Presentation is loading. Please wait.

Presentation is loading. Please wait.

UCAIug Summit SG Security Session 16 November 2011 Austin, TX Opening Session Agenda Status Updates Distribution Reliability & Cyber Security.

Published byRosalind Warner Modified over 9 years ago

Similar presentations

Presentation on theme: "UCAIug Summit SG Security Session 16 November 2011 Austin, TX Opening Session Agenda Status Updates Distribution Reliability & Cyber Security."— Presentation transcript:

1 UCAIug Summit SG Security Session 16 November 2011 Austin, TX Opening Session Agenda Status Updates Distribution Reliability & Cyber Security

2 Agenda DayTimeslotSubjectGroup Tuesday1530-1730SG Security Boot CampSG Sec WG Wednesday0800-1200Opening PlenaryUCAIug 1300-1500Agenda & Status updates Usability Analysis TF Distribution Reliability & Cyber Security SG Sec WG Thursday0800-1000Vulnerability Handling & Information SharingSG Sec WG 1030-1200SG Security / OpenADR*Joint Session 1530-1730Substation Automation Security ProfileSG Sec WG Friday0800-1000External Activities: NERC, NESCOR, SGIP… Closeout / Actions Forward SG Sec WG

3 SG Security Working Group ChairDarren Highfill, SCE Vice-ChairBobby Brown, EnerNex SecretaryScott Palmquist, Itron

4 SG Security WG – Task Forces Usability Analysis Task Force – Chair: John Lilley (SDG&E), Vice-Chair: Daniel Thanos (GE) CyberSec-Interop Task Force – Chair: Dave Teumim (Teumim Technical), Vice-Chair: John Stewart (TVA) AMI-SEC Task Force – Chair: Darren Highfill (SCE), Vice-Chair: Bobby Brown (EnerNex) Embedded Systems Security Task Force – Chair: Mark Ward (PG&E), Vice-Chair: Rohit Khera (S&C Electric)

5 SG Security – Recent Accomplishments Usability Analysis Task Force – 2 nd Review of Distribution Management Security Profile – Revision of Wide-Area Monitoring, Protection, & Control Security Profile Embedded Systems Security Task Force – Working on Secure Device Profile for Embedded Systems OpenADR Support – Draft DR Security Profile

6 Objectives for November F2F Meeting Support relationships with other OpenSG working groups and task forces – OpenADR – Security Conformity Update on external activites – NERC, NESCOR, SGIP ASAP-SG – New work: Substation Automation Security Profile Open discussions – Vulnerability Handling

7 Usability Analysis TF Distribution Management Security Profile – Status: COMPLETE – Comments have been reviewed and incorporated into the document – Evaluation report issued – Ratification vote passed – Awaiting OpenSG Technical Committee approval

8 Usability Analysis TF WAMPAC (Synchrophasor) Security Profile – Status: NEARING COMPLETION – Comments have been reviewed and incorporated into the document – Evaluation Report is being finalized – Expect draft for vote soon…

9 Continuation of CyberSec-Interop? Interoperable Configuration Profiles – Valuable work products – Close alignment with goals of UCA, SGIP Work/activity appears to have stalled Need champion to carry work forward

10 AMI-SEC Task Force Re-work of AMI Security Profile by CSWG AMI Security Subgroup – Using ASAP-SG method Are there other tasks?

11 Embedded Systems Security TF Work still continuing, but loss of momentum Re-scope work to reap value from what has already been accomplished? Re-examine sub-leads and meeting times

12 Distribution Reliability Classic definitions – Interruption indices: SAIDI, SAIFI, CAIFI Number of momentary and sustained interruptions Duration of interruptions Number of customers interrupted

13 Smart Grid Conceptual Model

14 Distribution Domain

15 Home Area Network

16 Distribution Failures Line Segments – Permanent vs. Temporary – Mean Time to Repair Protective & Switching Devices – Probability of Failure – Protection Reliability – Reclose Reliability – Mean Time to Repair – Switching Reliability – Mean Time to Switch

17 Distribution Reliability Newer generation of indices – Power Quality (sag and swell) – SIARFI, SMARFI, STARFI Customers with specific power needs – Largely industrial customers to-date – Moving toward service-oriented model?

18 Customer Domain

19 Ways to Improve Maintenance – Corrective and Preventative Installation of reclosers & breakers Automation Crew Management Switching algorithms – Upstream and Downstream (back feeding) System Reconfiguration – Islanding & Restoration

20 UCAIug Summit SG Security Session 17 November 2011 Austin, TX Security Vulnerability Discussion

21 Vulnerability Disclosure and Information Sharing

22 Vulnerability Disclosure Progress ? General practice ICSJWG Whitepaper status The Beresford Vulnerabilities, ICS-CERT, and Siemens Digital Bond’s Response

23 Information Sharing What is this? Some people know something bad about security of critical infrastructure Only government agencies, asset owners, the discoverer, and the supplier directly involved are allowed to know. Other people need to know this – Ever hear of proactive response to threats? Government lawyers are here to help but don’t tell anybody what you know.

24 Vulnerability Disclosure and Information Sharing Who is going to shoot that &%$#&@ elephant!? Can we hold anyone responsible for being irresponsible? Do we want to hold anyone responsible?

25 Vulnerability Disclosure and Information Sharing Does anyone know the requirements for vulnerability disclosure and information sharing processes that would protect the security of critical infrastructure? Sounds like an OSGug kind of thing to me?

26 UCAIug OpenADR Taskforce Meeting Nov 16,17, 2011 Austin Face to Face Meeting

27 Face to Face OpenADR Taskforce Agenda Wed, 11/16 – 3:30 – 5:50 PAP09/OpenADR joint meeting Thur, 11/17 – 8:00 -10:00 – Phase II SRS discussion – 100:30 - 12:00 Joint Security Meeting – 3:30-5:30 Phase II SRS wrap up, future planning

28 Phase 2 Requirements Phase 2 Business & User Requirements addressed by System Requirements Phase 2 requirements B&U requirements are Dispositioned in one of five ways: 1New service is identified. 2Change to an existing service. 3Existing service addresses the requirement. 4Non-functional requirement. 5Out of Scope.

29 OpenADR Security Profile Goal: Provide vetted OpenADR Security Profile November 2011 Today’s Session (Working Session) – Review Security Profile Development Process – Review ASAP-SG Framework used – High level review of existing document OpenADR functionality Use Cases- taxonomy and failure points – Open Issues – Steps to conclusion for comments and approval

30 OpenADR Security Profile Process Developed by joint team from OpenADR TF and SG Security Additional Stakeholders in OpenADR Alliance (OpenADR 2.0 Spec. & CoS) Developed using ASAP-SG Framework – Framework overview from Darren

31 ASAP-SG SUBSTATION AUTOMATION SECURITY PROFILE ROLE TO DEVICE MAPPING DISCUSSION UCAIug/SG Security F2F November 2011

32 Substation Roles Identified  SENSOR  ACTUATOR  PROTECTION APPLICATION  MONITORING APPLICATION  CONTROL APPLICATION  CONTROL AUTHORITY  INFORMATION REPOSITORY  PROXY  USER INTERFACE  DEVICE MANAGER  USER  MAINTAINER 32

33 Some Quick Notes About Roles Many devices today can support numerous roles A Utility may implement all or a subset of the devices capabilities (roles) A role may be implemented more than once within a substation automation system 33

34 Example Substation Architecture 34

35 Role to Device Mapping Example 35 PROTECTION RELAY and MERGING UNIT

36 36 COMMUNICATIONS PROCESSOR Role to Device Mapping Example

37 37 DIGITAL FAULT RECORDER & METER Role to Device Mapping Example

38 38 HUMAN MACHINE INTERFACE (HMI) Role to Device Mapping Example

39 39 SUBSTATION GATEWAY

40 40 REMOTE TERMINAL UNIT (RTU) Role to Device Mapping Example

41 41 PROGRAMMABLE LOGIC CONTROLLER (PLC) Role to Device Mapping Example

42 Substation Automation Security Profile Security of automated functions found in transmission and distribution substations, including system monitoring, switchgear control, and system protection Considered “in scope”: – Equipment inside the substation perimeter (i.e., fence, building, or other enclosure) – Interfaces to substation equipment for communications with remote sites and other facilities – Direct communications between substations (e.g., transfer trip) Processing & Communications Processing & Communications of Measurements, Notifications, & Control Signals Measurements, Notifications, & Control Signals Operate, Control, & Protect Operate, Control, & Protect Within & Amongst Substation Components used to the Electric Grid

43 UCAIug Summit SG Security Session 18 November 2011 Austin, TX Industry Updates Action Items & Closeout

44 CSWG Update Subgroups – DPG – Privacy – High Level Requirements – Architecture – Testing & Certification – AMI Security F2F – GridInterop, December 5, 2011, 3:30-5:00 CT, Phoenix – Cyber Physical conference in April 23-24, 2012, Gaithersburg, MD – CSWG F2F April 24-25, 2012, Sterling, VA

45 NERC Update 2011 GridEx – Cybersecurity exercise completed yesterday Smart Grid Task Force Cyber Attack Task Force Severe Impact Resiliency

46 Questions? darren@utilisec.com SG Security WG Collaboration Site http://osgug.ucaiug.org/utilisec

Download ppt "UCAIug Summit SG Security Session 16 November 2011 Austin, TX Opening Session Agenda Status Updates Distribution Reliability & Cyber Security."

Similar presentations

1 Introducing the Specifications of the Metro Ethernet Forum.

1 Introducing the Specifications of the Metro Ethernet Forum.
Digital Energy Communications GE MDS Communications Network for AMI.

Digital Energy Communications GE MDS Communications Network for AMI.
SG-Systems Boot Camp Use Case Process with TOGAF AMI-ENT Example Kay Stefferud Chair, SG-Systems Use Cases For more information visit:

SG-Systems Boot Camp Use Case Process with TOGAF AMI-ENT Example Kay Stefferud Chair, SG-Systems Use Cases For more information visit:
“SG-Systems” (Smart Grid – Operational Applications Integration) “Boot Camp” Overview Greg Robinson, Co-Chair, SG-Systems Brent Hodges, Chair, SG-Systems.

“SG-Systems” (Smart Grid – Operational Applications Integration) “Boot Camp” Overview Greg Robinson, Co-Chair, SG-Systems Brent Hodges, Chair, SG-Systems.
1 Smart Grid Vision Electric Grid Modernization Steering Committee Grid Facing Technology Subcommittee January 14, 2013.

1 Smart Grid Vision Electric Grid Modernization Steering Committee Grid Facing Technology Subcommittee January 14, 2013.
SG Security Working Group Face-to-Face Meeting – July Vancouver, BC  Usability Analysis Task Force  Cybersec-Interop Task Force  Embedded Systems.

SG Security Working Group Face-to-Face Meeting – July Vancouver, BC  Usability Analysis Task Force  Cybersec-Interop Task Force  Embedded Systems.
UCAIug HAN SRS v2.0 Summary August 12, 2010. 2 Scope of HAN SRS in the NIST conceptual model.

UCAIug HAN SRS v2.0 Summary August 12, Scope of HAN SRS in the NIST conceptual model.
May 2010 Slide 1 SG Communications Boot Camp Matt Gillmore 03/07/11.

May 2010 Slide 1 SG Communications Boot Camp Matt Gillmore 03/07/11.
OpenSG Closing Plenary Ft Lauderdale November, 2010.

OpenSG Closing Plenary Ft Lauderdale November, 2010.
OpenHAN Boot Camp July 19, 2010. OpenHAN TF Overview Chair Erich W. Gunther, EnerNex – Co-chair Mary Zientara, Reliant Energy -

OpenHAN Boot Camp July 19, OpenHAN TF Overview Chair Erich W. Gunther, EnerNex – Co-chair Mary Zientara, Reliant Energy -
Draft 1-15-09 February 2010 OpenHAN TFSlide 1 Submission Title: OpenSG San Francisco Opening Report Date Submitted: February xx, 2010 Source: OpenHAN Task.

Draft February 2010 OpenHAN TFSlide 1 Submission Title: OpenSG San Francisco Opening Report Date Submitted: February xx, 2010 Source: OpenHAN Task.
The Voice of the Asset Owner ICSJWG – April Dallas  UCAIug  SG Security  ASAP-SG SG Security WG Chair: Darren Reece Highfill

The Voice of the Asset Owner ICSJWG – April Dallas  UCAIug  SG Security  ASAP-SG SG Security WG Chair: Darren Reece Highfill
Slide 1 UCAIug OpenSG OpenADE Automated Data Exchange Requirements NAESB ESPI Energy Services Provider Interface Standard Specification Overview November.

Slide 1 UCAIug OpenSG OpenADE Automated Data Exchange Requirements NAESB ESPI Energy Services Provider Interface Standard Specification Overview November.
Team Dec13_11: Cole Hoven Jared Pixley Derek Reiser Rick Sutton Adviser/Client: Prof. Manimaran Govindarasu Graduate Assistant: Aditya Ashok PowerCyber.

Team Dec13_11: Cole Hoven Jared Pixley Derek Reiser Rick Sutton Adviser/Client: Prof. Manimaran Govindarasu Graduate Assistant: Aditya Ashok PowerCyber.
WebCast 5 May 2003 NERC Cyber Security Standard Overview of Proposed Cyber Security Standard.

WebCast 5 May 2003 NERC Cyber Security Standard Overview of Proposed Cyber Security Standard.
Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch

Smart Grid - Cyber Security Small Rural Electric George Gamble Black & Veatch
Chapter 19: Network Management Business Data Communications, 4e.

Chapter 19: Network Management Business Data Communications, 4e.
1 ITC242 – Introduction to Data Communications Week 12 Topic 18 Chapter 19 Network Management.

1 ITC242 – Introduction to Data Communications Week 12 Topic 18 Chapter 19 Network Management.
# 1 Information Exchange Standards Development Collaboration for AMI and HAN For further information, contact: Wayne Longcore

# 1 Information Exchange Standards Development Collaboration for AMI and HAN For further information, contact: Wayne Longcore
Security Conformity March 10, 2011 SF Bay Area. Agenda for Thursday, March 10th Discuss Security Testing & Certification Authority Review Security Testing.

Security Conformity March 10, 2011 SF Bay Area. Agenda for Thursday, March 10th Discuss Security Testing & Certification Authority Review Security Testing.

Similar presentations

Ads by Google