Slashdot Mirror

← Back to Stories (view on slashdot.org)

Smart Electricity Meters Can Be Dangerously Insecure, Warns Expert (theguardian.com)

Posted by BeauHD on from the consider-this-a-warning dept.

An anonymous reader quotes a report from The Guardian: Smart electricity meters, of which there are more than 100 million installed around the world, are frequently "dangerously insecure," a security expert has said. The lack of security in the smart utilities raises the prospect of a single line of malicious code cutting power to a home or even causing a catastrophic overload leading to exploding meters or house fires, according to Netanel Rubin, co-founder of the security firm Vaultra. If a hacker took control of a smart meter they would be able to know "exactly when and how much electricity you're using," Rubin told the 33rd Chaos Communications Congress in Hamburg. An attacker could also see whether a home had any expensive electronics. "He can do billing fraud, setting your bill to whatever he likes [...] The scary thing is if you think about the power they have over your electricity. He will have power over all of your smart devices connected to the electricity. This will have more severe consequences: imagine you woke up to find you'd been robbed by a burglar who didn't have to break in. "But even if you don't have smart devices, you are still at risk. An attacker who controls the meter also controls the meter's software, allowing him to cause it to literally explode." The problems at the heart of the insecurity stem from outdated protocols, half-hearted implementations and weak design principles. To communicate with the utility company, most smart meters use GSM, the 2G mobile standard. That has a fairly well-known weakness whereby an attacker with a fake mobile tower can cause devices to "hand over" to the fake version from the real tower, simply by providing a strong signal. In GSM, devices have to authenticate with towers, but not the other way round, allowing the fake mast to send its own commands to the meter. Worse still, said Rubin, all the meters from one utility used the same hardcoded credentials. "If an attacker gains access to one meter, it gains access to them all. It is the one key to rule them all."

23 of 163 comments (clear)

  1. Old news is still news... by Frosty+Piss · · Score: 3, Insightful

    When "smart" meters first hit the scene a few years ago, people brought up these very issues. I'm surprised that in that time they have not been addressed, though I know I shouldn't be surprised...

    --
    If you want news from today, you have to come back tomorrow.
    1. Re:Old news is still news... by Darinbob · · Score: 4, Informative

      They HAVE been addressed. They were addressed before he brought up the issues. There is more than one maker of smart meters out there, you don't judge all autos based on the Yugo, so why brand all smart meters based upon the worst ones?

      I've been in this industry for 7 years, and the way the uses "most" in every other paragraph is silly. But then you could count cheap Chinese mobile phones sold by the bucket to claim that most smart phones were poorly made, unreliable, and liable to catch fire.

      We have security penetration testers sniffing through our source code and coming up with very obscure bugs which we're required to fix before release. We've had to cajole customers into turning on security (there's a bit of fear of being locked out). Yes good security is expensive but it brings in revenue also as it's a major selling feature. It's may be easier to hack the utility's back office than to hack the meters.

      This is not to say that security is good enough. Of course, we need to do better. We need to do better at everything as far as security goes.

    2. Re:Old news is still news... by Darinbob · · Score: 2

      It's up to the utility to save you money. It does indeed save the utility money. It also gives information the utility needs which they've never had before. It used to be that they didn't even know where all the electricity went until the end of the month meter reading. They don't know when the power is out unless people phone in, they don't even know if the right voltage is getting to a neighborhood.

    3. Re:Old news is still news... by JoeMerchant · · Score: 2

      When "smart" meters first hit the scene a few years ago, people brought up these very issues. I'm surprised that in that time they have not been addressed, though I know I shouldn't be surprised...

      That's the main reason to get freaked out when something of this nature gets rolled out - it will NOT get addressed after deployment. Some serious flaws are baked in and won't be improved without an incompatible upgrade, meaning two systems deployed in parallel - who's going to pay for that? Nobody, until there is a demonstrated need.

    4. Re:Old news is still news... by tlhIngan · · Score: 3, Informative

      In this case the most obvious way to do better is not use 'smart' meters. They're not saving us any money. And without seeing that spinning wheel, I can't tell how fast I'm consuming the electricity. The old meters are secure and robust. Why try to 'fix' what ain't broke?

      Well, the reason is several.

      First, in places where there's electricity theft, smart meters allow for detection - if you measure the power consumed in a neighbourhood, the sum of the power consumed by each house should tally up. If not, then they investigate.

      As for seeing how much you consume, it's actually easy. Most meters have a "virtual wheel" or a blinking light. The virtual wheel is on the display and just moves like the old wheel does, though it is a bit smaller. If it's a light, then each blink represents a fixed unit of kWh - you need to refer to the meter to find the metrological number which tells you how much kWh each pulse represents.

      And if not that, a log into the website often can tell you your current usage. Some even sell you a device that lets you remotely monitor the meter - which can tell you your current usage, the current reading, etc.

      Most smart meters are properly designed - the reason it's a light is because the measurement board just gives a pulse every fixed kWh consumed and that's the only communications available. The electronics board tallies up the count and displays it. Hack the meter and ...? There's no connection to the measurement board - it just receives pulses.

      As for the communications options, some use a proprietary WiFi that's 802.11g-based, but at 900MHz, others are using a 3G cellular network. Others use regular WiFi. So "da evil smart meter waves" are basically cordless phones/garage door/etc (900MHz ISM shared military radar), cellphone or WiFi.

      Granted, there are probably some options used in other parts of the world - though a full power disconnect is rare because of the cost of ab appropriate contactor (usually either a liquid or gas insulated contactor) but those are usually separate devices due to cost.

    5. Re:Old news is still news... by fustakrakich · · Score: 2

      Looks like 'smart' maters are strictly for the utility's benefit, not the consumers'. Thing is, I've seen smart meters go on the fritz and start smoking, buzzing, clicking, etc, requiring a service call that will cost me hours, if not days waiting around for the guy to show up. I have yet to see a dumb meter ever do that. The 'smart' mater is not ready for prime time yet. I shouldn't need a circuit board when a simple wire winding will do. It is unnecessary complexity. And to tell the truth, electricity is so abundant and cheap to produce it doesn't need to be precisely metered anyway. We could all pay a flat rate for average consumption and the service hook up, and the utility will still make billions. All the shortages are due to nothing but a disagreement over the price *cough* Enron...

      --
      “He’s not deformed, he’s just drunk!”
  2. How on Earth by MasseKid · · Score: 3, Interesting

    How on earth is software going to make a meter explode?

    1. Re: How on Earth by Anonymous Coward · · Score: 3, Funny

      It's obvious. A hacker gets into the meter and signals it to detonate the 7 pounds of C4 which the Illuminati installs in every meter. This in turn triggers the 5 tons of high explosive the Trilateral Commission buries under every house. Which triggers the 3 nukes buried in each city block by Obama's secret UN army. 7, 5, 3, these are Prime numbers so it must be true.

    2. Re: How on Earth by JimMcc · · Score: 2

      Sir, I award you one internet as first prize. Unfortunately the Freemasons subverted the process before the award could be issued.

  3. O RLY? by ColaMan · · Score: 4, Informative

    So, a house fire traced back to a faulty meter means that they can be 'hacked to literally explode'. Excellent extrapolation there guys.

    Smart meters may - or may not - have a relay to control loads on a different tariff than the usual "always on 24/7" one. They may possibly be hacked to turn this relay on - or off, making them a bit of a nuisance.

    But explosions? Or house fires even? A bit hard to believe.

    --

    You are in a twisty maze of processor lines, all alike.
    There is a lot of hype here.
  4. What The Fuck?? by Anonymous Coward · · Score: 4, Insightful

    An attacker could also see whether a home had any expensive electronics.

    He will have power over all of your smart devices connected to the electricity.

    An attacker who controls the meter also controls the meter's software, allowing him to cause it to literally explode.

    How did this kind of chicken-little the-sky-is-falling FUD make its way onto Slashdot?

    You should be ashamed for posting this "article".

    1. Re:What The Fuck?? by bidule · · Score: 2

      I don't know, but I think he forgot to take his pills.

      --
      ID: the nose did not occur naturally, how would we wear glasses otherwise? (apologies to Voltaire)
  5. Re:Would the Rust programming language help? by guruevi · · Score: 3, Interesting

    Insecurity of these devices is not something the language used to program can fix. Whether it's in Rust or in C, you can write very insecure code on any platform, Rust just tries to prevent common mistakes in C so buffer overflows are 'caught', Java or Objective C has similar safeguards as Rust resulting in similar problems.

    Both Perl and Ruby have very strict tainted variable constructs for example, it's almost impossible to not clean the data received from outside the program but that doesn't make your code invincible to SQL injection.

    --
    Custom electronics and digital signage for your business: www.evcircuits.com
  6. Re:Overload, really?? by Highdude702 · · Score: 3, Informative

    Thank you, Im an electrician by trade. I have had people ask me to do crazy shit.. like in tower work they want a wire going from one wall in a room to another wall in a room, the floor and ceiling is concrete. Ofcourse they dont want you to cut holes though. i have actually told customers i didnt like much, "Im an electrician not a magician" and that cant be done with out damage. i was reading the summary and wondered how in the world it could cause the meter to explode, and i cant figure out what kindof hardware setup inside could make it explode. Now on the other hand, if each leg of power has a separate contact switch, and they are controlled separately you could in theory kill alot of the electronics in a home and set ones that dont have protection on fire if they can disconnect the neutral wire only and leave the power legs on. But in most meterpanels the neutral wire is put onto a busbar that does not disconnect. or the other way would be to turn one of the legs of power off and hope for the worst, which would only effect 220V+ equipment(electric stove or oven, air-conditioner) and even then it would depend on how the device was built.

  7. I have worked on parts of power meters and this by gemtech · · Score: 4, Informative

    is a load of crap. These are state machines, typically written in embedded C. There are typically current transformers that have a large winding ratio, even if the electronics/firmware screws up there is no back driving the power line. And no relays. This guy has been watching too much Hollywood.

    --
    Insanity: doing the same thing over and over again and expecting different results. Albert Einstein
    1. Re:I have worked on parts of power meters and this by tlhIngan · · Score: 2

      is a load of crap. These are state machines, typically written in embedded C. There are typically current transformers that have a large winding ratio, even if the electronics/firmware screws up there is no back driving the power line. And no relays. This guy has been watching too much Hollywood.,

      Most smart meters are like this. They consist of two boards - a measurement board and an electronics board. The measurement board consists of current transformers and measures the current draw. It provides a pulse every fractional kWh or so. That pulse goes to the electronics board which is responsible for tallying the count, and keeping the count and communications. They also often have a way for representing the pulse to give you the "virtual wheel" or a pulsing light. The latter can be converted to kWh consumed using the metrological number printed on the meter which tells you how much kWh each pulse represents.

      Fires from smart meters is almost always caused by corroded contacts - while meters only have a 10 year calibration, most meters are never changed since the building was built and exposed to the elements. So when the house was new, the meter box was new and the meter base was new and shiny. 20 years later, they replace the electric meter and the meter base is completely corroded. Remove the old meter, plug in the new one, and there's a big resistance due to the corrosion, causing lots of heat and eventually a fire.

  8. I call hogwash by RuffMasterD · · Score: 2

    If this is so simple, and it's been an issue for years, then why not even one single proof of concept. Nobody wants to control their power bill? ISIS just waiting for the right time to kill us all? In terms of credibility this is right up there with "Hackers can turn your home computer into a BOMB... & blow your family to smithereens!".

    --
    Human Rights, Article 12: Freedom from Interference with Privacy, Family, Home and Correspondence
  9. Re:Would the Rust programming language help? by l0n3s0m3phr34k · · Score: 3, Interesting

    These devices have issues on a MUCH "higher level", SQL injections are the least of their issues. GMS, grid-wide passwords...I'm assuming no encryption at all for the signals. It looks like one doesn't even need to get into any code-specific exploits...just a 2G GSM transmitter and some protocals, and maybe a list of commands. Pull up next to someone's house, hijack the signal and probably get the meter itself to just explode.

    If properly exploited, this will be a "virtual" WMD in WWIII. A bit of code, replicated out across the tower network, once triggered could potentially start millions of simultaneous house fires across the USA, and knock out most urban power grids. A few minutes later, trigger other code at the power plants to do something similar. Like a STUXNET but aimed at the electrical grid and smart meters.

  10. Ah, no. Just no. by buss_error · · Score: 3, Insightful
    An attacker who controls the meter also controls the meter's software, allowing him to cause it to literally explode."

    .

    No. Just no. Look them up, at most what they have is remote disconnect relays with a cycle time of 30 to 120 seconds. The aren't solenoids (wire coil relays) but stall motors that move the contanctor open or closed and are not fast acting. That is their only active function. The rest are passive. So they might be able to fiddle the bill, or turn your power on and off. But make the meter explode? I've not seen any designs that would fail in that way. Admittedly, I've not seen every design, but most use a stall motor to move a spring loaded armature/contactor set open or closed.

    --
    Necessity is the plea for every infringement of human freedom. It is the argument of tyrants; it is the creed of slaves.
  11. GSM / 2G by fxars · · Score: 2

    I get that there are a lot of AMI meters out there that were installed with the old 2G protocol and should be upgraded, which probably means a meter by meter physical upgrade (though perhaps additional encryption software running over 2G could be installed in firmware, which could also take care of hard coded passwords).

    But more modern meters are using 3G or 4G, and overall security has been upgraded. The article only covers the older installs without saying that more modern meters and software have addressed the security concerns outlined in the article.

  12. Remote monitoring is insecure ... by Alain+Williams · · Score: 2

    these devices allow remote monitoring of power usage with granularity of a day or better. How hard would it be for a power company sys-admin, who is a little short of cash, to write a script to find customers who's usage had dropped by 50% or more since a few days ago ? Then sell that list to his house burglar friend who would like to know about homes who's owners might be away on holiday.

  13. Re: Sexist by Hognoxious · · Score: 2

    It's more sensible than French, where everything is either a he or a she, even if it doesn't have any gonads.

    --
    Confucius say, "Find worm in apple - bad. Find half a worm - worse."
  14. Re:Sexist by MercTech · · Score: 2

    The male gender is the default generic in English and has been so for a couple of hundred years or so. Unless you are going for fringe edge sociological theory and claiming dozens of gender pronouns; "he" is correct generic singular pronoun in formal English.

    --
    NRRPT/RCT