Security and Monitoring Is your smart grid secured?

Most devices are now connected to the internet giving ease of use and meaning that we stay connected wherever we are. However, this carries a risk of security with devices being more exposed to attacks. Patrick Le Fèvre, Powerbox, talks about how to make the smart grid more secure to prevent these attacks

grids are a global threat and all countries exposed to high risk, motivating power experts and networks managers to consider global response and methodology to prevent any damages.

February 2016, the US Department of Homeland Security (DHS) issued an alert (IR- ALERT-H-16-056-01), reporting on a case that happened on December 2015 in Ukraine, lifting the information to a high level of attention to smart grid operators, motivating them to accelerate protections mechanisms and to develop preventive actions policies.

Patrick Le Fèvre, Powerbox marketing & communication director


eing involved in early day projects to add communication and intelligence to power supplies, which became the so called ‘digital power’, I have been frequently asked about software security and how the power supplies industry was prepared to address such issues. If it is for sure, there is very little risk a hacker reaches a single Digital-POL at board level; the risk increases exponentially as we move upward in the value chain and, in that chain, the smart grid is probably the highest and the most exposed to attacks. Right now, the number of renewable power sources are growing, smart metres are being deployed and many others are being connected to the smart grid. So what is the situation in terms of security? Are we safe?

Risk escalation From 2007, when the US government demonstrated, in the Aurora Generator Test, with only 21 lines of codes, how hackers could take control of a power plant and physically destroy a generator, to April 2016 when a water and electricity authority in the State of Michigan, after been victim of a ransomware attack, was forced to keep IT systems locked down for a week; the number of cases reported to security authorities is rapidly increasing. The Florida International University estimated that, during the first six months of 2015, more than 100 cyber incidents have affected infrastructure in the US and the energy sector had the largest number of attacks. Cyber-attacks toward smart

The Ukrainian case combines multiple elements in the attack, including physical sabotage though the sophistication of the part related to the cyber-attack reached a new level of intrusion, motivating the smart grid community to strengthen cooperation and efforts to accelerate sustainable security within the smart grid. December 23rd 2015 at 04:00 PM, the Ukrainian’s region Ivano-Frankivsk was plunged into darkness for several hours and more than 220,000 customers lost power and the IT and communications systems of the electricity companies were severely damaged by the attackers.

In this case, the attackers combined a large number of attacking tools, spreading phishing e-mails containing a variant of the BlackEnergy 3 and KillDisk malwares, exploiting MS Office documents security holes to get into the IT network of the electricity companies and inhibited most of the security agent in firewalls. At the same time, they managed to break credential codes to access a deeper level of the system, controlling industrial communication busses such as the ones interconnecting Uninterruptible Power Systems (UPS) and to the Supervisory Control and Data Acquisition (SCADA) systems.

SCADA systems are basically Process

Control Systems (PCS) that are used for monitoring, gathering, and analysing real- time environmental data. PCSs are designed to automate electronic systems based on a predetermined set of conditions, such as traffic control or power grid management. For the ones used to lower energy and board power systems, it’s a super Software Define Power Architecture, which, considering the strategic role it plays, requires an extremely high level of security. Managing to control the SCADA systems,

Figure 1: Smart grid network very distributed and vulnerable to physical and cyber-attacks

the hackers accessed the electricity network, with possibility to shut down and severely damage equipment. The Ukrainian’s case is considered as a

“real life example” of what could happen to larger networks and there are lessons to learn from it as part of the ongoing smart grid security standardisation projects run in USA, Europe and Japan.

Making the smart grid safer Smart grid is an extremely complex architecture with a lot of areas for intrusions and attacks. Especially when operating a smart grid has moved from managing electricity distribution to a supper Information and Communication Technology machinery. Michael McElfresh, Adjunct Professor of Electrical Engineering at Santa Clara University, summarised the situation, saying: “Technological advances in grid operation have made the power grid increasingly vulnerable to cyberattacks. The growth of the smart grid has created many more access points for penetrating grid computer systems – the “Internet of Things” will only make this worse.” All over the world, governmental, consortiums and groups of experts are engaged in a race to deploy security methods and protocols to make the smart grid safer. In the USA, the set of Critical Infrastructure Protection (CIP) standards issued by the North American Electric Reliability Corporation (NERC) became

mandatory in 2007 for owners, operators and users of the Bulk Electric System (BES) to ensure that certain assets on the grid critical to reliable operation are protected from both a cybersecurity and physical security standpoint, is going through a wave of new revisions, moving from CIP V3 to CIP V5, skipping V4, and accelerating V6. That situation reflects the situation faced by the standardisation organisation developing security standards in a fast evolving world of threats. In Europe, despite a number of initiatives within the European network and information security community to establish frameworks and standard operating procedures, the EU-level response to cyber incidents lacks consistency though projects such as the EU-funded Smart Grid Protection Against Cyber Attacks (SPARKS) which is showing very good signs of progress.

Step by step, the worldwide smart grid is getting stronger and safer though the potential of threats remains high.


Because of the complexity and the variety of connected devices to the smart grid, power supply manufacturers will have to consider the security aspect when their products are integrated within a smart grid. As I introduced at APEC 2015, Software Defined Power Architecture is being deployed fast in the ICT industry and some systems already installed in data-centres are connected to the smart grid and communicating through the SCADA system. If there is little risk for a hacker to send a command to a POL blasting local core processor, the risk for UPS and even frontend rectifier to receive a fatal command is not excluded. The Ukrainian’s case triggered the alarm and for all involved in developing power systems connected to the smart grid a signal that we should never forget about the final application and to be Smart Security Innovators to power the smart grid with excellence.

Figure 2: Cyber criminals taking control of smart grids is now a reality Components in Electronics March 2017 27

Page 1  |  Page 2  |  Page 3  |  Page 4  |  Page 5  |  Page 6  |  Page 7  |  Page 8  |  Page 9  |  Page 10  |  Page 11  |  Page 12  |  Page 13  |  Page 14  |  Page 15  |  Page 16  |  Page 17  |  Page 18  |  Page 19  |  Page 20  |  Page 21  |  Page 22  |  Page 23  |  Page 24  |  Page 25  |  Page 26  |  Page 27  |  Page 28  |  Page 29  |  Page 30  |  Page 31  |  Page 32  |  Page 33  |  Page 34  |  Page 35  |  Page 36  |  Page 37  |  Page 38  |  Page 39  |  Page 40  |  Page 41  |  Page 42  |  Page 43  |  Page 44  |  Page 45  |  Page 46  |  Page 47  |  Page 48  |  Page 49  |  Page 50  |  Page 51  |  Page 52