Flexible Plug & Play Smart grid cyber security design and framework. Tim Manandhar

Similar documents

Flexible Plug and Play Implementation of active voltage and active power flow management within FPP Trial area - SDRC 9.6

ABB North America. Substation Automation Systems Innovative solutions for reliable and optimized power delivery

Securing Distribution Automation

INTEGRATING SUBSTATION IT AND OT DEVICE ACCESS AND MANAGEMENT

Release of the Draft Cybersecurity Procurement Language for Energy Delivery Systems

G-CLOUD SPECIALIST CLOUD SERVICES

Cyber Security Health Test

Cyber Security for Railway Signalling

Consulting International

SCADA Protocols and Security

Energy efficiency in communication networks in Horizon 2020 perspective

Cyber Security and Privacy - Program 183

System Stability through technology

EU Threat Landscape Threat Analysis in Research ENISA Workshop Brussels 24th February 2015

European Conference on Nanoelectronics and Embedded Systems for Electric Mobility. Grid Integration of Electric Vehicle Infrastructure

Unifying Smart Grid Communications using SIP

Testing Intelligent Device Communications in a Distributed System

7 Homeland. ty Grant Program HOMELAND SECURITY GRANT PROGRAM. Fiscal Year 2008

Normen & Standards Industrie 4.0 IEEE Standards

Open source implementation, by means of Web Services, of monitoring and controlling services for EMS/SCADA Systems

Sofware Engineering, Services and Cloud Computing

ISACA rudens konference

ABB smart grid Intelligent business

Data Centre Energy Efficiency: A Call To Action

Cyber Security. Smart Grid

Smart Grid Challenges and Opportunities the Norwegian Perspective

Robert Malmgren. Smart Grid. Security Challenges - Legacy and Infrastructure Burdens

Risk Management, Equipment Protection, Monitoring and Incidence Response, Policy/Planning, and Access/Audit

Big data revolution Case LV Monitoring

Securing the Electric Grid with Common Cyber Security Services Jeff Gooding

IEEE Standards Activities in the Smart Grid Space (ICT Focus)

Network Cyber Security. Presented by: Motty Anavi RFL Electronics

Cybersecurity in the Utilities Sector Best Practices and Implementation 2014 Canadian Utilities IT & Telecom Conference September 24, 2014

IEC A New Perspective in Substation Automation

Public Service Co. of New Mexico (PNM) - PV Plus Storage for Simultaneous Voltage Smoothing and Peak Shifting

Approach to Information Security Architecture. Kaapro Kanto Chief Architect, Security and Privacy TeliaSonera

Requirements for Future Power System Architectures Vom Use Case zum System Hilfen aus der Normung

CLASS. Customer Load Active System Services

Digital Metering: a key enabling factor to foster RES development

Cloud Cube Model: Selecting Cloud Formations for Secure Collaboration

Radware ADC-VX Solution. The Agility of Virtual; The Predictability of Physical

Section 2, Chapter 7 TESTING & DOCUMENTATION

Cyber Security for the energy industry

Cybersecurity Risk Assessment in Smart Grids

Basics in Energy Information (& Communication) Systems Summary Substation Automation

ENISA What s On? ENISA as facilitator for enhanced Network and Information Security in Europe. CENTR General Assembly, Brussels October 4, 2012

Advanced automation and real-time business intelligence Solutions for the Energy & Utilities markets M A N A G I N G T H E E S S E N T I A L S

ZigBee IP Stack Overview Don Sturek Pacific Gas and Electric (PG&E) 2009 ZigBee Alliance. All rights reserved. 1

Feature. SCADA Cybersecurity Framework

DIGITAL CONTROL SYSTEM PRODUCT SOLUTIONS

MNS is Switchgear System Technical Overview

ICT 7: Advanced cloud infrastructures and services. ICT 8: Boosting public sector productivity and innovation through cloud computing services

Opportunities to Overcome Key Challenges

Objectives for today. Cloud Computing i det offentlige UK Public Sector G-Cloud, Applications Store & Data Centre Strategy

Lessons Learned from AMI Pioneers Follow the Path to Success

Smart grid security analysis

DG CONNECT (Unit H5) Overview of the European Data Centre/Smart Cities initiatives in DG Connect H5

How can I Utilize telemetry and remote SCADA architecture for distributed infrastructure?

Leveraging Cloud Services for Quicker Implementation and More Secure Automation Solutions

Enterprise Architecture & Integration. Dr. Gerald R. Gray Technical Executive Annual Research Program Briefing for 2015 September 15, 2014

Symphony Plus Cyber security for the power and water industries

Framework for Improving Critical Infrastructure Cybersecurity

WORK PROGRAMME Topic ICT 9: Tools and Methods for Software Development

Enabling the SmartGrid through Cloud Computing

The Critical Infrastructure: To be or not to be Secure. European Network for Cyber Security. Fred Streefland Director Education & Training

How can the Future Internet enable Smart Energy?

Innovation value pools for Utilities or Advanced Information and Communications (ICT) Technology in Energy

standardization, system design and testing

Adaptive Radio. Cognitive Radio

R-Win. Smart Wireless Communication Management System

Securely Connect, Network, Access, and Visualize Your Data

Thales e-security Financial and Operational Benefits of using Datacryptor R4.02 in your network

Smart grid security certification in Europe Challenges and recommendations

Smart Grids. MIECF Conference April 2011

ICT Category Sub Category Description Architecture and Design

CYBER SECURITY Audit, Test & Compliance

Industrial Network Security for SCADA, Automation, Process Control and PLC Systems. Contents. 1 An Introduction to Industrial Network Security 1

FLOWCHART OF PROJECT EXECUTION

PI Server Security Best Practice Guide Bryan Owen Cyber Security Manager OSIsoft

Industrial Cyber Security 101. Mike Spear

The Rollout of Charging Infrastructure for EVs Plugging into Europe

Security in SCADA solutions

Smart grid cyber security certification

HIGH PERFORMANCE ENCRYPTION SOLUTIONS SECURING CRITICAL NATIONAL INFRASTRUCTURE

How to Integrate NERC s Requirements in an Ongoing Automation and Integration Project Framework

Cyber Security From product to system solution

Smart Metering and RF Mesh Networks for Communities

Transcription:

Flexible Plug & Play Smart grid cyber security design and framework Tim Manandhar

Agenda Cyber security for smart grids Smart Grid cyber security framework FPP project approach on Cyber security Conclusions 2

Smart Resilience Cyber security in smart grid Three dimensions: Smart, Grid and Resilience Assets Transformers, Switchgear, Cables Power and Voltage Management Protection Customer Connection (electrical) Information Technology Safety Communications Technology Reliability Real Time Control Availability Automation Dynamic Customer Interaction Integrity Confidentiality Cyber Security

Cyber security in smart grid Additional security elements in smart grid New hardware and new technology New communications protocol Interface to the existing infrastructure Interface to untrusted network Smart Grid evolution

UKPN s existing security systems Policies Procedures Standards Guidelines Security forums Audits Penetration testing Personnel and site security Disaster and Emergency Response

Agenda Cyber security for smart grids Smart Grid cyber security framework FPP project approach on Cyber security Conclusions 6

Smart grid cyber security framework Approach for Smart grid cyber security Governance Projects & Changes Third Party Risks Business Risk Secure Systems and Architecture Response Capability Cyber Security Framework Practical, simple and userfriendly Governance tool Top down approach CPNI Good Practice Guides Aligned with existing UKPN policies and framework Awareness and Skills

Smart grid cyber security framework Framework components Reference to existing documents and processes Recommendation of new policies, procedures and tools UK Power Networks security-related policies Baseline security requirements Procedures Tools Standards & Guidelines

Smart grid cyber security framework Project life cycle approach Requirements Design Procurement Detailed Design Procurement Governance & Change Management Operation Commission / Handover Build Test FAT SAT Key: Policies Baseline Security Requirements Procedures Tools Standards & Guidelines

Agenda Cyber security for smart grids Smart Grid cyber security framework FPP project approach on Cyber security Conclusions 10

Case study in Flexible Plug and Play project Objective: cheaper and faster connection of DG to constrained parts of the network by trialling smart grid technologies and smart commercial agreements Duration: 3 years: January 2012 - December 2014 Project Value: 9.7 million (6.7m funding from LCN Fund) Partners and Suppliers:

FPP Project Approach on Cyber Security Why security is important for FPP project? New hardware and new technology New communications protocol Interface to the existing infrastructure Interface to untrusted network Smart Grid evolution Radio mesh communications, ANM, smart IEDs IP based protocols such as IEC 61850, DNP3, modbus etc SCADA, Corporate IT and third party interaction DNO interface to Distributed Generation Control system smart grid rollout with complex and more ICT dependent design

FPP Project Approach on Cyber Security Flexible Plug & Play Solutions Active Network Management Dynamic Line Rating IEC 61850 over RF Mesh Quadrature Booster Control System Upgraded RTU Automatic Voltage Controller Generator Controller

FPP Project Approach on Cyber Security FPP Project Security Implementation Jan 2012 Project Start Mid 2012 Requirements specification Design & Development Early 2013 Security design reviews Security Risk Assessment September 2013 System Integration Acceptance testing Delivery of FPP Technical Solution Mid 2014 As-built solution assessment Implement additional Security Controls Implement additional security in RF mesh December 2014 Smart Grid Cyber Security Framework FPP solution Penetration Tests Knowledge Dissemination Dec 2014 Project End

FPP Project Approach on Cyber Security FPP Security context diagram

EU SGAM approach Considerations for Mapping: Interoperability Plug & Play DER Domain Data Model

Security Framework Communication Layer Critical interfaces: Using SGAM Communication layer mapping Interface with SCADA Control system Interface with the RTU Interface with a new DER domain

Security Controls

Agenda Cyber security for smart grids Smart Grid cyber security framework FPP project approach on Cyber security Conclusions 19

Learning and Conclusion Cyber security is a critical success factor in bringing smart + grid together successfully The framework recognises that we can re-use some of what we already have in place for IT but also accounts for key differences i.e. field equipment, customer interfaces, availability requirements, etc. The framework ensures that governance is in place across both smart elements and physical assets The framework recognises that smart grid security skills are required in the field as well as in corporate IT.

Thank you ukpowernetworks.co.uk/innovation