Securing the Smart Grid Understanding the BIG Picture The Power Grid The electric power system is the most capital-intensive infrastructure in North America. The system is undergoing tremendous change that will unfold over a number of years. As the grid is modernized, it will become highly automated, leverage information technology more fully, and become more capable in managing energy from a variety of distributed sources. In this process of becoming increasingly smarter, the grid will expand to contain more interconnections that may become portals for intrusions, error-caused disruptions, malicious attacks, and other threats. 2 The Power Grid The convergence of the information and communication infrastructure with the electric power grid introduces new security and privacy-related challenges. The introduction of these technologies to the electric sector also presents opportunities to increase the reliability of the power system, to make it more capable and more resilient to withstand attacks, equipment failures, human errors, natural disasters, and other threats. These greatly improved monitoring and control capabilities must include cyber security solutions in the development process rather than as a retrofit. 3 Corporate Risk Solutions, Inc. 1
The Power Grid Interoperability of Components Interoperability can be defined as the ability of two or more systems or components to exchange information and to use the information that has been exchanged. The second part of this definition is very important: not only must computer systems exchange information, but they must also be able to understand that information. 4 Advanced Metering Infrastructure (AMI) AMI will provide two-way communications between customers and utilities. This is really what the smart grid is all about. AMI is widely considered to consist of several components. These include: Smart Meter Customer Gateway AMI Communication Network AMI Headend 5 Advanced Metering Infrastructure (AMI) Lesser versions of AMI systems include automated meter reading (AMR) systems that allow remote reading of measurement registers, and automatic meter management (AMM) systems that extend AMR capability with the ability to manage meters remotely. Such devices will allow for numerous advanced capabilities. Several of these that have been proposed include: track customer usage such as total energy consumption remotely connect and disconnect customers send out alarms in case of problems provide real-time pricing send power quality data remotely receive firmware upgrades in order to update software and incorporate new functionality such as providing customers the ability to manage their own energy consumption more accurately. 6 Corporate Risk Solutions, Inc. 2
Smart Grid Domains Although most Smart Grid issues impact all aspects of electric energy delivery, it is convenient to separate the issues into different domains. These domains are: Central generation (and storage), including traditional power plants, renewable energy plants, and other large sources of energy Distributed energy resources, consisting of smaller sources of generation and storage predominantly interconnected at the distribution level, such as photovoltaics, small wind, and plug-in hybrid electric vehicles Transmission system, including ISOs, transmission operations, planning, and maintenance, as well as substation automation and synchrophasor measurements 7 Smart Grid Domains Distribution system, including distribution operations, automation, planning, and maintenance Customer utility interactions, covering utility to customer interactions with respect to metering, energy services, PHEVs, and interfaces to customer gateways (with sub-domains of C&I customers and residential/small commercial customers) Market operations, including energy market, ancillary services, demand response, load management, feed-in tariffs, pollutant cap-and-trade, and other market-based approaches Building, homes, and industries, covering building management systems, home area networks, industrial energy management systems, and other customer systems. 8 Smart Grid Domains 9 Corporate Risk Solutions, Inc. 3
The Smart Grid Characteristics Self-healing Empowers and incorporates the consumer Resilient to physical and cyber attacks Provides power quality needed by 21st century users Accommodates a wide variety of generation options Fully enables maturing electricity markets Optimizes assets Source: The US National Energy Technology Laboratory 10 Smart Grid Technology Sensors Monitoring and detecting the data Communications Moving the data through the build of networks First-level integration Collecting the data Centralized control Using the data for visualization and control Security Protecting the data with Security Services & Solutions Full integration Integrating the data with the rest of the business Services and Applications Using the data in new ways Source: The Emerging Smart Grid, Global Environment Fund - Centre for Smart Energy 11 Smart Grid Cyber Security Drivers Increasing Interconnection and Integration Increasing Use of COTS Hardware and Software New 2-Way Systems (e.g. AMI, DSM) New Customer Touch Points into Utilities Control Systems Not Designed with Security in Mind Increasing Number Of Systems and Size of Code Base Increased Attack Surface Increased Risk to Operations 12 Corporate Risk Solutions, Inc. 4
Potential Cyber Security Issues to the Smart Grid Include: Increasing complexity that could introduce vulnerabilities and increase exposure to potential attackers; Without proper planning, a natural- or man-made event could disable the communications infrastructure, rendering the smart grid ineffective at coping with an emergency situation; A cyber intruder could compromise electricity use data and send false information to the utility and either lower or increase the billing, depending upon the motivation; Linked networks can introduce common vulnerabilities; 13 Potential cyber security issues to the Smart Grid include: Increasing vulnerabilities to communication disruptions and introduction of malicious software that could result in denial of service or compromise the integrity of software and systems; Increased number of entry points and paths for potential adversaries to exploit; Potential for compromise of data confidentiality, including the breach of customer privacy; and 14 Potential cyber security issues to the Smart Grid include: Compromise of the automated device/service control functionality of the Smart Grid devices, in such a way that significantly disrupts, impairs, or destroys the self-sensing and monitoring, self-adaptive, self-healing electricity generation, transmission, and distribution infrastructure. 15 Corporate Risk Solutions, Inc. 5
Functional Requirements for Cross- Cutting Areas Cyber and Physical Security Security policies, as well as training and enforcement Security risk assessment Security requirements Security specifications Identify establishment Authentication Confidentiality Integrity Availability Non-repudiation / Accountability Intrusion detection Audit logging and reporting 16 Functional Requirements for Cross- Cutting Areas Network and System Management Network design to meet performance and security requirements System design with embedded security tools and mechanisms Specifications and Engineering Specifications need to map the business or functional requirements into engineering requirements Engineering design and implementation is needed to develop products and systems from the specifications Integration is needed to interconnect all the equipment and systems into a functioning whole. 17 Functional Requirements for Cross- Cutting Areas Conformance and Interoperability Testing Conformance testing for vendors against standards Interoperability testing of two or more systems with each other to ensure interoperability 18 Corporate Risk Solutions, Inc. 6
Cyber Solutions - Defense in Depth Perimeter Protection Firewall, IPS, VPN, AV Host IDS, Host AV DMZ Physical Security Interior Security Firewall, IDS, VPN, AV Host IDS, Host AV IEEE P1711 (Serial Connections) NAC IDS Intrusion Detection System Scanning IPS Intrusion Prevention System Monitoring DMZ DeMilitarized Zone Management VPN Virtual Private Network (encrypted) AV Anti-Virus (anti-malware) Processes NAC Network Admission Control 19 Recommendations View cyber security as a critical element of your Smart Grid deployment Apply the defense in depth concept isolating and segregating systems and applications, then allow selected connectivity Best accomplished at the foundational / design level Establish a security management system you can t manage what you can t measure Involve your vendors and interconnected partners Embed into your corporate governance systems Develop and track business case: Project by project basis Integrated system 20 References Study of Security Attributes of Smart Grid Systems Current Cyber Security Issues Idaho National Labs April 2009 Cyber Security and the Smart Grid Ontario Smart Grid Forum November 2008 Cyber Security Issues for Advanced Metering Infrastructure - IEEE T&D Conference - April 2008 Proposed Smart Grid Reference Arch & Roadmap - NIST - March 15, 2009 Guidelines for Smart Grid Cyber Security NIST - NISTIR 7628 August 2010 Smart Grid Standards Overview Erich W. Gunther February 2009 21 Corporate Risk Solutions, Inc. 7
Phil Sobol CISSP,CISA,CSSA,C EH,CNA psobol@corprisk.net 22 Corporate Risk Solutions, Inc. 8