadian cyber security regulatory framework and implementation at nuclear facilities

Abstract of the technical paper presented at:  
2017 International Symposium on Future I&C for Nuclear Power Plants (ISOFIC), Gyeongju, South Korea
November 26–30, 2017

Prepared by:
Chul Hwan Jung
Canadian Nuclear Safety Commission

Abstract:

Cyber security has been an emerging issue for key stakeholders of nuclear power plants (NPPs), including design authorities, operating utilities and regulatory bodies for the continued safe and secure operation of NPPs and other nuclear facilities.

The Canadian Nuclear Safety Commission (CNSC) is the nuclear regulatory authority with sole responsibility for the oversight of cyber security in the Canadian nuclear industry. The CNSC developed cyber security regulatory requirements for the design of NPPs in 2014. These requirements are provided in CNSC REGDOC-2.5.2. Additionally, in 2015, CSA Group issued CSA Standard N290.7-14 "Cyber security for nuclear power plants and small reactor facilities". The CNSC has referred to this standard in its regulation of cyber security for operating NPPs and small reactor facilities

This presentation provides the overall status of the Canadian regulatory framework for cyber security, the status of licensees' implementation efforts for compliance with N290.7-14, and the roadmap development activities by the CNSC for cyber security at non-NPP facilities.

To obtain a copy of the abstract's document, please contact us at cnsc.info.ccsn@canada.ca or call 613-995-5894 or 1-800-668-5284 (in Canada). When contacting us, please provide the title and date of the abstract.

Date modified: