Title :
How can cybersecurity be enhanced in existing substations minimizing impact on the automation and control system
Author :
Arnaud, Jerome ; Rey, Jean-Michel
Author_Institution :
Alstom Grid, Massy, France
Abstract :
Most of existing substations were commissioned in a time when the only communication link was a private telecontrol bus. Since then, DSO and utilities practices have evolved and require more connectivity to the substation. These new practices and the increasing threat of malware have raised cyber security awareness. Even though a protection and automation control system is becoming more and more an IT system, it has its specific constraints (high availability, highly distributed, weak connectivity and a long lifecycle) and must be treated accordingly. The authors have collected technical security practices from the IT world and selected those that can be applied to a commissioned substation and require no change to the substation automation core software. While implementation of these techniques will not lead to full compliance to cyber security standards (such as NERC CIP) or recommendations (such as NISTIR 7628), the substation “attack surface” will be greatly reduced for a low cost.
Keywords :
invasive software; power engineering computing; power system security; substation automation; CIP; DSO; IT system; NERC; NISTIR 7628; attack surface; automation control system; automation system; communication link; cyber security standards; malware; private telecontrol bus; protection system; substation automation core software; substations; technical security practices;
Conference_Titel :
Electricity Distribution (CIRED 2013), 22nd International Conference and Exhibition on
Conference_Location :
Stockholm
Electronic_ISBN :
978-1-84919-732-8
DOI :
10.1049/cp.2013.0853
