Sign In

Communications of the ACM

ACM TechNews

TSA Issues Cybersecurity Rules for Pipeline Companies


View as: Print Mobile App Share: Send by email Share on reddit Share on StumbleUpon Share on Hacker News Share on Tweeter Share on Facebook
A Colonial Pipeline station in Smyrna, GA.

The directive adds the Transportation Safety Administration to a patchwork of federal agencies engaged in pipeline cybersecurity issues, including the Department of Homeland Securitys Cybersecurity and Infrastructure Security Agency, the Department of Energy, and the Coast Guard.

Credit: Mike Stewart/Associated Press

A U.S. Transportation Security Administration (TSA) directive imposes new rules requiring pipeline operators to strengthen their cyberdefenses.

The order coincides with the first-ever disclosure by the U.S. Department of Homeland Security and the Federal Bureau of Investigation that Chinese state-sponsored hackers targeted 23 U.S. natural gas pipeline operators between 2011 and 2013.

The announcement offers few details on the directive or its enforcement, as much is classified to keep hackers in the dark about pipeline operators' cybersecurity measures.

The directive requires pipeline operators to deploy safeguards against ransomware on information technology (IT) systems commonly targeted by hackers, as well as on physical fuel-flow controls.

Operators also must review their IT infrastructures and develop hacking response plans.

From The Washington Post
View Full Article - May Require Paid Subscription

 

Abstracts Copyright © 2021 SmithBucklin, Washington, DC, USA


 

No entries found