Today’s LiveWire Spotlight examines the stakeholder responses to FERC’s Notice of Inquiry (NOI) to questions posed in four topical areas regarding the use of virtualization and cloud computing services in BES operations. Every respondent agreed that the existing standards lock in an old-style perimeter-based cyber security approach – and several have proposed updates that will allow cloud-based security structures that CIP v5 restricts (e.g.; moving-target defenses, decoys, and zero-trust networking.)
FERC is currently evaluating the responses to their Notice of Inquiry regarding cloud computing and virtualization services. How they will react will determine how these technologies may be applied in BES applications over the next decade or so.