P K Agarwal, profile picture
Uploaded byP K Agarwal
PPTX, PDF2,058 views

Cyber security of power grid

This document discusses cyber security concerns regarding smart grid technology integration. It outlines how increased data sharing and connectivity between new and legacy systems introduces new cyber vulnerabilities. It then summarizes existing cyber security standards from organizations like ISO, NERC, and IEC that can provide frameworks for addressing these vulnerabilities. Finally, it notes challenges integrating new technologies with legacy systems and the need for a strategic roadmap to help guide secure technology adoption.

Technology◦
Related topics:
Cyber-Security•Electric Power Systems• Power Grid•

Embed presentation

Downloaded 166 times
CYBER SECURITY of POWER GRID P.K.Agarwal, Addtional General Manager, Power System Operation Corporation
22-Feb-2012 2 SCADA Hacking News
Convergence of Information Technology and Operation Technology. 22-Feb-2012 3 Enterprise Systems Web Applications Control Systems Protection Systems Information Technology Operations Technology AMI DSM OMS GIS Smart Grid Technology Concerns of Cyber Security
-: Need of Data Sharing :- -: Increased use of digital information :- -: Two way flow of information for Power Grid :- 22-Feb-2012 4 Markets Generation Transmission Distribution Customer Service Providers Flow of Electricity Flow of Information
Concerns with regard to security of power grid solutions. Existing standards for system security under a smart grid environment for System Operator. Challenges of integrating new technologies with legacy systems. Roadmap for technology adoption required for network security in smart grid environment. 22-Feb-2012 5 Agenda
Concerns with regard to security of power grid solutions. 22-Feb-2012 6
Cyber Security in Power Grid 22-Feb-2012 7 ThreatsRequirements Confidentiality Integrity Availability Non- Repudiation Unauthorised access to Infomation Unauthorised Modification or Theft of Infomation Denial of Service or Prevention of Authorised Access Accountability: Denial of Action That took place, or claim of Action that did not take place
Concerns • Current power grid depends on complex network of computers, software and communication technologies. • If compromised, have the potential to cause great damages. • A cyber attack has the unique in nature that it can be launched through – public network – from a remote location – Form any where in the world. – Coordinated to attack many locations 22-Feb-2012 8
More Concerns • The legacy communication method used for grid operations also provide potential cyber attack paths. • Many cyber vulnerabilities in Supervisory Control and Data Acquisition (SCADA) System have been surfaced. • Level of automation in substations is increasing, which can lead more cyber security issues. • Recent study have shown that the deployed components have significant cyber vulnerabilities.22-Feb-2012 9
Still More Concerns • Efforts of energy sector to uncover system vulnerabilities develop effective countermeasures have prevented serious damages to electric supply chain. • Some of these vulnerabilities are in the process of being mitigated. • However, attack on energy control systems have been successful in many cases. 22-Feb-2012 10
Existing standards for system security under a smart grid environment for system operators. 22-Feb-2012 11
Standards and Framework • ISO/IEC 27001- Information Security Management System. • NERC-CIP Standards - Critical Infrastructure Protection Standard. • NIST IR 7628 – Guidelines for Smart Grid Cyber Security. • IEC 62351 Series Security Standards Standards 22-Feb-2012 12
ISO/IEC 27001 - ISMS • Information Security Management System Standard. • Published by International Organization for Standards and International Electro technical Commission. • Information technology -- Security techniques -- Information security management systems -- Requirements. • Formally specifies a management system that is intended to bring information security under explicit management control.22-Feb-2012 13
NERC – CIP Standards • Critical infrastructure protection (CIP) is a concept by North American Reliability Corporation (NERC). • Efforts to improve physical and cyber security for the bulk power system of North America. • include standards development, compliance enforcement, assessments of risk and preparedness • provide a cyber security framework for the identification and protection of Critical Cyber Assets to support reliable operation of the Bulk22-Feb-2012 14
CIP-001 Sabotage Reporting CIP-002 Critical Cyber Asset Identification CIP-003 Security Management Controls CIP-004 Personnel & Training CIP-005 Electronic Security Perimeter(s) CIP-006 Physical Security of Critical Cyber Assets CIP-007 Systems Security Management CIP-008 Incident Reporting and Response Planning CIP-009 Recovery Plans for Critical Cyber Assets 22-Feb-2012 15 NERC – CIP Standards Series
NIST IR-7628 Guidelines for Smart Grid Cyber Security. • Advisory guidelines – neither prescriptive nor mandatory • Intended to facilitate efforts to develop:- – A cyber Security Strategy – Effectively focused on • Prevention • Detection • Response and • Recovery 22-Feb-2012 16
NIST IR-7628 Guideline The three-volume reports of Guidelines for Smart Grid Cyber Security are:- • Volume 1 - Smart Grid Cyber Security Strategy, Architecture, and High-Level Requirements • Volume 2 - Privacy and the Smart Grid • Volume 3 - Supportive Analyses and References Freely available at http://csrc.nist.gov/publications/nistir 22-Feb-2012 17
IEC-62351 Standards • Communication protocols are one of the most critical parts of power system operations. • Communication protocols developed by TR 57 are:- – IEC 60870-5 – 101, 102, 103, 104 – IEC 60870-6 – TASE.2 – IEC 61850 • These were very specialized, rely on “Security by Obscenity” – now no longer valid. 22-Feb-2012 18
IEC-62351 Standards Series • Series provides provides a frame work for security of existing power system protocols:- – IEC 62351-1 : Introduction and overview – IEC 62351-2 : Glossary of Terms – IEC 62351-3 : Profiles including TCP/IP – IEC 62351-4 : Profiles including MMS – IEC 62351-5 : Security for IEC 60870-5 & derivatives – IEC 62351-6 : Security for 61850 Profiles – IEC 62351-7 : Management Information Base Requirements for End-to-End Network Management 22-Feb-2012 19
Correlation between IEC 62351 and Power System Protocols 22-Feb-2012 20 IEC 62351-1 : Introduction IEC 62351-2 : Glossary IEC 62351-3 : Profiles Including TCP/IP IEC 62351-4 : Profiles Including MMS IEC 62351-5 : IEC 60870-5 & Derivatives IEC 62351-6 : IEC 61850 IEC 60870-6 TASE.2 IEC62351-7:MIBfor NetworkandSystem Management IEC 61850-8-1 MMS Profiles IEC 60870-5-104 TCP/IP IEC 60870-5-101, 102 and 103 IEC 61850-8-1 GOOSE Profiles IEC 61850-9-2 Profiles Source – IEC 62351- 1 IEC 60870-6 TASE.2
Challenges of integrating new technologies with legacy systems. 22-Feb-2012 21
Legacy System – Silos of Information 22-Feb-2012 22 TOP1 – Operational Information DIST1 - Operational Information DISTx – Operational Information GEN1 - Operational Information GENx - Operational Information TOPx – Operational Information
Smart System – Sharing of Information 22-Feb-2012 23 Transmission Distribution CustomersGeneration AMI DSM System Operations System Operations
Challenges in Integrating 22-Feb-2012 24 Increasing Number Of Systems and Size of Code Base Control Systems Not Designed with Security in Mind Increasing Use of COTS Hardware and Software New Customer Touch Points into Utilities New 2-Way Systems (e.g. AMI, DSM) Increasing Interconnection and Integration Increased Attack Surface Increased Risk to Operations
Some Solutions • Air gap between legacy and new system. – Sharing of information through batch transfer. – Not possible in real tim emode. • Publish/Subscribe technology between legacy system and new system. – Information can only be shared if the source system publishes it. • Use of Data-diode technolgy. 22-Feb-2012 25
Challenges of integrating new technologies with legacy systems. 22-Feb-2012 26
Barriers • Cyber threats are unpredictable and evolve faster than the sector’s ability to develop and deploy countermeasures • Security upgrades to legacy systems are limited by inherent limitations of the equipment and architectures • Threat, vulnerability, incident, and mitigation information sharing is insufficient among government and industry • Weak business case for cyber security investment by industry 22-Feb-2012 27
Strategies • Build a culture of security. • Access and Monitor Risks. • Develop and Implement New Protective Measures to reduce Risks. • Manage Incidence. • Sustain Security Improvements. 22-Feb-2012 28
Road Map for Security of Smart Grid • Information Security Management System have been adopted by each regional load dispatch center. • Each RLDC has been certified by International Certifying Body (BSI) for ISO 27001:2005. • SCADA system up gradation is being done with:- – Adoption of IEC 62351 security standards. – Secure connection between SCADA network and Enterprise network for cyber security. – Access control for physical security. 22-Feb-2012 29
22-Feb-2012 30

More Related Content

PDF
Ge Feeder Protection Numerical Relays
byDigital and Smart Grid Enterprises
 
PDF
Grid Protection Systems - New Technologies
byIPPAI
 
PDF
Lightning and protection as per iec62305,nfpa780, nfc17 102
byMahesh Chandra Manav
 
PDF
Earthing and bonding - Power cables
byLeonardo ENERGY
 
PPTX
CLASS 2022 - Sergio Sevileanu (Siemens) e Felipe Coelho (Claroty) - Habilitan...
byTI Safe
 
PDF
IoT Solutions for Smart Energy Smart Grid and Smart Utility Applications
byEurotech
 
PPTX
Power surge protection devices
byPratik Rasam
 
PDF
Cybersecurity for Smart Grids: Technical Approaches to Provide Cybersecurity
byLeonardo ENERGY
 
Ge Feeder Protection Numerical Relays
byDigital and Smart Grid Enterprises
 
Grid Protection Systems - New Technologies
byIPPAI
 
Lightning and protection as per iec62305,nfpa780, nfc17 102
byMahesh Chandra Manav
 
Earthing and bonding - Power cables
byLeonardo ENERGY
 
CLASS 2022 - Sergio Sevileanu (Siemens) e Felipe Coelho (Claroty) - Habilitan...
byTI Safe
 
IoT Solutions for Smart Energy Smart Grid and Smart Utility Applications
byEurotech
 
Power surge protection devices
byPratik Rasam
 
Cybersecurity for Smart Grids: Technical Approaches to Provide Cybersecurity
byLeonardo ENERGY
 

What's hot

PDF
Aea 92305 4
bycmonti40x
 
PPTX
Internet Of Things (IOT)
byMindfire Solutions
 
PDF
A Big Picture of IEC 62443 - Cybersecurity Webinar (2) 2020
byJiunn-Jer Sun
 
PDF
Understanding IoT
byMd. Shamsul Haque
 
PPT
Distribution boards and Protection devices ppt
byZuhairQadri
 
PDF
Short Circuit, Protective Device Coordination
bymichaeljmack
 
PPTX
IoT security
byYashKesharwani2
 
PDF
ABB Price List of Capacitors 008
byR Sanghavi Mercantile Pvt Ltd
 
PPTX
GIS (Gas-Insulated Substation) by Bharat & Shanni
byBHARATKUMAR RATHOD
 
PPT
IP CCTV Introduction
bymartynk
 
PPTX
OPGW Optical Ground Wire
bySourabh sharma
 
PPTX
Renewable Energy, IoT and Integration
byBizTalk360
 
PPT
Basic short circuit calculation procedure
byMustafa Ismail
 
PDF
Design Checklist_Electrical
byStephanus Roux C Eng , IntPE(uk) , FIET
 
PDF
Ninja Blocks Introduction
byapgiorgi
 
PPTX
IoT security compliance checklist
byPriyaNemade
 
PPTX
Surge and Lightning Protection Oct 2020
byRekaNext Capital
 
PDF
Cisco Internet of Things
byPanduit
 
PPTX
Earthing and grounding.pptx
bySuhailAbdul2
 
PDF
Installation and troubleshooting of solar pv power plants
byGomathy Sengottaiyan
 
Aea 92305 4
bycmonti40x
 
Internet Of Things (IOT)
byMindfire Solutions
 
A Big Picture of IEC 62443 - Cybersecurity Webinar (2) 2020
byJiunn-Jer Sun
 
Understanding IoT
byMd. Shamsul Haque
 
Distribution boards and Protection devices ppt
byZuhairQadri
 
Short Circuit, Protective Device Coordination
bymichaeljmack
 
IoT security
byYashKesharwani2
 
ABB Price List of Capacitors 008
byR Sanghavi Mercantile Pvt Ltd
 
GIS (Gas-Insulated Substation) by Bharat & Shanni
byBHARATKUMAR RATHOD
 
IP CCTV Introduction
bymartynk
 
OPGW Optical Ground Wire
bySourabh sharma
 
Renewable Energy, IoT and Integration
byBizTalk360
 
Basic short circuit calculation procedure
byMustafa Ismail
 
Design Checklist_Electrical
byStephanus Roux C Eng , IntPE(uk) , FIET
 
Ninja Blocks Introduction
byapgiorgi
 
IoT security compliance checklist
byPriyaNemade
 
Surge and Lightning Protection Oct 2020
byRekaNext Capital
 
Cisco Internet of Things
byPanduit
 
Earthing and grounding.pptx
bySuhailAbdul2
 
Installation and troubleshooting of solar pv power plants
byGomathy Sengottaiyan
 

Viewers also liked

PPT
Smart Grid Cyber Security
byJAZEEL K T
 
PPTX
Security challenges to power grid and smart grid infrastructures
byP K Agarwal
 
PDF
Smart Grid Cyber Security Summit Revere
byhhanebeck
 
PDF
Webinar - Reducing the Risk of a Cyber Attack on Utilities
byWPICPE
 
PPT
Cyber Security in Energy & Utilities Industry
byProlifics
 
PDF
Scada
byhamada13
 
PPTX
Veena kakati
byveena kakati
 
PPSX
Smart Grid & SCADA Systems
byPratim Chakrabortty
 
PPTX
Final 1st
bygokulprema
 
PPTX
Cyber Security of Power grids
byJishnu Pradeep
 
PDF
Security and smart grid what you need to know john chowdhury 2012 final
byJohn Chowdhury
 
PDF
Smart grid security
byAhmadreza Ghaznavi
 
PPTX
Smart Grid Technology
byShriramGokhale
 
PDF
Camur 2016-ancash-1
byPepe Jara Cueva
 
PPT
High Performance Websites By Souders Steve
byw3guru
 
PPT
AJ Faxel's Work Photos
byAJ Faxel
 
PDF
Investorguide Eng
bytanriverdi
 
PDF
ikd312-05-kalkulus-relasional
byAnung Ariwibowo
 
PDF
jukran sismintir, nomor 162.a tahun 2011
byDwi Hadi
 
PDF
Fire Department Of New York City
byTarece Johnson Hassell
 
Smart Grid Cyber Security
byJAZEEL K T
 
Security challenges to power grid and smart grid infrastructures
byP K Agarwal
 
Smart Grid Cyber Security Summit Revere
byhhanebeck
 
Webinar - Reducing the Risk of a Cyber Attack on Utilities
byWPICPE
 
Cyber Security in Energy & Utilities Industry
byProlifics
 
Scada
byhamada13
 
Veena kakati
byveena kakati
 
Smart Grid & SCADA Systems
byPratim Chakrabortty
 
Final 1st
bygokulprema
 
Cyber Security of Power grids
byJishnu Pradeep
 
Security and smart grid what you need to know john chowdhury 2012 final
byJohn Chowdhury
 
Smart grid security
byAhmadreza Ghaznavi
 
Smart Grid Technology
byShriramGokhale
 
Camur 2016-ancash-1
byPepe Jara Cueva
 
High Performance Websites By Souders Steve
byw3guru
 
AJ Faxel's Work Photos
byAJ Faxel
 
Investorguide Eng
bytanriverdi
 
ikd312-05-kalkulus-relasional
byAnung Ariwibowo
 
jukran sismintir, nomor 162.a tahun 2011
byDwi Hadi
 
Fire Department Of New York City
byTarece Johnson Hassell
 

Similar to Cyber security of power grid

PDF
Cybersecurity for Smart Grids: Vulnerabilities and Strategies to Provide Cybe...
byLeonardo ENERGY
 
PPTX
Cyber-Security-for-Smart-Grid bbbb .pptx
byperiiteeedept2
 
PPT
T063500000200201 ppte
byyasinalimohammed
 
PPTX
The Final Presentation - The Arsenal.pptx
byOlusholaWhenu1
 
PDF
Cyber-security of smart grids
byHamza AlBzoor
 
PDF
SMi Group's 4th annual European Smart Grid Cyber and SCADA Security conferenc...
byDale Butler
 
PDF
European smart grid cyber and scada security
byYulia Rotar
 
PPTX
CYBER SECURITY IN THE SMART GRID
bySiva Sasthri
 
PPTX
Presentation1 160729072733
bySIVA SASTHRI
 
PPTX
Cybersecurity in power system ppt for power system.pptx
byanandaa22
 
PPTX
Cybersecurityinpowersector 181124194055
byP K Agarwal
 
PPTX
Cyber security in power sector
byP K Agarwal
 
PPTX
Challenges and Solution to Mitigate the cyber-attack on Critical Infrastruct...
byAbhishek Goel
 
PDF
CYBER SECURITY TRANDS FOR FUTURE SMART GRID SYSTEMS
byGeorge Wainblat
 
PPTX
Cyber security in Smart grid system
byamaljose949563
 
PDF
Ht r35 b
bySelectedPresentations
 
PPS
02 ibm security for smart grids
byIBM Italia Web Team
 
PPTX
TEl cyber Awareness powerpoint.ppt (1).pptx
bynarunachalam2021
 
PPTX
04_04_04_04_04_Beltran_Cybersecurity.pptx
bynarunachalam2021
 
PDF
Cyber security white paper final PMD 12_28_16
byDave Darnell
 
Cybersecurity for Smart Grids: Vulnerabilities and Strategies to Provide Cybe...
byLeonardo ENERGY
 
Cyber-Security-for-Smart-Grid bbbb .pptx
byperiiteeedept2
 
T063500000200201 ppte
byyasinalimohammed
 
The Final Presentation - The Arsenal.pptx
byOlusholaWhenu1
 
Cyber-security of smart grids
byHamza AlBzoor
 
SMi Group's 4th annual European Smart Grid Cyber and SCADA Security conferenc...
byDale Butler
 
European smart grid cyber and scada security
byYulia Rotar
 
CYBER SECURITY IN THE SMART GRID
bySiva Sasthri
 
Presentation1 160729072733
bySIVA SASTHRI
 
Cybersecurity in power system ppt for power system.pptx
byanandaa22
 
Cybersecurityinpowersector 181124194055
byP K Agarwal
 
Cyber security in power sector
byP K Agarwal
 
Challenges and Solution to Mitigate the cyber-attack on Critical Infrastruct...
byAbhishek Goel
 
CYBER SECURITY TRANDS FOR FUTURE SMART GRID SYSTEMS
byGeorge Wainblat
 
Cyber security in Smart grid system
byamaljose949563
 
Ht r35 b
bySelectedPresentations
 
02 ibm security for smart grids
byIBM Italia Web Team
 
TEl cyber Awareness powerpoint.ppt (1).pptx
bynarunachalam2021
 
04_04_04_04_04_Beltran_Cybersecurity.pptx
bynarunachalam2021
 
Cyber security white paper final PMD 12_28_16
byDave Darnell
 

More from P K Agarwal

PDF
Operational Aspects of Real Time Market in India
byP K Agarwal
 
PDF
Managing Power System
byP K Agarwal
 
PDF
Electric energy scientific development, main source and consumers
byP K Agarwal
 
PPT
Transforming Managers A learning Agenda
byP K Agarwal
 
PDF
Paradigm Shift In Power System Scada
byP K Agarwal
 
PPT
Power Quality
byP K Agarwal
 
Operational Aspects of Real Time Market in India
byP K Agarwal
 
Managing Power System
byP K Agarwal
 
Electric energy scientific development, main source and consumers
byP K Agarwal
 
Transforming Managers A learning Agenda
byP K Agarwal
 
Paradigm Shift In Power System Scada
byP K Agarwal
 
Power Quality
byP K Agarwal
 

Recently uploaded

PPT
Introduction to Risk Based Inspection API-580 & 581
byumerfaiz99
 
PPTX
Computer architecture, Computer architecture ,Computer architecture
bywaheedqazi123
 
PPTX
Beyond the Algorithm: Designing Human-Centric Public Service with AI
byAlan Dix
 
PPTX
Retrieval Augmented Generation- The Synergistic Power of Prompt Engineering
bySemantic SEO BD
 
PDF
Traditional-Security-Models-No-Longer-Work.pptx (1).pdf
byOhhproJunction
 
PDF
Advanced SELinux Management - RHCSA (RH134).pdf
byLinuxCert Guru
 
PDF
UiPath Automation Developer Associate Training Series 2026 - Session 2
byDianaGray10
 
PDF
GenerationAI Paris 2025 | How Agentic AI is Reinventing Organizations
byapidays
 
PDF
Explaining the flow of purpose-specific BOM
byakipii ogaoga
 
PDF
Explaining specific examples of purpose-specific BOM
byakipii ogaoga
 
PDF
UiPath Automation Developer Associate Training Series 2026 - Session 3
byDianaGray10
 
PDF
Post Quantum Cryptography for Dummies.pdf
byAde Ismail Isnan
 
PDF
Writing GPU-Ready AI Models in Pure Java with Babylon
byAna-Maria Mihalceanu
 
PDF
Chapter 4 Network Security in computer security
byGetnet Tigabie Askale -(GM)
 
PDF
TravelTech Paris 2025 | The EU Digital Identity Wallet and it’s impact on Tra...
byapidays
 
PDF
AI in DevOps: Transforming the Developer Experience and Expanding the Securit...
byEnterprise Management Associates
 
PDF
From DeFi POC to Production MVP - A 12-16 Week Blueprint.pdf
byniahiggins21
 
PDF
Designing a Blog Using Wordpress
bymarkzubi50
 
PPTX
apidays Paris 2025 | Integration is Feminist: Building Peace in Distributed S...
byapidays
 
PDF
Safer’s Picks: The 5 FME Transformers You Didn’t Know You Needed
bySafe Software
 
Introduction to Risk Based Inspection API-580 & 581
byumerfaiz99
 
Computer architecture, Computer architecture ,Computer architecture
bywaheedqazi123
 
Beyond the Algorithm: Designing Human-Centric Public Service with AI
byAlan Dix
 
Retrieval Augmented Generation- The Synergistic Power of Prompt Engineering
bySemantic SEO BD
 
Traditional-Security-Models-No-Longer-Work.pptx (1).pdf
byOhhproJunction
 
Advanced SELinux Management - RHCSA (RH134).pdf
byLinuxCert Guru
 
UiPath Automation Developer Associate Training Series 2026 - Session 2
byDianaGray10
 
GenerationAI Paris 2025 | How Agentic AI is Reinventing Organizations
byapidays
 
Explaining the flow of purpose-specific BOM
byakipii ogaoga
 
Explaining specific examples of purpose-specific BOM
byakipii ogaoga
 
UiPath Automation Developer Associate Training Series 2026 - Session 3
byDianaGray10
 
Post Quantum Cryptography for Dummies.pdf
byAde Ismail Isnan
 
Writing GPU-Ready AI Models in Pure Java with Babylon
byAna-Maria Mihalceanu
 
Chapter 4 Network Security in computer security
byGetnet Tigabie Askale -(GM)
 
TravelTech Paris 2025 | The EU Digital Identity Wallet and it’s impact on Tra...
byapidays
 
AI in DevOps: Transforming the Developer Experience and Expanding the Securit...
byEnterprise Management Associates
 
From DeFi POC to Production MVP - A 12-16 Week Blueprint.pdf
byniahiggins21
 
Designing a Blog Using Wordpress
bymarkzubi50
 
apidays Paris 2025 | Integration is Feminist: Building Peace in Distributed S...
byapidays
 
Safer’s Picks: The 5 FME Transformers You Didn’t Know You Needed
bySafe Software
 

Cyber security of power grid

  • 1.
    CYBER SECURITY ofPOWER GRID P.K.Agarwal, Addtional General Manager, Power System Operation Corporation
  • 2.
  • 3.
    Convergence of InformationTechnology and Operation Technology. 22-Feb-2012 3 Enterprise Systems Web Applications Control Systems Protection Systems Information Technology Operations Technology AMI DSM OMS GIS Smart Grid Technology Concerns of Cyber Security
  • 4.
    -: Need ofData Sharing :- -: Increased use of digital information :- -: Two way flow of information for Power Grid :- 22-Feb-2012 4 Markets Generation Transmission Distribution Customer Service Providers Flow of Electricity Flow of Information
  • 5.
    Concerns with regardto security of power grid solutions. Existing standards for system security under a smart grid environment for System Operator. Challenges of integrating new technologies with legacy systems. Roadmap for technology adoption required for network security in smart grid environment. 22-Feb-2012 5 Agenda
  • 6.
    Concerns with regardto security of power grid solutions. 22-Feb-2012 6
  • 7.
    Cyber Security inPower Grid 22-Feb-2012 7 ThreatsRequirements Confidentiality Integrity Availability Non- Repudiation Unauthorised access to Infomation Unauthorised Modification or Theft of Infomation Denial of Service or Prevention of Authorised Access Accountability: Denial of Action That took place, or claim of Action that did not take place
  • 8.
    Concerns • Current powergrid depends on complex network of computers, software and communication technologies. • If compromised, have the potential to cause great damages. • A cyber attack has the unique in nature that it can be launched through – public network – from a remote location – Form any where in the world. – Coordinated to attack many locations 22-Feb-2012 8
  • 9.
    More Concerns • Thelegacy communication method used for grid operations also provide potential cyber attack paths. • Many cyber vulnerabilities in Supervisory Control and Data Acquisition (SCADA) System have been surfaced. • Level of automation in substations is increasing, which can lead more cyber security issues. • Recent study have shown that the deployed components have significant cyber vulnerabilities.22-Feb-2012 9
  • 10.
    Still More Concerns •Efforts of energy sector to uncover system vulnerabilities develop effective countermeasures have prevented serious damages to electric supply chain. • Some of these vulnerabilities are in the process of being mitigated. • However, attack on energy control systems have been successful in many cases. 22-Feb-2012 10
  • 11.
    Existing standards forsystem security under a smart grid environment for system operators. 22-Feb-2012 11
  • 12.
    Standards and Framework •ISO/IEC 27001- Information Security Management System. • NERC-CIP Standards - Critical Infrastructure Protection Standard. • NIST IR 7628 – Guidelines for Smart Grid Cyber Security. • IEC 62351 Series Security Standards Standards 22-Feb-2012 12
  • 13.
    ISO/IEC 27001 -ISMS • Information Security Management System Standard. • Published by International Organization for Standards and International Electro technical Commission. • Information technology -- Security techniques -- Information security management systems -- Requirements. • Formally specifies a management system that is intended to bring information security under explicit management control.22-Feb-2012 13
  • 14.
    NERC – CIPStandards • Critical infrastructure protection (CIP) is a concept by North American Reliability Corporation (NERC). • Efforts to improve physical and cyber security for the bulk power system of North America. • include standards development, compliance enforcement, assessments of risk and preparedness • provide a cyber security framework for the identification and protection of Critical Cyber Assets to support reliable operation of the Bulk22-Feb-2012 14
  • 15.
    CIP-001 Sabotage Reporting CIP-002Critical Cyber Asset Identification CIP-003 Security Management Controls CIP-004 Personnel & Training CIP-005 Electronic Security Perimeter(s) CIP-006 Physical Security of Critical Cyber Assets CIP-007 Systems Security Management CIP-008 Incident Reporting and Response Planning CIP-009 Recovery Plans for Critical Cyber Assets 22-Feb-2012 15 NERC – CIP Standards Series
  • 16.
    NIST IR-7628 Guidelinesfor Smart Grid Cyber Security. • Advisory guidelines – neither prescriptive nor mandatory • Intended to facilitate efforts to develop:- – A cyber Security Strategy – Effectively focused on • Prevention • Detection • Response and • Recovery 22-Feb-2012 16
  • 17.
    NIST IR-7628 Guideline Thethree-volume reports of Guidelines for Smart Grid Cyber Security are:- • Volume 1 - Smart Grid Cyber Security Strategy, Architecture, and High-Level Requirements • Volume 2 - Privacy and the Smart Grid • Volume 3 - Supportive Analyses and References Freely available at http://csrc.nist.gov/publications/nistir 22-Feb-2012 17
  • 18.
    IEC-62351 Standards • Communicationprotocols are one of the most critical parts of power system operations. • Communication protocols developed by TR 57 are:- – IEC 60870-5 – 101, 102, 103, 104 – IEC 60870-6 – TASE.2 – IEC 61850 • These were very specialized, rely on “Security by Obscenity” – now no longer valid. 22-Feb-2012 18
  • 19.
    IEC-62351 Standards Series •Series provides provides a frame work for security of existing power system protocols:- – IEC 62351-1 : Introduction and overview – IEC 62351-2 : Glossary of Terms – IEC 62351-3 : Profiles including TCP/IP – IEC 62351-4 : Profiles including MMS – IEC 62351-5 : Security for IEC 60870-5 & derivatives – IEC 62351-6 : Security for 61850 Profiles – IEC 62351-7 : Management Information Base Requirements for End-to-End Network Management 22-Feb-2012 19
  • 20.
    Correlation between IEC62351 and Power System Protocols 22-Feb-2012 20 IEC 62351-1 : Introduction IEC 62351-2 : Glossary IEC 62351-3 : Profiles Including TCP/IP IEC 62351-4 : Profiles Including MMS IEC 62351-5 : IEC 60870-5 & Derivatives IEC 62351-6 : IEC 61850 IEC 60870-6 TASE.2 IEC62351-7:MIBfor NetworkandSystem Management IEC 61850-8-1 MMS Profiles IEC 60870-5-104 TCP/IP IEC 60870-5-101, 102 and 103 IEC 61850-8-1 GOOSE Profiles IEC 61850-9-2 Profiles Source – IEC 62351- 1 IEC 60870-6 TASE.2
  • 21.
    Challenges of integratingnew technologies with legacy systems. 22-Feb-2012 21
  • 22.
    Legacy System –Silos of Information 22-Feb-2012 22 TOP1 – Operational Information DIST1 - Operational Information DISTx – Operational Information GEN1 - Operational Information GENx - Operational Information TOPx – Operational Information
  • 23.
    Smart System –Sharing of Information 22-Feb-2012 23 Transmission Distribution CustomersGeneration AMI DSM System Operations System Operations
  • 24.
    Challenges in Integrating 22-Feb-201224 Increasing Number Of Systems and Size of Code Base Control Systems Not Designed with Security in Mind Increasing Use of COTS Hardware and Software New Customer Touch Points into Utilities New 2-Way Systems (e.g. AMI, DSM) Increasing Interconnection and Integration Increased Attack Surface Increased Risk to Operations
  • 25.
    Some Solutions • Airgap between legacy and new system. – Sharing of information through batch transfer. – Not possible in real tim emode. • Publish/Subscribe technology between legacy system and new system. – Information can only be shared if the source system publishes it. • Use of Data-diode technolgy. 22-Feb-2012 25
  • 26.
    Challenges of integratingnew technologies with legacy systems. 22-Feb-2012 26
  • 27.
    Barriers • Cyber threatsare unpredictable and evolve faster than the sector’s ability to develop and deploy countermeasures • Security upgrades to legacy systems are limited by inherent limitations of the equipment and architectures • Threat, vulnerability, incident, and mitigation information sharing is insufficient among government and industry • Weak business case for cyber security investment by industry 22-Feb-2012 27
  • 28.
    Strategies • Build aculture of security. • Access and Monitor Risks. • Develop and Implement New Protective Measures to reduce Risks. • Manage Incidence. • Sustain Security Improvements. 22-Feb-2012 28
  • 29.
    Road Map forSecurity of Smart Grid • Information Security Management System have been adopted by each regional load dispatch center. • Each RLDC has been certified by International Certifying Body (BSI) for ISO 27001:2005. • SCADA system up gradation is being done with:- – Adoption of IEC 62351 security standards. – Secure connection between SCADA network and Enterprise network for cyber security. – Access control for physical security. 22-Feb-2012 29
  • 30.