Computer and information security

Computers play an essential role in all aspects of the management and safe and secure operation of nuclear facilities. Computer-based systems also support the authorities in the facilities’ regulation and oversight. The IAEA provides guidance and training to assist States in developing comprehensive computer and information security activities. 

The use of computer-based systems at nuclear and radiological facilities continues to increase, including the use of many non-standard information technology systems. It is vitally important that all such systems are properly secured against malicious computer-based actions. At the same time, computer networks and computer-based systems have become a larger target for malicious acts.

Computer security is concerned with the protection of digital data and the defence of systems and networks against malicious acts. The multidimensional nature of an attack and the potential consequences for nuclear facility damage, nuclear security information loss and the theft of nuclear or radioactive material make the development of a robust computer and information security programme an essential component of an overall nuclear security plan.

The IAEA provides expertise and guidance at all stages of the development of an information and computer security programme. It provides guidance and training to assist Member States in developing their own comprehensive computer and information security programmes. The Agency conducts advisory missions, trains inspectors, and provides planning expertise in conducting computer security exercises as part of the nuclear security programme. The focus of these activities is on computer and information security related to the protection of computer-based systems within a nuclear security regime. 

Stay in touch