Presentation is loading. Please wait.

Presentation is loading. Please wait.

Cyber Security and The Smart Grid November 11, 2008 Cyber Security for the Smart Grid TM Ontario Smart Grid Forum.

Similar presentations


Presentation on theme: "Cyber Security and The Smart Grid November 11, 2008 Cyber Security for the Smart Grid TM Ontario Smart Grid Forum."— Presentation transcript:

1 Cyber Security and The Smart Grid November 11, 2008 Cyber Security for the Smart Grid TM Ontario Smart Grid Forum

2 Cyber Security and The Smart Grid - Ontario Smart Grid Forum November 2008 Cyber Security for the Smart Grid TM Objectives of Presentation About N-Dimension Solutions Cyber Security and the Smart Grid Solutions and Recommendations Discussion Topics

3 Cyber Security and The Smart Grid - Ontario Smart Grid Forum November 2008 Cyber Security for the Smart Grid TM Engage in two-way discussion on a critical Smart Grid topic and provide useful context and recommendations for the Ontario Smart Grid Forum participants Objectives of Presentation

4 Cyber Security and The Smart Grid - Ontario Smart Grid Forum November 2008 Cyber Security for the Smart Grid TM N-Dimension Solutions Inc. Cyber Security Solutions Provider laser focused on the Power & Energy market Headquartered in Richmond Hill Ontario with office in Austin Texas Member of: NERC NERC’s new Demand-Side Management Task Force IESO’s Reliability Standards Standing Committee Cyber Security Technical Working Groups (IEEE P1711, AMI-SEC) Advisory Committee for University of Illinois Trusted Cyber Security Computing Infrastructure for Power Developed comprehensive AMI cyber security analysis and report for the Ontario Utilities Smart Metering (OUSM) working group Published thought leader on cyber security for the emerging Smart Grid Active across North America and globally in delivering Smart Grid cyber security solutions in conjunction with our business partners

5 Cyber Security and The Smart Grid The Ontario Smart Grid Forum November 2008 Cyber Security for the Smart Grid TM Overview of The Smart Grid

6 Cyber Security and The Smart Grid - Ontario Smart Grid Forum November 2008 Cyber Security for the Smart Grid TM Transmission TOP1 – Operational Information Distribution DIST1 - Operational Information DISTx – Operational Information Customers Generation GEN1 - Operational Information GENx - Operational Information The Current Electric Grid – Islands of Technology TOPx – Operational Information

7 Cyber Security and The Smart Grid - Ontario Smart Grid Forum November 2008 Cyber Security for the Smart Grid TM Convergence of Enterprise & Operations IT Enterprise Systems Web Applications Control Systems Protection Systems Information TechnologyOperations Technology AMI DSM OMS GIS Smart Grid Technology Integration counters key security principals of isolation and segregation Cyber Secure Integration counters key security principals of isolation and segregation

8 Cyber Security and The Smart Grid - Ontario Smart Grid Forum November 2008 Cyber Security for the Smart Grid TM The Smart Grid – Connectivity with Security TransmissionDistributionCustomers Generation System Operators Conservation Authorities End-to-End Communications, Intelligence, and Defense-in-Depth Security AMIDSM

9 Cyber Security and The Smart Grid The Ontario Smart Grid Forum November 2008 Cyber Security for the Smart Grid TM Smart Grid Cyber Security

10 Cyber Security and The Smart Grid - Ontario Smart Grid Forum November 2008 Cyber Security for the Smart Grid TM The Smart Grid – Characteristics 1.Self-healing 2.Empowers and incorporates the consumer 3.Resilient to physical and cyber attacks 4.Provides power quality needed by 21 st century users 5.Accommodates a wide variety of generation options 6.Fully enables maturing electricity markets 7.Optimizes assets Source: The US National Energy Technology Laboratory

11 Cyber Security and The Smart Grid - Ontario Smart Grid Forum November 2008 Cyber Security for the Smart Grid TM Smart Grid Technology Source: The Emerging Smart Grid, Global Environment Fund - Centre for Smart Energy Sensors –Monitoring and detecting the data Communications –Moving the data through the build of networks First-level integration –Collecting the data Centralized control –Using the data for visualization and control Security –Protecting the data with Security Services & Solutions Full integration –Integrating the data with the rest of the business Services and Applications –Using the data in new ways

12 Cyber Security and The Smart Grid - Ontario Smart Grid Forum November 2008 Cyber Security for the Smart Grid TM Smart Grid Attack Threats “Energy control systems are subject to targeted cyber attacks. Potential adversaries have pursued progressively devious means to exploit flaws in system components, telecommunication methods, and common operating systems found in modern energy systems with the intent to infiltrate and sabotage vulnerable control systems. Sophisticated cyber attack tools require little technical knowledge to use and can be found on the Internet, as can manufacturers’ technical specifications for popular control system equipment.” Source: Roadmap to Secure Control Systems in the Energy Sector, The Department of Homeland Security and US Department of Energy

13 Cyber Security and The Smart Grid - Ontario Smart Grid Forum November 2008 Cyber Security for the Smart Grid TM Smart Grid Cyber Security Drivers Increasing Number Of Systems and Size of Code Base Control Systems Not Designed with Security in Mind Increasing Use of COTS Hardware and Software New Customer Touch Points into Utilities New 2-Way Systems (e.g. AMI, DSM) Increasing Interconnection and Integration Increased Attack Surface Increased Risk to Operations

14 Cyber Security and The Smart Grid - Ontario Smart Grid Forum November 2008 Cyber Security for the Smart Grid TM Example from 2006 SANS SCADA Security Summit, INL Overview of Cyber Security – Threats Internet AdminAcct Opens with Malware Admin Send with malware 1.Hacker sends an with malware 2. recipient opens the and the malware gets installed quietly 3.Using the information that malware gets, hacker is able to take control of the recipient’s PC! 4.Hacker performs an ARP (Address Resolution Protocol) Scan 5.Once the Slave Database is found, hacker sends an SQL EXEC command 6.Performs another ARP Scan 7.Takes control of RTU Slave Database Operator Master DB RTU Perform ARP Scan SQL EXEC Perform ARP Scan Takes Control of RTU

15 Cyber Security and The Smart Grid - Ontario Smart Grid Forum November 2008 Cyber Security for the Smart Grid TM Example from AMRA Webinar, Nov ’06 “The Active Attacker” Overview of Cyber Security – Threats AMI WAN Communications Network (WAN) Data Management Systems (MDM/R) Retailers 3 rd Parties AMCC (Advanced Metering Control Computer) Attacker Cyber Penetration Attacker Controls the Head End Attacker Performs Remote Disconnect

16 Cyber Security and The Smart Grid - Ontario Smart Grid Forum November 2008 Cyber Security for the Smart Grid TM Cyber Security Challenges The challenge is complex and continuously changing Legacy systems need to be protected Number and geographic location of end points Relationship to physical security Systems are 7x24 and critical The human element / social engineering

17 Cyber Security and The Smart Grid - Ontario Smart Grid Forum November 2008 Cyber Security for the Smart Grid TM Cyber Solutions Unlike the beer industry, there is no silver bullet !

18 Cyber Security and The Smart Grid - Ontario Smart Grid Forum November 2008 Cyber Security for the Smart Grid TM Cyber Solutions - Defense in Depth Perimeter Protection –Firewall, IPS, VPN, AV –Host IDS, Host AV –DMZ –Physical Security Interior Security –Firewall, IDS, VPN, AV –Host IDS, Host AV –IEEE P1711 (Serial Connections) –NAC –Scanning Monitoring Management Processes IDSIntrusion Detection System IPSIntrusion Prevention System DMZDeMilitarized Zone VPNVirtual Private Network (encrypted) AVAnti-Virus (anti-malware) NACNetwork Admission Control

19 Cyber Security and The Smart Grid - Ontario Smart Grid Forum November 2008 Cyber Security for the Smart Grid TM Cyber Solutions – 50,000 Foot View of Control Network Internet Enterprise Network Control Network Field Site Partner Site VPN FW IPS IDS Scan AV FW IPS P1711 FW AV Host IPS Host AV Proxy Host IDSHost AV IDS Scan NAC Defense in Depth Access Control Secure connections Link to Physical Security Management Apply same approach to other Smart Grid elements Key Points:

20 Cyber Security and The Smart Grid - Ontario Smart Grid Forum November 2008 Cyber Security for the Smart Grid TM Cyber security is an absolute requirement for the Smart Grid Smart Grid deployments will fail without proper cyber security A strong security posture can be established so that the benefits can be realized from Smart Grid deployments Ontario can establish a leadership position: –Standards –Trials –Information exchange –Learning The N-Dimension Viewpoint

21 Cyber Security and The Smart Grid - Ontario Smart Grid Forum November 2008 Cyber Security for the Smart Grid TM View cyber security as a critical element of your Smart Grid deployment Apply the defense in depth concept isolating and segregating systems and applications, then allow selected connectivity –Best accomplished at the foundational / design level Establish a security management system –“you can’t manage what you can’t measure” Involve your vendors and interconnected partners Embed into your corporate governance systems Develop and track business case: –Project by project basis –Integrated system Look to others for learning and suggestions –such as the Ontario Smart Grid Forum ! Recommendations

22 Cyber Security and The Smart Grid The Ontario Smart Grid Forum November 2008 Cyber Security for the Smart Grid TM Peter Vickery Executive Vice-President N-Dimension Solutions Inc. Office: ext 223 Mobile: Doug Westlund CEO N-Dimension Solutions Inc. Office: ext 227 Mobile: Thank You !


Download ppt "Cyber Security and The Smart Grid November 11, 2008 Cyber Security for the Smart Grid TM Ontario Smart Grid Forum."

Similar presentations


Ads by Google