<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE article PUBLIC "-//NLM//DTD JATS (Z39.96) Journal Publishing DTD v1.3 20210610//EN" "JATS-journalpublishing1-3.dtd">
<article article-type="research-article" dtd-version="1.3" xmlns:mml="http://www.w3.org/1998/Math/MathML" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xml:lang="ru"><front><journal-meta><journal-id journal-id-type="publisher-id">mgimopravo</journal-id><journal-title-group><journal-title xml:lang="ru">Право и управление. XXI век</journal-title><trans-title-group xml:lang="en"><trans-title>Journal of Law and Administration</trans-title></trans-title-group></journal-title-group><issn pub-type="ppub">2073-8420</issn><issn pub-type="epub">2587-5736</issn><publisher><publisher-name>MGIMO</publisher-name></publisher></journal-meta><article-meta><article-id pub-id-type="doi">10.24833/2073-8420-2025-2-75-26-34</article-id><article-id custom-type="elpub" pub-id-type="custom">mgimopravo-689</article-id><article-categories><subj-group subj-group-type="heading"><subject>Research Article</subject></subj-group><subj-group subj-group-type="section-heading" xml:lang="ru"><subject>ПРАВО В СОВРЕМЕННОМ МИРЕ</subject></subj-group><subj-group subj-group-type="section-heading" xml:lang="en"><subject>LAW IN THE PRESENT-DAY WORLD</subject></subj-group></article-categories><title-group><article-title>Правовое обеспечение кибербезопасности топливно-энергетического комплекса России в контексте реализации Энергетической стратегии до 2050 года</article-title><trans-title-group xml:lang="en"><trans-title>Legal Support for Cybersecurity in the Russian Fuel and Energy Sector in the Context of the Energy Strategy Until 2050</trans-title></trans-title-group></title-group><contrib-group><contrib contrib-type="author" corresp="yes"><contrib-id contrib-id-type="orcid">https://orcid.org/0000-0001-9685-8172</contrib-id><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Лобанов</surname><given-names>С. А.</given-names></name><name name-style="western" xml:lang="en"><surname>Lobanov</surname><given-names>S. A.</given-names></name></name-alternatives><bio xml:lang="ru"><p>Лобанов Сергей Александрович, доктор юридических наук, доцент, заведующий кафедрой правового регулирования ТЭК</p></bio><bio xml:lang="en"><p>Sergey A. Lobanov, Doctor of Sciences (Law), Associate Professor, Head of the Department of Legal Regulation of the Fuel and Energy Industry</p></bio><email xlink:type="simple">lobanov-sa.lobanov@yandex.ru</email><xref ref-type="aff" rid="aff-1"/></contrib><contrib contrib-type="author" corresp="yes"><contrib-id contrib-id-type="orcid">https://orcid.org/0000-0003-3136-1143</contrib-id><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Назарова</surname><given-names>А. У.</given-names></name><name name-style="western" xml:lang="en"><surname>Nazarova</surname><given-names>A. U.</given-names></name></name-alternatives><bio xml:lang="ru"><p>Назарова Азиза Улугбековна, кандидат юридических наук, старший преподаватель кафедры правового регулирования ТЭК</p></bio><bio xml:lang="en"><p>Aziza U. Nazarova, Candidate of Sciences (Law), Senior Lecturer, the Department of Legal Regulation of the Fuel and Energy Industry</p></bio><email xlink:type="simple">nazarazizaa@gmail.com</email><xref ref-type="aff" rid="aff-1"/></contrib><contrib contrib-type="author" corresp="yes"><contrib-id contrib-id-type="orcid">https://orcid.org/0009-0001-8865-6834</contrib-id><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Найденов</surname><given-names>А. А.</given-names></name><name name-style="western" xml:lang="en"><surname>Naydenov</surname><given-names>A. A.</given-names></name></name-alternatives><bio xml:lang="ru"><p>Найденов Андрей Андреевич, магистрант</p></bio><bio xml:lang="en"><p>Andrey A. Naydenov, Master’s student,</p></bio><email xlink:type="simple">a_naidenov21@mail.ru</email><xref ref-type="aff" rid="aff-1"/></contrib></contrib-group><aff-alternatives id="aff-1"><aff xml:lang="ru"><institution>МГИМО МИД России</institution><country>Россия</country></aff><aff xml:lang="en"><institution>MGIMO University</institution><country>Russian Federation</country></aff></aff-alternatives><pub-date pub-type="collection"><year>2025</year></pub-date><pub-date pub-type="epub"><day>25</day><month>07</month><year>2025</year></pub-date><volume>21</volume><issue>2</issue><fpage>26</fpage><lpage>34</lpage><permissions><copyright-statement>Copyright &amp;#x00A9; Лобанов С.А., Назарова А.У., Найденов А.А., 2025</copyright-statement><copyright-year>2025</copyright-year><copyright-holder xml:lang="ru">Лобанов С.А., Назарова А.У., Найденов А.А.</copyright-holder><copyright-holder xml:lang="en">Lobanov S.A., Nazarova A.U., Naydenov A.A.</copyright-holder><license xml:lang="ru" license-type="creative-commons-attribution" xlink:href="https://creativecommons.org/licenses/by/4.0/" xlink:type="simple"><license-p>Данная работа распространяется под лицензией Creative Commons Attribution 4.0.</license-p></license><license xml:lang="en" license-type="creative-commons-attribution" xlink:href="https://creativecommons.org/licenses/by/4.0/" xlink:type="simple"><license-p>This work is licensed under a Creative Commons Attribution 4.0 License.</license-p></license></permissions><self-uri xlink:href="https://mgimopravo.elpub.ru/jour/article/view/689">https://mgimopravo.elpub.ru/jour/article/view/689</self-uri><abstract><p>Введение. В статье рассматривается проблема кибербезопасности топливно-энергетического комплекса (ТЭК) России в условиях цифровой трансформации отрасли, обозначенной в Энергетической стратегии РФ до 2050 года. Обоснована актуальность темы в связи с ростом числа кибератак на критическую инфраструктуру и недостаточностью существующих нормативных механизмов.Материалы и методы. Методологическую основу составляют сравнительно-правовой анализ, формально-юридический и системный подходы, с опорой на документы стратегического планирования РФ и международные нормативные акты (США, ЕС, КНР).Результаты исследования. Выявлен пробел в российском законодательстве: отсутствие специального закона о кибербезопасности объектов ТЭК. Проанализированы положения действующих нормативных актов, установлено их фрагментарное и отрасле-нейтральное применение. Приведён анализ зарубежных моделей NERC CIP (США), директивы NIS 2 (ЕС) и законодательства КНР.Обсуждение и заключение. Предложена концепция специального федерального закона о кибербезопасности объектов ТЭК, основанная на принципах превентивности, устойчивости, ответственности и отраслевой специфики. Сделан вывод о необходимости скорейшей законодательной регламентации в целях обеспечения энергетической безопасности России.</p></abstract><trans-abstract xml:lang="en"><p>Introduction. The article addresses the issue of cybersecurity in Russia’s fuel and energy sector (FES) in the context of digital transformation, as outlined in the Russian Energy Strategy until 2050. The relevance of the topic is substantiated by the growing number of cyberattacks targeting critical infrastructure and the inadequacy of existing legal instruments.Materials and methods. The research methodology includes comparative legal analysis, formal legal methods, and systemic approaches, drawing upon Russian strategic planning documents and international legal frameworks (USA, EU, China).Results of the study. The study identifies a legislative gap in the absence of a dedicated federal law on cybersecurity in the FES. The analysis of existing Russian laws shows that current regulations are fragmented and sector-neutral. Foreign models — NERC CIP (USA), NIS 2 Directive (EU), and Chinese cybersecurity legislation — are examined in detail.Discussion and conclusion. The authors propose a conceptual framework for a federal law on cybersecurity in the FES, based on the principles of prevention, resilience, accountability, and sectoral specificity. The need for prompt legislative action is emphasized as a strategic priority for Russia’s energy security</p></trans-abstract><kwd-group xml:lang="ru"><kwd>кибербезопасность</kwd><kwd>энергетическая стратегия</kwd><kwd>топливно-энергетический комплекс</kwd><kwd>критическая инфраструктура</kwd><kwd>цифровизация</kwd><kwd>правовое регулирование</kwd><kwd>энергетическая безопасность</kwd><kwd>стандарты безопасности</kwd><kwd>стратегическое планирование</kwd></kwd-group><kwd-group xml:lang="en"><kwd>cybersecurity</kwd><kwd>energy strategy</kwd><kwd>fuel and energy sector</kwd><kwd>critical infrastructure</kwd><kwd>digitalization</kwd><kwd>legal regulation</kwd><kwd>energy security</kwd><kwd>security standards</kwd><kwd>strategic planning</kwd></kwd-group></article-meta></front><back><ref-list><title>References</title><ref id="cit1"><label>1</label><citation-alternatives><mixed-citation xml:lang="ru">Балакин Д.А., Аликберова А.Р. Особенности Закона о кибербезопасности Китайской Народной Республики 2017 г. и международная реакция на его принятие // Modern Oriental Studies. 2023. № 2.</mixed-citation><mixed-citation xml:lang="en">Balakin, D.A., Alikberova, A.R., 2023. Osobennosti zakona o kiberbezopasnosti Kitajskoy Narodnoy Respubliki 2017 g. i mezhdunarodnaya reaktsiya na ego prinyatie [Features of the Cybersecurity Law of the People's Republic of China (2017) and the international reaction to its adoption]. Modern Oriental Studies. № 2.</mixed-citation></citation-alternatives></ref><ref id="cit2"><label>2</label><citation-alternatives><mixed-citation xml:lang="ru">DarkChronicles: последствия атаки на Colonial Pipeline [Электронный ресурс] // Kaspersky ICS CERT. 2021. 21 мая. URL: https://ics-cert.kaspersky.ru.</mixed-citation><mixed-citation xml:lang="en">Kaspersky ICS CERT, 2021. DarkChronicles: posledstviya ataki na Colonial Pipeline [DarkChronicles: consequences of the attack on Colonial Pipeline]. 21 May. URL: https://ics-cert.kaspersky.ru.</mixed-citation></citation-alternatives></ref><ref id="cit3"><label>3</label><citation-alternatives><mixed-citation xml:lang="ru">Эксперт оценил влияние атаки на Colonial Pipeline на сферу киберпреступности [Электронный ресурс] // Известия. 2021. 24 мая. URL: https://iz.ru.</mixed-citation><mixed-citation xml:lang="en">Ekspert otsenil vliyanie ataki na Colonial Pipeline na sferu kiberprestupnosti [Expert assessed the impact of the Colonial Pipeline attack on the cybercrime sphere]. Izvestiya [News]. 2021. 24 May. URL: https://iz.ru.</mixed-citation></citation-alternatives></ref><ref id="cit4"><label>4</label><citation-alternatives><mixed-citation xml:lang="ru">Positive Technologies: сегодня кибербезопасность ТЭК должна быть результативной // Neftegaz.RU. 2024. № 4 (148). URL: https://magazine.neftegaz.ru.</mixed-citation><mixed-citation xml:lang="en">Positive Technologies: segodnya kiberbezopasnost' TEK dolzhna byt' rezul'tativnoy [Today, cybersecurity in the fuel and energy sector must be effective]. Neftegaz.RU. 2024.No. 4 (148). URL: https://magazine.neftegaz.ru.</mixed-citation></citation-alternatives></ref><ref id="cit5"><label>5</label><citation-alternatives><mixed-citation xml:lang="ru">Что такое соответствие стандарту NERC CIP? // Continuum GRC. URL: https://continuumgrc.com.</mixed-citation><mixed-citation xml:lang="en">Chto takoe sootvetstvie standartu NERC CIP? [What is NERC CIP compliance?]. Continuum GRC. 2022. URL: https://continuumgrc.com.</mixed-citation></citation-alternatives></ref><ref id="cit6"><label>6</label><citation-alternatives><mixed-citation xml:lang="ru">Vijayshankar S., Chang C.-Y., Utkarsh K., Wald D., Ding F., Balamurugan S., King J., Macwan R. Assessing the Impact of Cybersecurity Attacks on Energy Systems // Applied Energy. 2023. Vol. 345. DOI: 10.1016/j.apenergy.2023.121297.</mixed-citation><mixed-citation xml:lang="en">Vijayshankar, S., Chang, C.-Y., Utkarsh, K., Wald, D., Ding, F., Balamurugan, S., King, J., Macwan, R., 2023. Assessing the impact of cybersecurity attacks on energy systems. Applied Energy. Vol. 345. DOI: 10.1016/j.apenergy.2023.121297.</mixed-citation></citation-alternatives></ref><ref id="cit7"><label>7</label><citation-alternatives><mixed-citation xml:lang="ru">Dong S., Cao J., Flynn D., Fan Z. Cybersecurity in Smart Local Energy Systems: Requirements, Challenges, and Standards // Energy Informatics. 2022. Vol. 5. Article 9. DOI: 10.1186/s42162-022-00195-7.</mixed-citation><mixed-citation xml:lang="en">Dong, S., Cao, J., Flynn, D., Fan, Z., 2022. Cybersecurity in smart local energy systems: requirements, challenges, and standards. Energy Informatics. Vol. 5. Article 9. DOI: 10.1186/s42162-022-00195-7.</mixed-citation></citation-alternatives></ref><ref id="cit8"><label>8</label><citation-alternatives><mixed-citation xml:lang="ru">Zografopoulos I., Ospina J., Liu X., Konstantinou C. Cyber-Physical Energy Systems Security: Threat Modeling, Risk Assessment, Resources, Metrics, and Case Studies // Computers &amp; Security. 2021. Vol. 105. DOI: 10.1016/j. cose.2021.102221.</mixed-citation><mixed-citation xml:lang="en">Zografopoulos, I., Ospina, J., Liu, X., Konstantinou, C., 2021. Cyber-physical energy systems security: threat modeling, risk assessment, resources, metrics, and case studies. Computers &amp; Security. Vol. 105. DOI: 10.1016/j.cose.2021.102221.</mixed-citation></citation-alternatives></ref><ref id="cit9"><label>9</label><citation-alternatives><mixed-citation xml:lang="ru">Mashima D., Chen Y., Roomi M.M., Lakshminarayana S., Chen D. Cybersecurity for Modern Smart Grid Against Emerging Threats // Electric Power Systems Research. 2024. Vol. 229. DOI: 10.1016/j.epsr.2023.109964</mixed-citation><mixed-citation xml:lang="en">Mashima, D., Chen, Y., Roomi, M.M., Lakshminarayana, S., Chen, D., 2024. Cybersecurity for modern smart grid against emerging threats. Electric Power Systems Research. Vol. 229. DOI: 10.1016/j.epsr.2023.109964</mixed-citation></citation-alternatives></ref></ref-list><fn-group><fn fn-type="conflict"><p>The authors declare that there are no conflicts of interest present.</p></fn></fn-group></back></article>
