Support Support Downloads Knowledge Base Case Manager My Juniper Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

Do Juniper products meet NERC, FERC, and NRC regulatory requirements?



Article ID: KB19990 KB Last Updated: 03 Mar 2011Version: 1.0

The U.S. Federal Energy Regulatory Commission (FERC) has approved the North American Electric Reliability Corporation (NERC) mandatory cyber security regulations for Critical Infrastructure Protection (CIPs) for protecting the national bulk power system, defined as NERC CIP-002 through CIP-009. These reliability standards focus on physical and virtual systems whose disruption or destruction would have a debilitating impact on security, national economic security, and national public health or safety.

Protection of control system networks is essential for maintaining or improving the reliability of the nation’s critical infrastructure. This includes power and energy industries, water, chemical plants, manufacturing facilities, and transportation.

I am an Energy or Utility provider and I need to know if Juniper products meet NERC-CIP requirements.
NERC compliant networks can be built using Juniper products (SSG as well as SRX devices).

Juniper’s network-based security solutions assist utilities to meet NERC CIP requirements with a broad range of functionalities, including:
  • Firewalls for stateful inspection, port and traffic awareness, and network transparency
  • Juniper Networks IDP Series Intrusion Detection and Prevention Appliances to assess application, protocol, session, and traffic flow awareness; provide multiple detection methods and remediation; and passively profile and identify critical assets
  • Juniper Networks Unified Access Control and SA Series SSL VPN Appliances for local and remote authentication and admission by roles and responsibilities
  • Forensics analysis tools to provide event correlation, logging, reporting for full visibility
  • Centralized, role-based security management
Based on these capabilities, Juniper helps secure SCADA (Supervisory Control And Data Acquisition) networks by helping utilities accurately analyze the network, create business policies, implement security infrastructures, monitor policy enforcement, and educate employees in security practices.

Juniper has been an early provider of solutions targeting the security needs of utilities, supporting industrial protocols, and designing functionalities to meet the specific needs of these environments.
The company is a member of ISA-SP99 and works in partnership with the Pacific Northwest National Laboratory (PNNL) and the Idaho National Laboratory (INL), the national SCADA infrastructure test beds, with funding from the Department of Energy; and with Sandia National Laboratories on projects for the Department of Homeland Security.

For more information please reference Juniper's Energy and Utilities solutions page.
Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Getting Up and Running with Junos

Getting Up and Running with Junos Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search