Skip to content

mizcausevic-dev/grid-decision-record-audit-stream-reference

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
.github/workflows
.github/workflows
 
 
examples
examples
 
 
src
src
 
 
test
test
 
 
.gitignore
.gitignore
 
 
CHANGELOG.md
CHANGELOG.md
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
package.json
package.json
 
 

Repository files navigation

grid-decision-record-audit-stream-reference

AGPL-3.0 reference implementation of grid-decision-record-audit-stream. Runs the Continental Grid Operator × VendorE GridSense 6.x trajectory end-to-end against a mock BES Cyber System vault. Proves the EnergyTech design — including the FIRST Suite numeric regulatory wall-clock invariant (CIP-008 1-hour) — works in code.

Part of the Kinetic Gain Protocol Suite. Sibling to fhir-resource-access-audit-reference (HealthTech), matter-decision-record-audit-stream-reference (LegalTech), and defense-decision-record-audit-stream-reference (DefenseTech).

What this proves

  1. 2-axis vault gating — BES categorization × OT/IT boundary intersect to per-tuple policy. HIGH+OT transmission switching is allowed only with NERC-certified operator + cert id. HIGH+IT permits search but not generate.
  2. CIP-008 1-hour wall-clock — cyber-incident events must include cip_008_report_ref.filed_at within 60 minutes of timestamp. Verifier rejects late reports as missed-window violations.
  3. Human-operator-in-loop on HIGH-impact OT — verifier rejects HIGH+OT events lacking agent.human_operator_user_id_tokenized.
  4. NERC certification on transmission switching — verifier rejects switching events without agent.nerc_certification_id_tokenized.

Run it

npm install && npm start
# → Built 3 events → examples/cgo-gridsense-reference-stream.ndjson
# → OK · 3 events · chain ✓ · 3 invariants ✓ (cip-008-1h + human-op-on-HIGH+OT + nerc-cert-on-switching)
npm test    # 7 unit tests

Canonical trajectory

  1. Load-forecast read on MEDIUM+IT (tok_lf_a1) — no special gates.
  2. CIP-008 cyber-incident flagged on HIGH+IT (tok_ids_b2) — must file via E-ISAC within 1 hour. Reference reports 55 minutes after detection.
  3. Transmission-switching recommendation on HIGH+OT (tok_tso_c3) — NERC-certified operator with cert id tok_nerc_cert_007.

Composes with

Compliance posture

Reference implementation readiness scaffolding for NERC CIP-002 through CIP-014 + TSA SD-2021-02C + DOE EO 14028 + FERC + state PUC + ISO/RTO BPM. Does NOT constitute NERC compliance attestation, TSA pipeline approval, FERC tariff approval, or NERC System Operator certification. The mock vault is in-memory — production deployments require real OT/IT-segmented infrastructure with FIPS-validated crypto + ISA/IEC 62443 zone separation. Per the standing Suite public-language guardrail: readiness · evidence · posture · controls · scaffolding — never "compliant" / "certified" without external attestation.

License

AGPL-3.0-only.

About

AGPL-3.0 reference impl of EnergyTech audit-stream + 2-axis BES/OT-IT vault. Runs Continental Grid Operator × VendorE GridSense 6.x trajectory end-to-end. Anchors the FIRST Suite numeric regulatory wall-clock invariant (CIP-008 1-hour) in working code.

suite.kineticgain.com/verticals/energytech/

Topics

reference-implementation nerc-cip kinetic-gain-protocol-suite audit-stream energytech bes-cyber-system cip-008 tsa-pipeline

Resources

Readme

License

AGPL-3.0 license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases 2

v1.0-prod — EnergyTech vertical 6-pack Latest
May 31, 2026
+ 1 release

Packages

 
 
 

Contributors

Languages