Presentation is loading. Please wait.

Presentation is loading. Please wait.

Potential Smart Grid standardisation work in ETSI Security and privacy aspects Carmine Rizzo on behalf of Scott CADZOW, C3L © ETSI 2010. All rights reserved.

Published byAlex Craig Modified over 11 years ago

Similar presentations

Presentation on theme: "Potential Smart Grid standardisation work in ETSI Security and privacy aspects Carmine Rizzo on behalf of Scott CADZOW, C3L © ETSI 2010. All rights reserved."— Presentation transcript:

1 Potential Smart Grid standardisation work in ETSI Security and privacy aspects Carmine Rizzo on behalf of Scott CADZOW, C3L © ETSI 2010. All rights reserved

2 Contents Coordinating security and privacy in smart grids Role of TISPAN Role of M2M Role of others Understanding of risk in smart grids From attack both accidental and malicious Understanding of personal data and privacy in smart grids Preservation of consumer privacy Resilience modelling Support to utility infrastructure Support to communications infrastructure 2 Smart Grids Workshop 14 June 2010 - ETSI

3 Coordinating security for smart grids in ETSI? TISPAN Ensuring the NGN is protected from, and provides protection for, services and applications crossing or hosted in core NGNs Maintenance and guidance of the design for assurance paradigm Maintenance and guidance of the privacy by design paradigm Role of M2M and others Use cases, deployment modelling, protocol identification, validation of core security and privacy models Extension to non-NGN and non-Core functionality consistent with NGN and core functionality for local devices and their interfaces. 3 Smart Grids Workshop 14 June 2010 - ETSI

4 The NGN as a collection of provider entities 4 Smart Grids Workshop 14 June 2010 - ETSI IP network IMS plane Service content (www)

5 Security protection measures CIA paradigm Confidentiality Is information exchanged across the network only visible to those authorised to see it? Covers encryption and separation technologies Integrity Has the information exchanged been altered in transit? Has the system itself been altered? Availability Covers a number of topics: Identification (and validation of identity through authentication) Authorisation (is Ann allowed to perform that function?) Reliability Resilience 5 Smart Grids Workshop 14 June 2010 - ETSI

6 Privacy protection measures ISO 15408 2 (Common Criteria) identifies 4 key attributes that relate to privacy and which are undergoing assessment for application in the NGN Anonymity Can a party transact anonymously? Pseudonymity Can a user mask themselves with an alias? Un-Linkability Does one provider need to know if another provider is offering services to the same person? Un-Observability Does the provider need to ensure that a user may use a resource or service without others, especially third parties, being able to observe that the resource or service is being used? 6 Smart Grids Workshop 14 June 2010 - ETSI

7 Trust in the NGN How does the service trust the network? How does the content provider trust the service platform? Proposal being considered in TISPAN for the NGN Keyed authorisation framework Variant of X.509 based Privilege Management Infrastructure (PMI) Elements of Kerberos ticket granting service too Will fully support the LI requirements in the Dynamic Triggering area May allow greater trust from users of the core network May act as a deterrent to SPAM, DDoS and other attacks 7 Smart Grids Workshop 14 June 2010 - ETSI

8 Explicit authorisation model Assertions Content providers require QoS, GoS guarantees Network resource is finite Detection and prevention of law breaking aids society Considerations Service providers want customer retention Users want privacy Users want freedom of expression Identification and authentication are not sufficient by themselves in the NGN and our e-world Authorisation and privacy protection have to be added Smart Grids Workshop 14 June 2010 - ETSI 8

9 Standardisation of authorisation frameworks TISPAN and ETSI Expand the models developed in TS 187 016 TISPAN; NGN Security; Identity protection (Protection Profile) and apply them to generic and specific NGN models Mandate them for the NGN core ENISA? Promotion and encouragement of development Others? For discussion – but everyone has a role they can play Smart Grids Workshop 14 June 2010 - ETSI 9

10 Thanks! Available for your ? scott@cadzow.com carmine.rizzo@etsi.org

Download ppt "Potential Smart Grid standardisation work in ETSI Security and privacy aspects Carmine Rizzo on behalf of Scott CADZOW, C3L © ETSI 2010. All rights reserved."

Similar presentations

M2M Architecture Inge Grønbæk, Telenor R&I ETSI Workshop on RFID and The Internet Of Things, 3rd and 4th December 2007.

M2M Architecture Inge Grønbæk, Telenor R&I ETSI Workshop on RFID and The Internet Of Things, 3rd and 4th December 2007.
World Class Standards Security challenges in an Internet of Things RFID and beyond, RFID03_07 Scott CADZOW C3L © C3L 2008. All rights reserved Workshop.

World Class Standards Security challenges in an Internet of Things RFID and beyond, RFID03_07 Scott CADZOW C3L © C3L All rights reserved Workshop.
World Class Standards Smart Grids Roadmap for work in ETSI: introduction Emmanuel Darmois © ETSI 2010. All rights reserved Scoping Meeting, June 14 th.

World Class Standards Smart Grids Roadmap for work in ETSI: introduction Emmanuel Darmois © ETSI All rights reserved Scoping Meeting, June 14 th.
Fostering worldwide interoperabilityGeneva, 13-16 July 2009 Overview of Security work in ETSI Presenter: Mike Sharpe, VP ETSI ESP Source: Charles Brookson,

Fostering worldwide interoperabilityGeneva, July 2009 Overview of Security work in ETSI Presenter: Mike Sharpe, VP ETSI ESP Source: Charles Brookson,
Tony Rutkowski Yaana Technologies Georgia Tech Q.4/17 Rapporteur

Tony Rutkowski Yaana Technologies Georgia Tech Q.4/17 Rapporteur
Trust Management of Services in Cloud Environments:

Trust Management of Services in Cloud Environments:
Overview Network security involves protecting a host (or a group of hosts) connected to a network Many of the same problems as with stand-alone computer.

Overview Network security involves protecting a host (or a group of hosts) connected to a network Many of the same problems as with stand-alone computer.
Whats New in Microsoft Office 365 Module 01 | Daniel Sierra | Account Technology Strategist Microsoft Education México.

Whats New in Microsoft Office 365 Module 01 | Daniel Sierra | Account Technology Strategist Microsoft Education México.
World Class Standards Summary of NGN LI requirements Fitting standards together Scott CADZOW.

World Class Standards Summary of NGN LI requirements Fitting standards together Scott CADZOW.
OOI-CI–Ragouzis–2007.10.15 Ocean Observatories Initiative Cyberinfrastructure Component CI Design Workshop 17-19 October 2007.

OOI-CI–Ragouzis– Ocean Observatories Initiative Cyberinfrastructure Component CI Design Workshop October 2007.
1 Programa de Engenharia Elétrica - PEE/COPPE/UFRJ Universidade Federal do Rio de Janeiro A Review of Anomalies Detection Schemes for Smart Grids Andrés.

1 Programa de Engenharia Elétrica - PEE/COPPE/UFRJ Universidade Federal do Rio de Janeiro A Review of Anomalies Detection Schemes for Smart Grids Andrés.
NIST Big Data Public Working Group Security and Privacy Subgroup Presentation September 30, 2013 Arnab Roy, Fujitsu Akhil Manchanda, GE Nancy Landreville,

NIST Big Data Public Working Group Security and Privacy Subgroup Presentation September 30, 2013 Arnab Roy, Fujitsu Akhil Manchanda, GE Nancy Landreville,
Developments in the ETSI NFV Security Expert Group

Developments in the ETSI NFV Security Expert Group
Secure Communication Architectures.

Secure Communication Architectures.
Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.

Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.
Geneva, Switzerland, 15-16 September 2014 ETSI TC Cyber Charles Brookson Chairman ETSI TC Cyber Zeata Security Ltd and Azenby Ltd ITU.

Geneva, Switzerland, September 2014 ETSI TC Cyber Charles Brookson Chairman ETSI TC Cyber Zeata Security Ltd and Azenby Ltd ITU.
World Class Standards ANFOV - Milano, 14 November 2007 – Paolo DE LUTIIS ANFOV - Milano, 14 November 2007 Autore:Paolo DE LUTIIS Telecom Italia Security.

World Class Standards ANFOV - Milano, 14 November 2007 – Paolo DE LUTIIS ANFOV - Milano, 14 November 2007 Autore:Paolo DE LUTIIS Telecom Italia Security.
The 6th CJK IT Standards Meeting April 10 ~ 12, 2006, Hangzhou, China CJK IT Standards Meeting (Collaboration of Security Activity between CJK On NGN and.

The 6th CJK IT Standards Meeting April 10 ~ 12, 2006, Hangzhou, China CJK IT Standards Meeting (Collaboration of Security Activity between CJK On NGN and.
Page: 1 24-26 October 2006 © 2006 VIVACE Consortium Members. All rights reserved VIVACE FORUM 2 +33 (0)5 61 55 60 86 {mkamel, benzekri, barrere, nasser}

Page: October 2006 © 2006 VIVACE Consortium Members. All rights reserved VIVACE FORUM (0) {mkamel, benzekri, barrere, nasser}
Using Cryptographic ICs For Security and Product Management Misconceptions about security Network and system security Key Management The Business of Security.

Using Cryptographic ICs For Security and Product Management Misconceptions about security Network and system security Key Management The Business of Security.

Similar presentations

Ads by Google