Applied cyber security and the smart grid sciencedirect. Electric grid security and resilience department of energy. Discussions of the cyberthreats to critical infrastructure have become more frequent in the wake of the cyberattacks against ukraines power grid in 2015. Identification of essential critical infrastructure. The agenda is driven by practitioners and innovators at u. Grid theory and grid security infrastructure gsi mr.
Currently, the grid security infrastructure gsi of the globus toolkit gt 16, proposed by foster et al. Smart grid cyber security potential threats, vulnerabilities. Abstract the smart grid, generallyreferredto as the nextgenerationpowersystem, is. Toolkit grid security infrastructure gsi gsi as supplied in preweb services globus toolkit libraries. Grid security 24 grid security infrastructure gsi the fundamental security services in the glo bus toolkit based on standard pki technologies ssl protocol for authentication, message protection oneway, lightweight trust relationships by cas x. The grid security infrastructure gsi, formerly called the globus security infrastructure, is a. Arguably, the greatest cyber threats to the grid have been intrusions focused on manipulating industrial control system ics networks. Mutual authentication through digital certificates. Because they run on electricity they rely on the electric power grid for their fuel.
Manimaran govindarasu and adam hann iowa state university. Cisco grid security solutions deliver an integrated, converged approach to security. Besides, an outlook on the main security initiatives at the eulevel is presented. Highvoltage transformer substations congressional research service summary in the united states, the electric power grid consists of over 200,000 miles of highvoltage transmission lines interspersed with hundreds of large electric power transformers. As grid resources and users are distributed and owned by different organizations, only authorized users should be allowed to access them. The book examines the unique protocols and applications that are the foundation of industrial control systems, and provides clear guidelines for their protection. A survey xi fang, student member, ieee, satyajayant misra, member, ieee, guoliang xue, fellow, ieee, and dejun yang, student member, ieee abstractthe smart grid, regarded as the next generation power grid, uses twoway. Introduction to grid computing december 2005 international technical support organization sg24677800. A guide to a critical infrastructure security and resilience. What are the major computer hardware, data storage, input, and output technologies used in business.
These notes are given as guides to the lecture contents only. Having identified various threats and challenges faced by the grid system, the threats must be welldefined and an encompassing approach towards the operational security provisions must be laid and followed. The resource layer defines protocols for the publication, discovery, negotiation, monitoring, accounting and payment of sharing operations on individual resources. Nist will address these challenges through research conducted in the nist smart grid testbed facility and leadership within the smart. National electric grid security and resilience action plan open pdf 206 kb the joint united statescanada electric grid security and resilience strategy strategy is a collaborative effort between the federal governments of the united states and canada and is intended to strengthen the security and resilience of the u.
Secure, authenticatable communication is enabled using asymmetric encryption. Threats, vulnerabilities and solutions fadi aloula, a. Ferc has designated the north american electric reliability corporation nerc with the authority to set and. Grid security infrastructure is a specification for secret, tamper proof, delegatable communication between software in the grid computing environment there are many ways to access the resources of a computational grid, but all of them should be more or less secure, because. Abstract the smart grid, generallyreferredto as the nextgenerationpowersystem, is considered asa revolutionaryand evolutionary regime of existing power grids. Integrating cybersecurity and critical infrastructure. Challenges and opportunities of grid modernization and electric transportation challenges and opportunities of grid modernization and electric transportation 3 introduction pevs have the potential to revolutionize the u. Many of the technologies being deployed to support smart grid projectssuch as smart meters, sensors, and advanced communications networkscan make the grid more vulnerable to attack. Security aspects of the smart grid chapters 7, 8, and 9 provide an overview on the policy context and the security standards that are being defined at the level of smart grid security. As stated in the national infrastructure protection plan nipp nipp 20.
The grid can be thought of as a distributed system with noninteractive workloads that involve a large number of files. We discuss then the challenges that exist in securing the smart grid network and how the current security solutions. The grid security infrastructure gsi, formerly called the globus security infrastructure, is a specification for secret, tamperproof, delegatable communication between software in a grid computing environment. In this paper, we survey the latest on smart grid security. Farrell 2006 grid computing 2 grid security infrastructure gsi set of tools, libraries, and protocols used in globus and other grid middleware, to allow users and applications to securely. This chapter explains how to secure the smart grid by using the security methodologies and practices described in earlier chapters. Cybersecurity and the electric grid the state role in. The statute authorizes the secretary to order response measures that the secretary believes are necessary to protect or restore the reliability of certain infrastructure in a grid security emergency. Smart grid security efforts nist smart grid interoperability panel sgip cyber security.
Cybersecurity and infrastructure security agency cisa as the nation comes together to slow the spread of covid19, on march 16th the president issued updated coronavirus guidance for america that highlighted the importance of the critical infrastructure workforce. Cyber attack surface analysis of advanced metering. International journal of smart grid and clean energy smart grid security. However, doe has not developed plans for electric grid cybersecurity that address the key characteristics needed for a national strategy. Grid computing resource enables to access information for world wide web9, so that these resource include sensors, data storage capacity, visualization. Infrastructure security john sawyer, senior security analyst. Compliance and certification committee ccc critical infrastructure protection committee cipc. While there seems to be a general consensus that cyberattacks resulting in damage to critical infrastructure, such as. Absratct in the current geography, grid computing is scattered worldwide and allows their shared computing power. A nation in which physical and cyber critical infrastructure remain secure and resilient, with. The research on smart grid cyber security is in infancy, this motivates us to thoroughly examine the system components and identify all possible security threats and existing vulnerabilities in the smart grid cyber infrastructure. Trust models for grid security environment authentication and authorization methods grid security infrastructure cloud infrastructure security.
Jul 03, 2019 during the attack in 2015 against the ukranian power grid, it was the operators ability to switch to manual operation that helped them recover quickly, says chris doman, security. Actionable threat and risk assessments are needed to optimize owneroperator investments in both new technology and the replacement of aging infrastructure to improve security. Security concerns with respect to the power grid resulted in a set of compliance standards developed by the north american electric reliability corporation nerc. Smart grid cyber security potential threats, vulnerabilities and risks is the interim report for the smart grid information assurance and security technology assessment project contract number 500. Now the question arises,what is grid computing,as u see in this figure grid computing or the use of a computational grid is applying the resources of many computers in a network to a single problem at the same time usually to a scientific or technical problem that. Utility cyber security forum 2020 smart grid observer.
Reliable electricity underpins every facet of american lives. A group of individuals or institutions defined by a set of sharing rules the grid concept. As the december 2015 cyber attack on the ukrainian power grid demonstrated eisac, 2016, electric utilities are vulnerable to attack and will become more. Prepared for the project the future grid to enable sustainable energy systems funded by the u. Government makes surprise move to secure power grid from. Electric grid security and resilience us department of. The american electrical grid is going through one of the largest changes in its history, which is the move to smart grid technology. Electric grid security refers to the activities that utilities, regulators, and other stakeholders play in securing the national electricity grid. In january 20, a terrorist group attacked a gas plant in amenas, algeria, which led to a subsequent hostage crisis and became one of the worst terrorist attacks on oil and gas installations reuters, 20. Technology and security committee bottsc corporate governance and human resources committee governance enterprisewide risk committee ewrc finance and audit committee finance member representatives committee mrc rules of procedure. Jan 24, 2020 the electric grid is the only critical infrastructure sector with mandatory and enforceable security standards. In 20, the president directed federal agencies to work with owners and operators of critical infrastructure and with state, local, tribal, and territorial governments to take proactive steps to manage. Cisco grid security solutions provide critical infrastructuregrade security to control access to critical utility assets, monitor the network, mitigate threats, and protect grid facilities.
Industrial network security, second edition arms you with the knowledge you need to understand the vulnerabilities of these distributed supervisory and control systems. Challenges and opportunities of grid modernization and. Therefore, to protect this critical power system infrastructure and to ensure a reliable and an uninterrupted power supply to the end users, smart grid security issues must be addressed with high. Many methods are explained, including endpoint protection, securing individual zones within the smart grid architecture, data and application security, and situational awareness. We highlight the complexity of the smart grid network and discuss the vulnerabilities specific to this huge heterogeneous network. National electric grid security and resilience action plan. What are the major types of computer software used in business. Ferc has authority, through the energy policy act of 2005, to oversee the reliability and security of the bulk power grid. A formal model for the grid security infrastructure springerlink. A certificatefree grid security infrastructure supporting password. The forum will zero in on issues of top importance and special relevance to electric utilities in the u. Pdf cyberphysical security of a smart grid infrastructure.
Gaining secure assets using integrated components of grid. Executive tabletop results the tabletop scenario involved multiple sophisticated cyber and physical attacks that targeted the electricity industrys critical grid control systems, key generation and transmission facilities, and other critical infrastructure. This document does not attempt to define the full content of all these messages since their content is based on messages defined by the secure socket layer. Grid security infrastructure 1 grid security infrastructure. Grid security infrastructure university at buffalo. Access control system for grid security infrastructure. The department of energy doe plays a key role in helping address cybersecurity risks in each component of the electric grid s infrastructure. Advanced security acceleration project for smart grid asapsg developed the ami security profile v2 for sgipcswgopensg amisec open smart grid opensg smart grid security.
During the attack in 2015 against the ukranian power grid, it was the operators ability to switch to manual operation that helped them recover quickly, says chris doman, security. Sep 02, 2016 trust models for grid security environment authentication and authorization methods grid security infrastructure cloud infrastructure security. Hardware and software learning objectives what are the components of it infrastructure. Cisco grid security solutions deliver an integrated, converged approach to security that. The gsi grid security infrastructure 6 protocol underlies every grid transaction. The grid security infrastructure gsi proposed and implemented in globus toolkit has been a widely accepted solution for the security of grids in recent years. Pdf access control system for grid security infrastructure. Ppt grid security infrastructure powerpoint presentation.
Critical services and infrastructure increasingly rely on electricity, including homeland security, large medical facilities, public safety agencies, state and local governments, telecommunications. This paper focuses on risk inspection process where cyber. Electric grid security and resilience establishing a baseline for adversarial threats 3 executive summary some cases. These are the critical infrastructure protection cip standards, which was a first step towards the cyber security compliance regulations for power grids 15. Grid computing resource enables to access information for world wide web 9, so that these resource include sensors, data storage capacity, visualization. Smart grid security threats classification by sources. Grid security infrastructure gsi, with all its components. The need to protect substations and distribution and transmission infrastructure from cyber attacks is of paramount importance to utilities, as grid scada and plc grid control networks are inherently a weak link for cyber threats. Government makes surprise move to secure power grid. Critical energy infrastructure cei is a prime target for attacks of all sorts. Mo et al cyberphysical security of a smart grid infrastructure. What are the most important contemporary hardware and software trends. The procedures are designed to allow the secretary to address a declared grid security emergency. Reading these notes should not be considered as a substitute for attending the lectures or reading the assigned papers, web materials or textbook.
1485 1394 1156 856 1050 1480 824 412 171 819 978 1194 1534 546 1481 1129 120 482 233 1299 1549 1217 705 601 45 318 114 848 891 1484 521 878 695 229 196 437 234