Wireless Network Security in Nuclear Facilities

摘要

The U.S Nuclear Regulatory Commission (NRC) and Oak Ridge National Laboratories have been researching wireless communications as an emerging technology in nuclear facilities. This research is aimed at developing technical bases for regulatory guidance applicable to wireless technologies. A key element of regulatory guidance will be whether or not nuclear facilities can demonstrate data flowing in their wireless networks are secure. Wireless communications technology is not currently used in safety-related systems in nuclear facilities but is being used in non-safety related and business applications, many of which have not been under the purview of NRC's regulatory authority. In 2009, the NRC issued a cyber security rule requiring licensees to provide high assurance that critical systems and networks are adequately protected from cyber attacks [10 CFR 73.54]. Non-safety wireless networks that provide a potential pathway to critical digital assets must also be secured according to guidance set forth in Regulatory Guide 5.71, 'Cyber Security Programs for Nuclear Facilities.' If the nuclear industry continues to embrace the use of wireless communication technology, there could be more critical digital assets impacted by wireless systems. The paper addresses the security issues of wireless networks relevant to instrumentation and control (I&C) applications in nuclear facilities. After presenting the relevancy of wireless systems in NPP, the paper briefly addresses the concerns about cyber security, wireless network security (WNS), and the necessary security controls. Finally, the paper presents the fundamental recommendations from Regulatory Guide 5.71, Cyber Security Programs for Nuclear Facilities and their application to wireless systems.