Geneva, Switzerland, 15-16 September 2014 Security by Design in Smart Grids A Need to Rethink ICT in Power System Controls Carsten Strunge, Senior Development.

Slides:

Advertisements

Similar presentations

World Class Standards Smart Grids ETSI Strategic Topic Philippe Lucas © ETSI All rights reserved ETSI Smart Grid workshop, June 14th 2010.

Advertisements

INTEGRAL1ADDRESS Workshop, Paris 09 June 2010 INTEGRAL: Integrated ICT Platform for Distributed Control in Electricity Grids Hans Akkermans INTEGRAL Project.

Deliverables; Overview, Terminology and Use Cases

Join Us Now at: Enabling Interoperability for the Utility Enterprise And TESTING.

Smart Grid Status in Finland I.Country/Economy Smart Grid Status 1.High priority technical needs for smart grid development and/or deployment Research.

Frankfurt (Germany), 6-9 June 2011 André Postma – Netherlands – RT.1b SM components "Smart Grid Components"

Planning, optimization and regulatory issues

Development and Operation of Active Distribution Networks: Results of CIGRE C6.11 Working Group (Paper 0311) Dr Samuel Jupe (Parsons Brinckerhoff) UK Member.

Smart Energy Profile Distributed Energy Resources Tom Herbst.

Jörg Heuer | Siemens AG | München | Renewable Model Region Harz: Climate Protection and Energy Efficiency by Modern ICT and Innovative Operation.

CHPCOM project Combined Heat and Power Communication CHPCOM IEC baseret datakommunikation i dansk kontekst Securing Critical Infrastructure Communication.

EStorage First Annual Workshop Arnhem, NL 30, Oct Olivier Teller.

Ee392n - Spring 2011 Stanford University Intelligent Energy Systems 1 Lecture 3 Intelligent Energy Systems: Control and Monitoring Basics Dimitry Gorinevsky.

1 Smart control of multiple energy commodities on district scale Frans Koene Sustainable places, Nice, 1-3 Oct 2014.

ICT FOR OPTIMIZING SYNERGIES AMONG ENERGY GRIDS IN SMART CITIES S. Caneva & I. Weiss, WIP – Renewable Energies Sustainable Places, Nice, France, 1 st October.

© ABB SG_Presentation_rev9b.ppt | 1 © ABB SG_Presentation_rev9b.ppt | 1 Smart Grid – The evolution of the future grid Karl Elfstadius,

Jeju, 13 – 16 May 2013Standards for Shared ICT HIS – Smart Grid Karen Bartleson, President, IEEE Standards Association Document No: GSC17-PLEN-72 Source:

EU Commission Task Force for Smart Grids Expert Group 3: Roles and Responsibilities of Actors involved in the Smart Grids Deployment Samia Benrachi-Maassam.

FUTURE IN ENERGY. The biggest co-generation high efficiency power plant in Romania, built in Suceava Investment value: over EUR 90 mil Used fuels: natural.

Join Us Now at: Enabling Interoperability for the Utility Enterprise And TESTING.

GridWise ® Architecture Council Cyber-Physical System Requirements for Transactive Energy Systems Shawn A. Chandler Maseeh College of Electrical and Computer.

1 Some Issues about Big Data in Power Grid Gary Quan.

Al Hefner (NIST Lead) Frances Cleveland (Technical Champion)

Frankfurt (Germany), 6-9 June 2011 Power System Impacts from Large Scale Deployment of EV -The MERGE project – João A. Peças Lopes

Introduction to Secure Messaging The Open Group Messaging Forum April 30, 2003.

FirstEnergy / Jersey Central Power & Light Integrated Distributed Energy Resources (IDER) Joseph Waligorski FirstEnergy Grid-InterOp 2009 Denver, CO November.

לירן קציר Connectivity in Computers IEC TC 57 - Power system management and associated information exchange Established in 1964 – with focus.

Thomas DEGNER -DE- BETA SESSION 4b: Integration of RES+DG Barcelona May DISPOWER Distributed Generation with High Penetration of Renewable.

Common Information Model and EPRI Smart Grid Research

DOCUMENT #:GSC15-PLEN-53 FOR:Presentation SOURCE:ETSI AGENDA ITEM:PLEN 6.11 CONTACT(S):Emmanuel Darmois, Board Member Marylin Arndt, TC M2M chair Smart.

Estimados Expositores del II Seminario de Electricidad Consequences of increasing penetration of distributed generation on transmission and distribution.

SMART GRID The Next Generation Electric Grid Kunkerati Lublertlop 11/30/2011 Electrical Engineering Department Southern Taiwan University.

Frankfurt (Germany), 6-9 June 2011 Greet Vanalme – NL – RIF Session 6 – Paper 0786 The introduction of local system services – the case of storage in the.

© 2008 OSIsoft, Inc. | Company Confidential Smart Grid, Smart Metering and DSM OSIsoft and Cisco systems Arjen Zwaag- Cisco Martin Otterson- OSIsoft.

Geneva, Switzerland, September 2014 Security by Design in Smart Grids A Need to Rethink ICT in Power System Controls Carsten Strunge, Senior Development.

1/20 ea technology MicroCHeaP: Month 24 meeting Athens Work Package 4 presentation 21 September 2006 Presented by Yvonne Dickson Partners in power asset.

Frankfurt (Germany), 6-9 June 2011 MARTENSEN – DE – Session 4 – 1221 The Cell Controller Pilot Project (CCPP): From Surviving System Black-Out to Market.

Meter, Facility Interfaces

IEC TC57: Report on WG21 Interfaces and protocol profiles relevant to systems connected to the electrical grid P. Ferstl August 2012 INTERNATIONAL ELECTROTECHNICAL.

Halifax, 31 Oct – 3 Nov 2011ICT Accessibility For All SMART GRID ICT: SECURITY, INTEROPERABILITY & NEXT STEPS John O’Neill, Senior Project Manager CSA.

Smart Grids: Ireland’s Unique Opportunity Doireann Barry, Smart Grid Programme Manager.

Brussels Workshop Use case 3 11/09/2015 Mario Sisinni.

Frankfurt (Germany), 6-9 June 2011 Iiro Rinta-Jouppi – Sweden – RT 3c – Paper 0210 COMMUNICATION & DATA SECURITY.

MIDDLEWARE SYSTEMS RESEARCH GROUP MSRG.ORG Big Events Hans-Arno Jacobsen Middleware Systems Research Group MSRG.org.

Frankfurt (Germany), 6-9 June INFRAX 2. Regulatory framework 3. Role of DSO in an open electricity market 4. Role of DSO in Smart Grids 5. Experiences.

Road2CPS Smart Energy Platforms Alexander von Jagwitz B.A.U.M. Consult

Geneva, Switzerland, September 2014 X.509 in a changing world Erik Andersen, Andersen’s L-Service Denmark ITU Workshop on “ICT Security.

1 John Parsons BEAMA What is a Smart Distribution Grid?

REAL TIME BALANCING OF SUPPLY AND DEMAND IN SMART GRID BY USING STORAGE, CONTROLLABLE LOADS AND SMART GENERATIONS Abdulfetah Shobole, Dr. Arif Karakaş.

G. Suter CH Session 3 – Block 2 – 4 th Question Barcelona May “ System Interfaces for Distribution Management “ TC57 WG14 Standards IEC

Local Intelligent Networks and Energy Active Regions in Flanders Carlo Mol - VITO.

Smart Grid Schneider Electric Javier Orellana

Integration of Demand Side Management, Distributed Generation, Renewable Energy Sources and Energy Storages Task XVII Workshop on Demand Side Management.

- 1 Universal Smart Energy Framework A solid foundation for smart energy futures Peter Molengraaf, CEO Alliander.

Smart Grid & Electric Vehicle in Computer Scientist’s Perspective by Minho Shin, Myongji University.

Open-source fuzzing testing for critical equipment robustness Brice Copy Engineering Department CERN, Switzerland (CS)2/HEP Workshop 18 th October 2015,

Renewable Energy Technologies IEA - ENARD Electricity Networks - Analysis, Research and Development Draft Annex 2: „DER System Integration in Distribution.

Eric Peirano, Ph.D., TECHNOFI, COO

Future Power System Control Architecture

ETIP SNET WG4 : Digital Energy

© 2016 ProsumerGrid, Inc., All Rights Reserved

Eric Peirano, Ph.D., TECHNOFI, COO

Eric Peirano BRIDGE Support Team, Technofi

Breakout Session on Smart Grid Data Analytics

Presentation of the three technological pilots

EU-IPA12/CS02 Development of the Renewable Energy Sector

Joseph Negreira Pentalateral Energy Forum & European Commission

Eric Peirano, Ph.D., TECHNOFI, COO

An energy technology powerhouse

Electricity Distribution and Energy Decarbonisation

Presentation transcript:

Geneva, Switzerland, September 2014 Security by Design in Smart Grids A Need to Rethink ICT in Power System Controls Carsten Strunge, Senior Development Engineer, Energinet.dk ITU Workshop on “ICT Security Standardization for Developing Countries” (Geneva, Switzerland, September 2014)

Geneva, Switzerland, September The Challenge of Balancing Wind Power and Electricity Consumption Approx. 30 pct. of classic demand Approx. 75 pct. of classic demandApprox. 140 pct. of classic demand 2050 (scale 1:1)

The Challenge to Utilization Renewabel Power Geneva, Switzerland, September ,0 Hz 49,5 Hz 50,5 Hz Power production Consumption New paradigm:  More load must follow production. Not just locally, but cross boarder * Local balancing should only be for congestion management.

The Challenge of the Changing Power System Geneva, Switzerland, September SC HVDC NO/SE HVDC NL HVAC DE HVAC SE 400 kV 10 kV 0,4 kV SVC 150 kV 60 kV

The Generalized Stakeholder and Domain Model (from NIST) Geneva, Switzerland, September

What is the problem? Internet is chosen as carrier of data (economy) Internet does no longer offer secure communication But it can be secured by: Ensuring authenticitet (”user identification”) Securing data in motion (by encription) Securing data at rest (on devices level) Building security into control processes And it is necessary to continuously monitor the entire system (both Electric Power and ICT) Geneva, Switzerland, September 20146

What is Security by Design in Smart Grid? Security and robustness in data exchange X.509, PKI RBAC, IEC61850 and SecureMMS, CIM and “SecureCIM” Secure and robust data storage Access to data at the source Roll Based Access Controls (RBAC) at source Secure and robust data processing Semi-offline controls though exchange of schedules Distributed controls with clear client-server relations Secure and robust fall-back schemes Detection of abnormal behavior Segmentation and isolation of “infected” processes and ICT-networks Fall-back concepts Geneva, Switzerland, September To have information security thought into the power system control concepts.

Basic Elements in the Smart Grid Control Loop and Client-Server Relation Geneva, Switzerland, September Control1 (Client agent) Communication Control2 (Other clients) Control box w. RBAC (Agent or Gateway) Sensor Actuator (Server) Power System Status for availibility Control and information data

Elements in the Smart Grid Control Loop - Prosumer Relation Geneva, Switzerland, September DSO Voltage and Emergency controls (SCADA) Communication (Fiber, PLC, GPRS, ?) Communication (Internet) Market Aktor Commercial Operation (Aggregator) Control box w. RBAC (Agent or Gateway) Sensor Meter Actuator DER, CHP HP, EV etc. Power System Status for availibility Control and information Energy og online power E.g. via AMR/AMI data

Local Technical VPP and Commercial VPP in Smart Grid Geneva, Switzerland, September Control TekniskVPP (Agent) Market actor A ComVPP Market actor B ComVPP 10/0,4 kV Communication (Internet) AMI/AMR Tech + ComA + ComBTech + ComATech + ComA + ComB Tech + ComA

Proof of Concept Demonstration Geneva, Switzerland, September CHPCOM project Combined Heat and Power Communication CHPCOM Secure IEC based Information Exchange in a Danish Context

CHPCOM– is testing standards to make assets Smart Grid Ready 12 DSO/DNO Balance responsible Flexibility Market Aggregator Technical control Generator CHP plant Control Power sale Power buy  ~   Internet Accumulator Electric Boiler Power Market TSO Data Measurement International data exchange standard IEC Secured according to IEC Supply of services Local resources to balance the local grid Market control Measurement Data Measurement New District heat Solar heat See: (not yet available in English)

CHPCOM – Role Based Access Control Geneva, Switzerland, September CHPCOM RBAC unit incl. IP-Firewall Internet IEC SecureMMS from SISCO IEC RBAC from EURISCO

RBAC structure in IEC Whitelisting, Roles and Rights Geneva, Switzerland, September Subject Person/system whitelisted and identified by X.509 based certificate, whishes access to a resource Example Roles Rights Operations Objects Roles define basic user rights Rights defines access to specific functions Functions can conduct specific actions at resource Resource read or write data DCIP1.EngCtl.ctlVal Start engine #1 Write Egon Olsen BRP Operator IEC TS IEC also applies to IEC TC57 CIM-standards

The CHPCOM data flow Geneva, Switzerland, September RBAC s/MMS GW DB SCAD A DB RTU MMS SCADA s/MMS SecureMMS Gateway SCADA SCADA fronten d MMS INTERNET Firewall PKI Components

CHPCOM Information Security Activities Implementation of PKI-elements X.509 certificates with encoded roles Automated certificate handling SecureMMS IEC RBAC gateway Security Analysis PKI policies. Clients and Servers policies for installation and secure management. Standardisation Feedback to basic X.509 standard (ITU-T SG17) with specific Smart Grid requirements; Feedback to IEC (TC57 WG15) on SecureMMS and RBAC implementation Identify legislative needs Identify the legislative requirements in Denmark. Dialog with key stakeholders. Geneva, Switzerland, September

Conclusions and Recommendations What we found Smart Grid needs from ITU-T Automated machine2machine solutions e.g. for certificate renewal Local certificate whitelists Strong processes for initial certificate “bootstraping” Multiple associated parallel PKI E.g. Smart Grid-PKI, Smart Meter-PKI, EV-PKI, etc. And not least a good cooperation between ITU-T and IEC TC57. Geneva, Switzerland, September