Slashdot Mirror
Securing the US Electrical Grid
An anonymous reader writes The Center for the Study of the Presidency & Congress (CSPC) launched a project to bring together representatives from the Executive Branch, Congress, and the private sector to discuss how to better secure the U.S. electric grid from the threats of cyberattack, physical attack, electromagnetic pulse, and inclement weather. In this interview with Help Net Security, Dan Mahaffee, the Director of Policy at CSPC, discusses critical security challenges.
The best thing they could possibly do to protect the electric grid is to figure out how to make it not an electric grid. Because right now, J. Random Asshole can get in his pickup truck, drive 50 miles to some tower in the middle of nowhere, and cut it down with tools you can get at any construction supply store. Taking this one tower down would take out power to most of the East Coast.
Or you could simply do nothing, because the power companies are doing a great job screwing things up on their own.
You mean like the big giant blackout a decade or so ago where most of the eastern seaboard went dark?
And they immediately blamed Canada despite it being their own incompetence at running an electrical system and this being known faults they were too stupid/lazy/cheap to correct?
[Besides Snowden] The largest data breach in recent memory was due to an internet connected HVAC system at Target. The electrical grid is a small sliver of the equation, the next decade is going to be a massive shit show.
If you have data that you absolutely positively must have accessible via the internet, set up a dial and point an internet connected camera at the dial.
EMP pulse is not hard - we know the basics of shielding.
Sabotage and weather are however not easily defensible. No matter what we do, we can't provide complete protection, but we can do pretty well.
excitingthingstodo.blogspot.com
They have some pretty sharp folks working on grid security at INL. While I've seen some disturbing government R&D waste in many areas, this is actually one where I have been highly impressed.
Meanwhile, the US grid has been quite reliable overall throughout the years, and the few major events that have caused large disturbances have been analyzed in detail so the preventative measures can be taken.
...keep them off the public Internet.
Anyone who connects these systems to the public Internet is a fucking retard.
There is an error in the summary. It should read "In this post-nine-eleven world, the Center for the Study of blah blah blah...."
The book "Reinventing Fire" by Amory Lovins goes into detail in how to make the grid less vulnerable to inclement weather (including space weather). "Finally, letting distributed generators compete and interconnect fairly could nearly eliminate blackout risks by organizing the grid into local “microgrids” that normally interconnect but can stand alone at need (“islanding”). This resilient future, already demonstrated in about 20 experiments worldwide... " http://www.rmi.org/electricity
It depends, if your 'specific' problem is getting funding for yourself by spreading FUD about the dangers ...
Lost at C:>. Found at C.
As we move closer to a world where almost every device is going to be connected to the Internet, how can we mitigate the onslaught of entirely new threats while we're not able to fend off even the most old of attacks?
This fetish to connect everything to the internet is just asinine.
It is not "cool". It is not innovative.
It is just complicating shit because you can and to make something old look new.
If you have critical systems connected to the Internet, you have made a serious design flaw.
Reading the article, it just looks like the industry is looking for grants, tax breaks, and some other poltical favors because TERRORISM!
If my power grid went out you what would happen? Nothing really. My Netflix Breaking Bad marathon would just be interupted.
All the local hospitals have back up generators, emergency health care isn't a problem.
You know, back during hurrican Sandy, my area didn't get any fuel deliveries for almost a week.
we survived and dealt with it nicely, thank you very much. As a matter of fact, many folks got much needed time off from work.
Contrary to what most folks think, we are not a bunch of candy asses that fall apart when our infrastructure fails.
Though it almost always comes down to $$, there are certainly steps that can and should be taken immediately. A significant grid attack combined with a power plant attack could quickly put the affected metro/region into survivalist panic mode.
Bonus points if the security upgrade process provides a convenient vehicle to modernize for things like solar sell-back ("smart grid"). I've always thought that power should (ideally) be more like decentralized network traffic, able to rout around damage and not dependent on single points of failure. Of course, historically it made zero sense to build a dozen mini-plants in neighborhoods when one big plant 30 miles away was more efficient and palatable. But relatively soon, we're going to be able to coat whole communities in rooftop "power plants", and that's a great thing.
Nothing posted to
With upcoming war on weather, they will still somehow find a way to feed the prison industry complex with taxpayer money.
Do you mean this BMW? http://www.rmi.org/winter_2014...
Nothing is 100%, but an air gap will force a black hat to either get someone physically on site, do some social engineering, or find someone that they can control to do their work for them.
By keeping stuff off the Internet, either air gapping or having a separate network with tightly controlled access points (or perhaps even something like a data diode [1]), it blocks all but the most well-heeled attackers, and big firms/governments are well adapted to deal with physical threats far more than stuff coming via the Internet.
[1]: I've taken two machines, each on a different network, plugged in a serial cable with one of the lines cut (so bits only moved one way), then used syslog on the secure network, and redirecting the port's output to a file on the insecure network. This wasn't fast, but it got data to people who needed it, while keeping stuff on the secure side off the Internet unless someone physically accessed it. A true data diode does the same thing, except faster... however expensive. As a hack, a dedicated line-level Ethernet tap might be something to be used because the computer plugged into the mirrored port will be unable to change or reply to the network stream coming from the secure side.
We should start by burying all service cables. Period. Protect against terrorism, solar flares and EMP all in one go.
What about the havoc an extremely large nuclear device could cause on the power grid? According to this other Wikipedia article, "In June 2013, a joint venture from researchers at Lloyd's of London and Atmospheric and Environmental Research (AER) in the United States used data from the Carrington Event to estimate the current cost of a similar event to the US at $0.6-2.6 trillion." To put that in perspective, the 2005 United States budget request from President Bush was only $2.4 trillion and the 2013 budget request from President Obama was $3.8 trillion.
...keep them off the public Internet. Anyone who connects these systems to the public Internet is a fucking retard.
Ah, come on. Ever heard of VPN's? They go encrypted over the internet. Just use some reasonable equipment and keep your patches up to date.
Perhaps you mean... Not connected though unencrypted connections to the public internet...
But, most distribution companies DON'T allow this anyway. There might be one or two rural providers who still have dial-up equipment, but the big transmission line operators don't do this and I'd bet are not allowed to by their region's rules. These companies have to live up to some seriously strict standards for how their facilities operate, what and how they report their status and how fast they must respond to commands from their region's grid manager.
"File to fit, pound to insert, paint to match" - Aircraft Maintenance 101
Just one thing.. EMP, is pretty universal and long reaching. It can reach thousands of miles from ground zero. So even if the nuke was used only on military targets, there is going to be significant EMP induced for at least a few hundred miles.
"File to fit, pound to insert, paint to match" - Aircraft Maintenance 101
Sure, securing the technology side of things is essential but delivering power to people requires most of your infrastructure to be left out in the open... much of it in remote areas and unattended. Quadruple factor authentication, 200 character passwords, and air gaps don't really matter when some guy with a .22 can bring your system down.
What doesn't kill you only delays the inevitable
Invest in the research. They can keep essential services and even small communities operating for days in isolation - plenty of time to get things repaired and reset. They are lower maintenance than generators, so you can put them everywhere.
Yep, I'm aware, just didn't bother to mention that because people will just say "Pfft, that could never happen!" Though, to be fair, scientists don't expect that we're in any danger of a CME causing widespred damage for at least the next decade.
The problem is, it is simple and relatively cheap to prevent an EMP from wiping out our electric grid, but it is very hard to restore it once it has been destroyed by an EMP. Only so many parts are available and the production just isn't there to restore a country of this size for many, many years.
"Somebody ought hand renewable energy a cape and be done with it...." http://grist.org/news/solar-is...
You would be shocked how transaction information is exchanged between transmission operators, generators, load serving utilities and the appropriate regulators.
Tags are exchanged over the public internet. However that is related to power trading, at the operations level it's all irrelevant.
John McAfee 'It was like that time I hired that Bangkok prostitute; to do my taxes, while I fucked my accountant'
The worst thing they can do is to secure it and then depend upon the security working. Thus the system should be designed so that if it is hacked every other Monday that it can survive. There have been a number of recent (last 20 years) events that have shown that single points of failure can have devastating effects. So make sure that if terrible things happen that a lesser grid can be maintained manually.
A great example of this would be a local grocery store chain's SAP system failed shortly before Christmas(some years ago). They were so dependant upon it that their ability to order stuff and manage inventory was pretty much non existent. So the store ended up looking like some kind of soviet grocery store where the only goods on the shelves were pretty much those that are managed by the distributors themselves; things like milk.
This grocery store hopefully has learned from this and now has some kind of manual backup plan where a store manager can actually phone in his orders and crudely manage the store's needs in the case of another serious computer outage.
The same with the grid. Ideally they set some sort of minimal functionality emergency plan whereby humans can crudely manage the system as opposed to a system that either works perfectly by computer or doesn't work at all.
But I worry far less about hackers and far more about system design failures and Carrington events.
If NSA has installed weaknesses and/or back doors into most commercial hardware and software globally, then everyone, Al Qaeda, as well as power companies, use the same stuff.
Ask any security manager. He'll tell you that we must assume that bad guys will eventually learn how to exploit those weaknesses and/or back doors, leaving us highly vulnerable to attack.
The Cyber Command wing of NSA has the responsibility to assure that they can successfully attack any enemy, any time. They can not know now who that future enemy might be. Therefore, the only way they can be assured of accomplishing that mission is to make sure that no computer, no IT operating anywhere on the planet is really secure. I fear that they are planting the seeds by which bad guys can attack the power grid in the future.
I reckon "inclement weather" will turn out to be the most disruptive force on electricity production and supply. Firstly, drought will starve coal, gas, and nuclear power stations of the huge amounts of water they need to run at all. Secondly, warmer water in water sources may make cooling less efficient for nuclear power stations (and possibly a danger in some cases). Thirdly there's a higher and growing risk of extreme weather events; floods, flash floods, droughts, tornados, hurricanes, and ice-storms. Just think of the more recent extreme weather events but more extreme and more frequent.
Frankly the expense of protecting long lines is prohibitive. A person with a tiny bit of knowledge can disrupt power lines with ease.. Most people who commit such acts are pretty stupid and will get caught but a few do understand how to do such thin gs who are not so stupid.. They could be big trouble for all of us. Train rails have the same issue. Lots of exposure in remote areas makes them an easy target. Drones could be a big help in this matter.
Design the grid in such a way that devices (solar generators, wind generators, storage like your hyped elecrical car) can plug on and off. Allow anyone to build his own grid. That way, you can easily detach your own local grid when the "Big Bad Grid" has been compromised. Off course, this means getting the control OUT of the hands of monopolistic companies and governments must somehow grow a facilitating mindset. Mind you, control is still necessary, but it does not need to come from technical dinosaurs.
Nae king! Nae laird! Nae yurrupiean pressedent! We willna be fooled again!
If our Power grid a necessity? Of course, unless you really want to go back to the 1800s. But if you asked most Americans to live in that era they would die. Can the control of the grid be protected? Yes, but any control platform that you are not in the same room with, is vulnerable to someone gaining access to the controls. Can we protect against EMP? Yes, if we know exactly WHEN to turn of all the power to all devices in the EMP footprint area. Can we shield everything against EMP impact? Yes, but you don't want to pay for that TV, Radio, refrigerator, or microwave once it has been EMP hardened. And you probably don't even want to have to pick any one of these items up, unless you lift weights for a living. Can we protect against physical attacks on the grid? No. Too much of the hardware is exposed and accessible by the really determined. "Close" works in horseshoes and hand-grenades, and transmission towers that are leaving a distribution station. You don't have to fight your way in to blow up the station. Just go away from the distribution station a few miles and take down the towers, that will do exactly the same thing other than destroying the machinery with in the station. And if you do enough of those attacks you will ultimately bring the entire grid down for an extended period of time. Millions upon millions will die of exposure, starvation, dehydration, etc. And Millions will be killed in the fighting over what little electric power generation is left.