NERC CIP — Critical Infrastructure Protection Reliability Standards (North American bulk electric system) · v2024
NERC CIP — Critical Infrastructure Protection Reliability Standards (North American bulk electric system)
NERC CIP — Critical Infrastructure Protection Reliability Standards (North American bulk electric system) — 40% covered.
5 requirements · 0 enforced · 3 designed · 2 advisory · 0 deferred.
Source: NERC Critical Infrastructure Protection (CIP) reliability standards governing cyber security of the North American bulk electric system (BES Cyber Systems). KYE governs the authority, evidence and finality of an AI-recommended physical-safety action on grid/power assets and the scope boundary of the AI's authority; KYE does not replace the registered entity's CIP compliance program. Starter requirement set (Wave-Ralph-Industrial); deepen by graft. · License: NERC standards are public; KYE registry cites the standard + requirement identifier for mapping purposes.
By category
| Category | Reqs | Enforced | Designed | Advisory | Deferred | Coverage |
|---|---|---|---|---|---|---|
| CIP-002 — BES Cyber System Categorization | 1 | 0 | 0 | 1 | 0 | 25% |
| CIP-004 — Personnel & Training | 1 | 0 | 1 | 0 | 0 | 50% |
| CIP-007 — System Security Management | 1 | 0 | 1 | 0 | 0 | 50% |
| CIP-008 — Incident Reporting and Response | 1 | 0 | 1 | 0 | 0 | 50% |
| CIP-011 — Information Protection | 1 | 0 | 0 | 1 | 0 | 25% |
Every requirement → the KYE™ artefact that enforces it
| ID | Title | Status | KYE™ enforcement |
|---|---|---|---|
nerc-cip.cip-002-5.1a.r1 |
BES Cyber System categorization by impact | advisory | dictionaries: internalconstitution_refs: constitution/25-EDGE-GOVERNANCE.md |
nerc-cip.cip-004-6.r4 |
Access management — authorized personnel for cyber-physical actions | designed | rule_packs: kye:rule-pack:industrial-asset-integritydictionaries: internalconstitution_refs: constitution/12-PURPOSE-PERMISSION.md |
nerc-cip.cip-007-6.r1 |
System security management — controlled actuation of BES assets | designed | rule_packs: kye:rule-pack:industrial-asset-integrityconstitution_refs: constitution/25-EDGE-GOVERNANCE.md |
nerc-cip.cip-008-6.r1 |
Incident response — contestable and evidenced decisions | designed | rule_packs: kye:rule-pack:industrial-asset-integrityaudit_events: kye.evidence.pack.v1constitution_refs: constitution/21-DELEGATED-AUDITABILITY.md |
nerc-cip.cip-011-3.r1 |
Information protection — evidence record integrity | advisory | audit_events: kye.evidence.pack.v1constitution_refs: constitution/30-AUDIT-WORM-RETENTION.md |