1. The Voice of the Asset Owner�ICSJWG – April 2011 @ Dallas�� ?UCAIug� ?SG Security� ?ASAP-SG SG Security WG Chair:
Darren Reece Highfill
darren@utilisec.org
2. A Little History… Original Utility Communications Architecture
EPRI Project RP2949 - 1991
Utility Data Communications from Enterprise to Customer
Adoption limited
Lack of detailed spec about how protocols would be used by apps (mapping)
? Interoperability issues
UCA (MMS) Forum
Started in 1992 to address interoperability
Genesis of utility-vendor collaborative venue
Build technical agreements around interoperability
? Idea of defining standard power system objects
Map to services, MMS data types, other underlying protocols
3. UCA International Users Group UCA2
Started in 1996
Published as IEEE TR1550 (1999)
Endorses ten different profiles, incl. TCP/IP, ICCP, etc.
Organized data via the Generic Object Models for Substation and Feeder Equipment (GOMSFE)
Included Common Application Service Model (CASM)
Submitted to IEC (TC57 WG10)
IEC 61850 released in 2003
4. UCAIug Corporate Supporters
5. UCAIug Membership Composition
6. UCAIug Mission (from Charter) Enable utility integration through the deployment of open standards
Provide a forum for the various stakeholders in the utility industry to work cooperatively together as members of a common organization to:
Influence, select, and/or endorse open and public standards appropriate to the utility market based upon the needs of the membership
Specify, develop, and/or accredit product/system testing programs that facilitate the field interoperability of products and systems based upon these standards
Implement educational and promotional activities that increase awareness and deployment of these standards in the utility industry
8. UCAIug OpenSG
9. SG Security Working Group
10. SG Security WG – Task Forces Usability Analysis Task Force
Evaluation and refinement of Security Profiles and other materials considered for ratification by the SG Security WG
Chair: John Lilley (SDG&E), Vice-Chair: Daniel Thanos (GE)
CyberSec-Interop Task Force
Spinoff from DOE National SCADA Test Bed Lemnos Interoperable Security Project
Development of interoperable security configuration profiles
Chair: Dave Teumim (Teumim Technical), Vice-Chair: John Stewart (TVA)
AMI-SEC Task Force
Produce technical specifications used by utilities to assess and procure
Determine baseline level of detail (prescriptive in nature), compliant products will have known functionality and robustness
Chair: Darren Highfill (SCE), Vice-Chair: Bobby Brown (EnerNex)
Embedded Systems Security Task Force
Security requirements for embedded components and devices used in utility field systems
Chair: Rohit Khera (PG&E), Vice-Chair: Daniel Thanos (GE)
11. Project Description:
Utility-driven, public-private collaborative project to develop system-level security requirements for smart grid technology
Needs Addressed:
Utilities: specification in RFP
Vendors: reference in build process
Government: assurance of infrastructure security
Commissions: protection of public interests
Approach:
Architectural team ? produce material
Usability Analysis team ? assess effectiveness
NIST, UtiliSec ? review, approve
Deliverables:
Strategy & Guiding Principles white paper
Security Profile Blueprint
6 Security Profiles
Usability Analysis ASAP-SG: Summary
12. Funding & Workflow
13. ASAP-SG Security Profiles Prescriptive, actionable guidance
How to build-in and implement security
Tailored to a set of specific smart grid functions, such as
Advanced Metering Infrastructure
Third Party Data Access
Distribution Management
Wide Area Management (Synchrophasors)
Home Area Networks
Substation Automation
14. Security Requirements Relevant to SG
