New York utilities propose cybersecurity protocols for third parties