Jul 03, 2019 during the attack in 2015 against the ukranian power grid, it was the operators ability to switch to manual operation that helped them recover quickly, says chris doman, security. Jan 24, 2020 the electric grid is the only critical infrastructure sector with mandatory and enforceable security standards. However, doe has not developed plans for electric grid cybersecurity that address the key characteristics needed for a national strategy. Nist will address these challenges through research conducted in the nist smart grid testbed facility and leadership within the smart. Cybersecurity and the electric grid the state role in. Smart grid cyber security potential threats, vulnerabilities and risks is the interim report for the smart grid information assurance and security technology assessment project contract number 500. Integrating cybersecurity and critical infrastructure. Applied cyber security and the smart grid sciencedirect. Cisco grid security solutions provide critical infrastructuregrade security to control access to critical utility assets, monitor the network, mitigate threats, and protect grid facilities. Having identified various threats and challenges faced by the grid system, the threats must be welldefined and an encompassing approach towards the operational security provisions must be laid and followed. We highlight the complexity of the smart grid network and discuss the vulnerabilities specific to this huge heterogeneous network. A formal model for the grid security infrastructure springerlink. During the attack in 2015 against the ukranian power grid, it was the operators ability to switch to manual operation that helped them recover quickly, says chris doman, security.
Actionable threat and risk assessments are needed to optimize owneroperator investments in both new technology and the replacement of aging infrastructure to improve security. The research on smart grid cyber security is in infancy, this motivates us to thoroughly examine the system components and identify all possible security threats and existing vulnerabilities in the smart grid cyber infrastructure. In this paper, we survey the latest on smart grid security. Identification of essential critical infrastructure. A group of individuals or institutions defined by a set of sharing rules the grid concept. Mo et al cyberphysical security of a smart grid infrastructure. The book examines the unique protocols and applications that are the foundation of industrial control systems, and provides clear guidelines for their protection. Cisco grid security solutions deliver an integrated, converged approach to security. This document does not attempt to define the full content of all these messages since their content is based on messages defined by the secure socket layer. Smart grid cyber security potential threats, vulnerabilities. Grid computing resource enables to access information for world wide web9, so that these resource include sensors, data storage capacity, visualization. In january 20, a terrorist group attacked a gas plant in amenas, algeria, which led to a subsequent hostage crisis and became one of the worst terrorist attacks on oil and gas installations reuters, 20.
The grid can be thought of as a distributed system with noninteractive workloads that involve a large number of files. Abstract the smart grid, generallyreferredto as the nextgenerationpowersystem, is considered asa revolutionaryand evolutionary regime of existing power grids. Grid security infrastructure is a specification for secret, tamper proof, delegatable communication between software in the grid computing environment there are many ways to access the resources of a computational grid, but all of them should be more or less secure, because. Electric grid security and resilience establishing a baseline for adversarial threats 3 executive summary some cases. The american electrical grid is going through one of the largest changes in its history, which is the move to smart grid technology.
Cybersecurity and infrastructure security agency cisa as the nation comes together to slow the spread of covid19, on march 16th the president issued updated coronavirus guidance for america that highlighted the importance of the critical infrastructure workforce. Security concerns with respect to the power grid resulted in a set of compliance standards developed by the north american electric reliability corporation nerc. Many methods are explained, including endpoint protection, securing individual zones within the smart grid architecture, data and application security, and situational awareness. Toolkit grid security infrastructure gsi gsi as supplied in preweb services globus toolkit libraries.
Secure, authenticatable communication is enabled using asymmetric encryption. National electric grid security and resilience action plan open pdf 206 kb the joint united statescanada electric grid security and resilience strategy strategy is a collaborative effort between the federal governments of the united states and canada and is intended to strengthen the security and resilience of the u. Grid security infrastructure 1 grid security infrastructure. The gsi grid security infrastructure 6 protocol underlies every grid transaction.
These notes are given as guides to the lecture contents only. Grid security 24 grid security infrastructure gsi the fundamental security services in the glo bus toolkit based on standard pki technologies ssl protocol for authentication, message protection oneway, lightweight trust relationships by cas x. The procedures are designed to allow the secretary to address a declared grid security emergency. Hardware and software learning objectives what are the components of it infrastructure. Pdf access control system for grid security infrastructure. Cisco grid security solutions deliver an integrated, converged approach to security that. The grid security infrastructure gsi, formerly called the globus security infrastructure, is a. Threats, vulnerabilities and solutions fadi aloula, a. Therefore, to protect this critical power system infrastructure and to ensure a reliable and an uninterrupted power supply to the end users, smart grid security issues must be addressed with high. What are the major computer hardware, data storage, input, and output technologies used in business. The agenda is driven by practitioners and innovators at u. A guide to a critical infrastructure security and resilience. Industrial network security, second edition arms you with the knowledge you need to understand the vulnerabilities of these distributed supervisory and control systems.
Manimaran govindarasu and adam hann iowa state university. The grid security infrastructure gsi, formerly called the globus security infrastructure, is a specification for secret, tamperproof, delegatable communication between software in a grid computing environment. Prepared for the project the future grid to enable sustainable energy systems funded by the u. The forum will zero in on issues of top importance and special relevance to electric utilities in the u. What are the most important contemporary hardware and software trends. These are the critical infrastructure protection cip standards, which was a first step towards the cyber security compliance regulations for power grids 15. This chapter explains how to secure the smart grid by using the security methodologies and practices described in earlier chapters.
Currently, the grid security infrastructure gsi of the globus toolkit gt 16, proposed by foster et al. Discussions of the cyberthreats to critical infrastructure have become more frequent in the wake of the cyberattacks against ukraines power grid in 2015. Grid security infrastructure university at buffalo. Now the question arises,what is grid computing,as u see in this figure grid computing or the use of a computational grid is applying the resources of many computers in a network to a single problem at the same time usually to a scientific or technical problem that. The need to protect substations and distribution and transmission infrastructure from cyber attacks is of paramount importance to utilities, as grid scada and plc grid control networks are inherently a weak link for cyber threats. Highvoltage transformer substations congressional research service summary in the united states, the electric power grid consists of over 200,000 miles of highvoltage transmission lines interspersed with hundreds of large electric power transformers. Infrastructure security john sawyer, senior security analyst. Compliance and certification committee ccc critical infrastructure protection committee cipc. The resource layer defines protocols for the publication, discovery, negotiation, monitoring, accounting and payment of sharing operations on individual resources. A nation in which physical and cyber critical infrastructure remain secure and resilient, with.
We discuss then the challenges that exist in securing the smart grid network and how the current security solutions. Besides, an outlook on the main security initiatives at the eulevel is presented. Reading these notes should not be considered as a substitute for attending the lectures or reading the assigned papers, web materials or textbook. Farrell 2006 grid computing 2 grid security infrastructure gsi set of tools, libraries, and protocols used in globus and other grid middleware, to allow users and applications to securely. Trust models for grid security environment authentication and authorization methods grid security infrastructure cloud infrastructure security. Government makes surprise move to secure power grid. Grid theory and grid security infrastructure gsi mr.
Arguably, the greatest cyber threats to the grid have been intrusions focused on manipulating industrial control system ics networks. Grid computing resource enables to access information for world wide web 9, so that these resource include sensors, data storage capacity, visualization. As grid resources and users are distributed and owned by different organizations, only authorized users should be allowed to access them. International journal of smart grid and clean energy smart grid security. Ppt grid security infrastructure powerpoint presentation. Government makes surprise move to secure power grid from.
A survey xi fang, student member, ieee, satyajayant misra, member, ieee, guoliang xue, fellow, ieee, and dejun yang, student member, ieee abstractthe smart grid, regarded as the next generation power grid, uses twoway. Critical energy infrastructure cei is a prime target for attacks of all sorts. Absratct in the current geography, grid computing is scattered worldwide and allows their shared computing power. Abstract the smart grid, generallyreferredto as the nextgenerationpowersystem, is. Advanced security acceleration project for smart grid asapsg developed the ami security profile v2 for sgipcswgopensg amisec open smart grid opensg smart grid security. Smart grid security efforts nist smart grid interoperability panel sgip cyber security. Electric grid security and resilience us department of.
As stated in the national infrastructure protection plan nipp nipp 20. Sep 02, 2016 trust models for grid security environment authentication and authorization methods grid security infrastructure cloud infrastructure security. Ferc has designated the north american electric reliability corporation nerc with the authority to set and. Smart grid cybersecurity must address both inadvertent compromises of the electric infrastructure, due to user errors, equipment failures, and natural disasters, and deliberate attacks, such as from disgruntled employees, industrial espionage, and terrorists. Ferc has authority, through the energy policy act of 2005, to oversee the reliability and security of the bulk power grid.
Challenges and opportunities of grid modernization and electric transportation challenges and opportunities of grid modernization and electric transportation 3 introduction pevs have the potential to revolutionize the u. Gaining secure assets using integrated components of grid. Because they run on electricity they rely on the electric power grid for their fuel. Critical services and infrastructure increasingly rely on electricity, including homeland security, large medical facilities, public safety agencies, state and local governments, telecommunications. Electric grid security refers to the activities that utilities, regulators, and other stakeholders play in securing the national electricity grid. Security aspects of the smart grid chapters 7, 8, and 9 provide an overview on the policy context and the security standards that are being defined at the level of smart grid security. Utility cyber security forum 2020 smart grid observer. In 20, the president directed federal agencies to work with owners and operators of critical infrastructure and with state, local, tribal, and territorial governments to take proactive steps to manage. Executive tabletop results the tabletop scenario involved multiple sophisticated cyber and physical attacks that targeted the electricity industrys critical grid control systems, key generation and transmission facilities, and other critical infrastructure. Pdf cyberphysical security of a smart grid infrastructure.
Technology and security committee bottsc corporate governance and human resources committee governance enterprisewide risk committee ewrc finance and audit committee finance member representatives committee mrc rules of procedure. The department of energy doe plays a key role in helping address cybersecurity risks in each component of the electric grid s infrastructure. As the december 2015 cyber attack on the ukrainian power grid demonstrated eisac, 2016, electric utilities are vulnerable to attack and will become more. This paper focuses on risk inspection process where cyber. The statute authorizes the secretary to order response measures that the secretary believes are necessary to protect or restore the reliability of certain infrastructure in a grid security emergency. Smart grid security threats classification by sources. National electric grid security and resilience action plan. While there seems to be a general consensus that cyberattacks resulting in damage to critical infrastructure, such as. Reliable electricity underpins every facet of american lives. Grid security infrastructure gsi, with all its components.
A certificatefree grid security infrastructure supporting password. What are the major types of computer software used in business. The grid security infrastructure gsi proposed and implemented in globus toolkit has been a widely accepted solution for the security of grids in recent years. Challenges and opportunities of grid modernization and.