K. Eric Harper, Senior Principal Scientist, ABB US Corporate Research

Transcription

1 10 NOVEMBER 2017 Cyber Security and Data Analytics CAPER IAB Meeting Session V Power System Data Applications K. Eric Harper, Senior Principal Scientist, ABB US Corporate Research

2 CODEF video

3 Agenda Cybersecurity Data and Analytics Questions

4 Cyber Security What does it mean? NERC CIP? Measures taken to protect power and automation systems against unauthorized access, attacks, disruption or loss. November 28, 2017

5 Cyber Security Back to the basics Security is about awareness, policy and process Ignore compliance - at least at first Focus on risk mitigation and management Assess your maturity model and then improve There is no such thing as 100% security Actors and threats constantly changing Deploy Defense in Depth Deter, Detect and Delay the bad guys Security does not come for free

6 The growing impact of cyber security Vulnerabilities in protection and control systems ICS (SCADA/DCS) disclosures per year ICS Vulnerabilities % 87.5% 2015 incidents Ukraine - BlackEnergy1 APT Verizon Data Breach Germany - Steel mill Poland - Major airport * Since 2010 vulnerabilities in control system are increasing. Never touch a running system methodology does not work anymore November 28, 2017 Slide 6

7 Cultural: Enterprise IT vs. Control Systems A different set of challenges Education and Teamwork Primary object under protection Primary risk impact Main security objective Security focus Availability requirements Problem response Enterprise IT Information Information disclosure, financial Confidentiality Central Servers (fast CPU, lots of memory, ) 95 99% (accept. downtime/year: days) Reboot, patching/upgrade, isolation Control Systems Physical process Safety, health, environment, financial Availability Distributed System (possibly limited resources) % (accept. downtime/year: 8.76 hrs 5.25 minutes) Fault tolerance, online repair

8 Challenges Balance between Reliability and Security Air gap is not the solution Enablement of the information flow is critical for today and tomorrow s success in proactive wide area applications Power System Reliability Reliability Critical Infrastructure Protection (CIP) Security Communications Infrastructure November 28, 2017 Slide 8

9 The growing impact of cyber security Maintenance Center Network Control Center Network disturbance, malware, Cyber attacks Unauthorized access or attack The increasing risks Legal and illegal penetration and hacking tools are freely available today Penetration testing software Firewall VPN Engineering Workstation Computer HMI Router Gateway GPS Time Server Vulnerability Scanner Network discovery and security auditing Internet of Things (IoT) Unauthorized Person Station LAN Infected Mobile data storage USB Data storm by a Faulty Device IEC / Station bus Infected Notebook Electronic Security perimeter Physical Security perimeter Unauthorized Person November 28, 2017 Slide 9

10 CODEF Security Features Distributed. Collaborative. Cyber- and Physics-Based Distributed intelligence between substation intelligent electronic devices (IEDs) Collaborative mechanism for detecting cyber attacks Domain based cyber security layer for electrical substations and intelligent electronic devices (IEDs) Additional cyber-layer for enhanced security November 28, 2017 Slide 10

11 CODEF Technical Approach Use physics to block malicious cyber attacks Detect and block malicious attempts to control circuit breakers and malicious device configuration settings Reinforce existing solutions and provide another security layer in case of breach of IT security layer November 28, 2017 Slide 11

12 Grid Automation Cyber Security Layered Architecture Remote Support Maintenance Center Network Control Center Enterprise Network Secure SW/FW Layering a communication networks physically and/or logically can considerably improves network security Multi technology based operational utility core network www. Service PC Redundant & reliable clock & time distribution (not only GPS) Individual User Accounts Removable Media Access USB Core network element PDH, SDH Optical, MPLS, L2 optical / el. Radio; Wi-Fi, PLC Any Substation, Control-Center; Power-Plant down to private consumer Disable Ports / services Malware Protection Patch management Firewall Local security logging Central security logging /Account Management Secure Communication DMZ SDM 600 November 28, 2017 IDS

13 Agenda Cybersecurity Data and Analytics Questions

14 Challenges and changes utilities face Aging infrastructure Nearly 70% of the transformers in the US are more than 25 years old 1 Risk Avoid Manage Cost Minimize Optimize Cyber security Through 2018, 50% of IoT device manufacturers will not be able to address threats from weak authentication practices 7 Reliability Aging workforce Up to 55% reduction in unexpected failures with predictive maintenance solutions 2 40% of the workforce at America s electric and natural gas utilities will be eligible for retirement in the next five years 6 Asset information everywhere 25 billion devices (not counting smartphones, tablets or computers) will be connected to the IoT by Performance Exceed Meet or beat Distributed energy By 2020, 2.5 GW of electricity will be generated by 20% of Fortune 500 companies, which will wholesale their distributed energy resource excess power through utility-independent subsidiaries 4 Spending justification Companies investing in IoT-based operational sensing and cognitive-based situational awareness will see 30% improvements in the cycle times of impacted critical processes 5 November 28, 2017 Slide 14 1 Harris Williams & Co. 2 ARC Advisory Group, November Gartner. Predicts 2016: Unexpected Implications Arising From the Internet of Things. December IDC FutureScape: Worldwide Utilities 2017 Predictions 5 IDC Energy IDC FutureScape: Worldwide Digital Transformation 2017 Predictions 6 APPA 7 Gartner. Predicts 2016: Unexpected Implications Arising From the Internet of Things. December 2015

15 Grid Automation Timeline ABB leading the world since 1905 ABB s first electromechanical relays introduced IEC founded ABB is a leading member ABB introduces COMBIFLEX electronic relays ABB s first optical FOX link installed on HV lines with integrated teleprotection ABB develops integrated protection and control First distributed busbar protection REB500 ABB s first fully integrated analog and digital Power Line Communication (PLC) ABB introduces the Relion family of IEC compliant relays and compliant substation automation systems ABB Commissions 1 st IEC (multi vendor) SA System Laufenberg, CH. ABB acquires Tropos Wireless Networks National Grid Saudi Arabia partners with ABB to introduce IEC Substation Automation Systems ABB launches it s pioneering Standalone merging unit - SAM600 ABB s first digital substation in the UK ABB partners with Microsoft s Azure Cloud based platform to launch ABB Ability ABB invests in Enbala Power Networks to codevelop cutting-edge grid software ABB Ability Digital Substation & Asset Health Center launched at ABB Customer World ABB installs first Power Line Communication (PLC) and protection Signaling Equipment ABB introduces first SCADA and network management systems ABB launches Micro-processor based relays ABB introduces EMS, GMS and DMS applications ABB introduces first computer based substation control system First redundant RTU supporting Ethernet communication (RTU500 series) First NCIT installations in ABB substation automation systems ABB pioneers Wide Area Monitoring System (WAMS) Between ABB acquires Ventyx & Mincom ABB s first IEC digital substation installation - Loganlea, Australia ABB introduces worlds first Asset Health Center solution 100,000 th RTU sold ABB sells its 100,000th Relion 670 unit ABB sells its 10,000th MicroSCADA Pro license ABB launches it s pioneering Microgrid enabling product - PowerStore Battery ABB recognized for the world s first conformance tested system engineering tools 28 November 2017 Slide 15

16 Digital Substation Shift from a conventional to a digital substation Primary components stand alone Small foot-print: Integration Conventional Substation Customer Values Lower OPEX for operators Health and safety Less and smaller control cubicles Linear NCIT / no saturation Less cabling Less material Shorter cycle times Smaller foot-print Future proof thanks to IEC Station local or remote HMI with asset management Digital Substation CT & VT November 28, 2017 Slide 16

17 Digital Substation For higher reliability in operation and efficiency in fleet service Expert systems Fleet health Guide for optimized selective fleet maintenance planning based on risks versus importance of assets Plant/Substation information Diagnosis and visual risk status information of equipment at plant level X X X X X Other equipment Product information Product level analysis and storage of data Product specific fingerprint Data capture Signals from sensors Off line maintenance, field testing and product data Data Data X X X X X X November 28, 2017

18 Evolution of digital business and analytics Need for operational improvement steers analytics from descriptive to predictive Analytics Human input Descriptive What happened? Diagnostic Why did it happen? Data Predictive What will happen? Decision Action Prescriptive What should I do? Decision support Decision automation ABB analytics portfolio November 28, 2017 Slide 18 Source: Gartner (February 2015)

19 What does this mean for utilities? Utility-izing data With the continued deployment of intelligent equipment, utilities can collect and analyze far more data than ever before This data can be utilized to identify the most critical assets for repair and replace decisions, thereby reducing operations and maintenance spending 10x For example, predictive maintenance can save up to 10x more than corrective maintenance and can mitigate catastrophic failures that can cost as much as $25 million November 28, 2017 Slide 19

20 ABB Ability Asset Health Center A fleet-wide analytics platform to improve processes through risk-based optimization Expert models (ABB, third party) Statistical models (Azure Machine Learning) All data sources: Sensors Historian Databases EAM Continuous optimization and improvement Advanced operational business intelligence Enterprise asset and work management November 28, 2017 Slide 20

21 Benefits One source of IT/OT truth means better decision-making and improved execution Business is driving the push towards digitalization with the reward of improved operations, lower costs and increased agility. Digitalization will help: Identify risks early so they can be reliably resolved or mitigated Enable riskoptimized maintenance schedules Make more informed longterm investment decisions Facilitate the adoption of accepted industry standards such as ISO Quickly establish an asset performance management solution that grows with you Replace time-based maintenance with condition-based maintenance for cost-effective reliability November 28, 2017 Slide 21

22 Case study US transmission owner Territory in multiple states Millions of customers 10 s of thousand miles of electric transmission lines 100 s of thousand miles of electric distribution line 8,800 transformers 20,000 breakers 3,300 batteries 33% Transformers over 50 years old 18% Transformers over 60 years old Prevented at least one major transformer failure in the first year! November 28, 2017 Slide 22

23 Potential annual savings 8% O&M +3 years Optimized maintenance strategy Increased life of assets 2% Overtime costs 4% O&M Optimized labor Risk Safety Environmental Regulatory millions Capital replacement & deferred depreciation November 28, 2017 Slide 23

24 November 28, 2017 Slide 24

25 Agenda Cybersecurity Data and Analytics Questions

26