Chapter 10. Standards and Regulations
Information in this Chapter:
• Common Standards and Regulations
• Mapping Industrial Network Security to Compliance
• Mapping Compliance Controls to Network Security Functions
• Common Criteria and FIPS Standards
There are hundreds of cyber security standards and regulations imposed by governments and industry, which provide everything from “best practices” recommendations to hard requirements that are enforced through penalties and fines. Common standards include the North American Electric Reliability Corporation’s (NERC’s) Critical Infrastructure Protection (CIP) Reliability Standards, the U.S. Department of Homeland Security’s Chemical Facility Anti-Terrorism Standards (CFATS), the Regulated Security of Nuclear ...