• No results found

System Stability through technology

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "System Stability through technology"

Copied!
13
0
0

Loading.... (view fulltext now)

Download now ( 13 Page )

Full text

(1)
(2)

Smart Grid Design Goals

More

– increased capabilities

–  More capabilities at the edge and enterprise, pervasive

automation

Better

– faster, more reliable & secure

–  The electric grid is more resilient

–  Dynamic control of all security elements allows the system to

adapt to evolving threats

Easier

– usability (convergence, unified control,

visualization, information on demand)

–  Tens of Millions of nodes are manageable

–  Situational awareness

–  Common Services allow for easier integration of new capabilities

(3)

Smart Grid System of Systems (SoS) Research

Silos ESB Adapter-based Common

Four evolutions of Smart Grid SoS Architectures

Current-state Typical SI Approach DoD-style approach

Standards –based Internet-style

(4)

CCS Introduction

•  Changing Landscape

–  Increased attention from government, media, public

–  New class of adversary and malicious threats

–  Increase use of Communications and Automation on the grid

–  Customer and 3rd Party Interaction increasing

•  Objectives

–  Security needs to keep pace with increasing pace of technology

adoption

–  Security needs to be baked in to new procurements while addressing

legacy environment (No device left behind)

–  Security needs to comply with all regulations and relevant standards

–  Adhere to common services architecture that reduces implementation

and operational costs through reuse

•  Solution

–  CCS is a common service for securing applications and devices

–  CCS focuses on securing all critical energy delivery operations

–  CCS is the first open and standards based implementation which meets

(5)

CCS Technology Highlights

The most advanced security system in the energy sector

–  Next generation utility technologies

–  DoD technology transfer

–  Best practices from many sectors

–  Modern SOA style architecture

The most compliant security system

–  NERC CIP Version X

–  All Federal Processing Standards (DHS, FIPS)

–  NIST Compliant (NISTIR, SP)

A robust, scalable and dynamic security system

–  Supports all Grid Applications

–  Supports current and next generation networking (MPLS)

–  Supports all major protocols used on the Grid

(6)

CCS Technology Highlights

Easily Integrated into existing environment

–  Supports existing control and IT investments (Directory Services,

Enterprise PKI)

–  8 inflight advanced programs are relying on new services (e.g.

ISGD, Phasor Measurement, SA3, C-RAS, etc.)

–  Supports gradual evolution to full compliance over time

Ease of Use

–  AMI Security uses command line and requires vendor support

–  CCS has next generation web based graphical user interface

–  Enables a powerful and unified security operations center

IEC has committed to align with CCS principles

–  Hosted IEC TC 57 Security Meetings

–  New Part to FERC reviewed/recommended 62351

GE and Subnet are deploying CCS compatible devices and

(7)

Operational View

Substation 1 Control Center Communications Network Central Services (Data Center) Historian DMS A&V Substation Devices PDC AVVC Gateway PMU Substation 2 Substation Devices IED AVVC PMU Substation n Substation Devices Substation 3 Substation Devices ESC ESC ESC ESC Represents a device with CCS capabilities AVVC IED IED AVVC PMU IED IED PMU Gateway

EPS – Electrical Power System ECS – EPS Cyber System ECSA – ECS Application ECSC – ECS Component ESC – Edge Security Client

ECS ECSA ECSC

(8)

CCS Concepts: Advanced Visualization

Easy to use, intuitive interface

(9)

CCS Concepts: Control Plane

All Devices are centrally controlled

PE

Data Planes (Grey)

Security Control Plane (Red) Not accessible in MPLS Core

MPLS VLAN

IP Network IP Network

Security Control Plane (Red) IPSEC

Security Control Plane (Red)

IPSEC PE

MPLS Core CCS Services Grid Application

with CCS Client

Application Security Credentials

Grid Device Application Security

Credentials Security Operations Grid Operations

(10)

CCS Concepts: Groups

Management of communities and groups

Grid Device Grid Device Grid Device Grid Device Grid Device Grid Device Grid Device Grid Device

GROUP 1 Grid Device

Grid Device Grid Device Grid Device Grid Device Grid Device Grid Device Grid Device GROUP 3 Grid Device Grid Device Grid Device Grid Device Grid Device Grid Device Grid Device Grid Device GROUP 2 Grid Application Security Associations Control Plane

CCS Services Security Operations

(11)

Initial CCS Capabilities

• Public Key Infrastructure (PKI), Identity Management, Attribute

Certificates (BoH)

Authentication

• Centrally Managed and Configured Security Associations (SAs)

Authorization

• Audit & Reporting (Alert, Syslog)

• Security Information and Event Management (SIEM)

Accounting

• Integrity Management Authority (IMA)

• Trusted Network Connect • Bill-of-Health

Integrity

• Source-based Data Labeling : Trusted, Questionable, Untrusted

Quality-of-Trust

• Peer-to-peer middleware using Data Distribution System (DDS)

• Use only for control plane

• Several vendors available including open source

Peer-to-Peer Communication

• Accessed via Web Browser (Chrome 14, FireFox 7 and IE 10 in the

future)

• Built-in Test and Peek-Poke Capabilities

(12)

GUI Icon Legend

Stat us (Hea rtbea t) QoT (Q ua lity -of-Tru st) BoH (In teg rity) Iden tity Certi ficat e

• 

All Nodes in the security network are displayed as

circles and q

uadrants represent quality of security

(13)

To ensure proper operation, rigorous technology evaluation must take place in a controlled environment before smart grid

technologies are deployed on the grid

Situational Awareness Lab Communications & Computing Lab Power Systems Lab Distributed Energy Resources Lab

References

Download now ( PDF - 13 Page - 2.98 MB )

Related documents

How You Can Get Richer... Quicker!

As you study the following chapters, you will learn that improving your job-skill is just ONE success method which must be supplemented by many· other

Application of wavelets and artificial neural network for indoor optical wireless communication systems

Figure 7.5: The block diagram of DWT-ANN based receiver for PPM hard and soft decision decoding scheme in diffuse indoor OWC in presence of FLI. The OPP for the

On the Orthogonality of q-Classical Polynomials of the Hahn Class

To be more specific, a geometrical approach has been used by taking into account every possible rational form of the polynomial coefficients in the q-Pearson equation, together

MANAGING THE STUDENT REQUISITION PROCESS

 Changes applicant status to Hiring Complete  Reviews Student Hire Report for accuracy Human Resources Service Center  Reviews hiring proposal.  Prints hire form for

Going Fossil Free: A Lesson in Climate Activism and Collective Responsibility

The next section examines how these parameters describe the social positions of universities, and how the fossil fuel divestment movement illustrates a form of this

Code-switching in Irish tweets: a preliminary analysis

Our contributions are as follows: (i) an enhancement of the POS-tagged Twitter corpus in which English code-switched segments are an- notated, (ii) a categorisation of the types

Economic Benefits from Air Transport in Australia

The way that we build up the aviation sector‟s economic footprint is also illustrated in Figure 3.1. The top panel shows the two activities that comprise the aviation sector; the

Behavioral and Primary Healthcare Coordination Program Provider Manual

Published: June 16, 2015 Policies and Procedures as of April 1, 2015 Version: 2.0 c) Evidence is provided that the applicant is able to benefit from the BPHC service. d) Evidence