Standards for Security Power System Communications
Defending today’s power systems is challenging because they typically use communication protocols optimized for bandwidth and efficiency, with zero or simple security protections. Furthermore, many grids have received little to no security enhancements post deployment.
To help counter this problem, in the early 2000s IEC Technical Committee 57, a group devoted to power system management standards, started working on how to make power grids secure-by-design. Working Group 15 (WG15) was formed to evaluate the requirements from a technology perspective, and define a standard way to implement them.
Nozomi Networks Co-founder and CTO, Moreno Carullo, has been a member of WG15 since 2015 and has have contributed to the development of the standards, particularly sections related to power system monitoring.
At Black Hat USA 2019, the team presented a demonstration of how the IEC 62351 standards could be used for monitoring industrial networks. They demonstrated how four types of hard-to-detect attacks are readily identified. This new approach to asset health monitoring significantly enhances threat detection and power grid cyber resiliency.
Nozomi Networks CTO Moreno Carullo explains how IEC 62351-6 can be used to secure IEC 61850 GOOSE protocol defects & increase ICS security for substations.
Today at Black Hat USA we’re presenting an innovative power grid cyber security solution that greatly improves monitoring of intelligent electronic devices (IEDs).
Using the IEC 62351 standard for monitoring industrial networks, we demonstrate how four types of hard-to-detect attacks are readily identified.
As a passionate champion for secure-by-design power grid systems, I’ve been part of WG15, the group defining IEC 62351 standards to enable such systems, for years.
If you’d like to learn about the future of cyber security for electric utilities, I urge you to read this article. It also provides a sneak peek into our related (and groundbreaking!) talk about power system security at Black Hat USA 2019.
© 2022 Nozomi Networks, Inc.
All Rights Reserved.