Title: Are security standards for electricity infrastructure a good choice for Europe? Evidence on cost and benefits from two case studies
Authors: Elena Ragazzi; Alberto Stefanini
Addresses: CNR-Ircres, Via Real Collegio 30, 10024 Moncalieri (TO), Italy ' Via Tagliamento, 4, 43036 Fidenza (PR), Italy
Abstract: Power system controls are vulnerable to cyber-attacks that can seriously affect and even inhibit their operation. Such attacks may affect large portions of the power system, make repair difficult and cause huge societal impact, so pressure to ensure cyber-security of control and communication systems is now strong worldwide. Several cyber-security frameworks were developed, but it is rather difficult to anticipate adoption costs and benefits, and this hampers their generalised adoption. This paper focuses on the outcome of two case studies (concerning the Italian power generation and the Polish transmission systems. The socio-economic impact of failures and the costs of standard adoption are estimated on an objective basis. It is up to public authorities to decide whether to require the adoption of security standards to operators in the electric system. The nature of public good of security underlines the necessity of public support for this operation, but we discuss the extent and the management of this support.
Keywords: security standards; electricity systems; cybersecurity; cost-benefit analysis; impact evaluation; network security plans; security policies; regulations; power system controls; countermeasures.
International Journal of Critical Infrastructures, 2019 Vol.15 No.3, pp.206 - 229
Received: 07 Feb 2018
Accepted: 07 Nov 2018
Published online: 25 Mar 2019 *