Christine Rosinger

Security by Design for the Smart Grid: Combining the SGAM and NISTIR 7628

Within this contribution, a first approach of using the European Smart Grid Architecture Model (SGAM) in the context with the NISTIR 7628 is presented. Research in the current state of the art has shown that both models and methodologies have their particular impact, but have not yet been put into a mutual context. Another reason combining these models is the possibility for US smart grid experts to re-use the SGAM model and its benefits, and vice versa encourage the European stakeholders to use the particularly useful security analysis framework from NIST. Within this paper, we briefly introduce both methodologies, their strengths and fallbacks, and outline the very necessity to make them interoperable and, therefore, aligning them. Finally, the logical interfaces framework from NISTIR 7628 is mapped onto the SGAM and its planes, domains and zones, bridging the gap for the experts for security analyses.

Smart Grid Security: IEC 62351 and Other Relevant Standards

Security is not only relevant for the operation of the Smart Grid as a critical infrastructure but also very important for user acceptance. This especially affects domains like Smart Metering especially in the part of privacy issues. Many different standards exist in the IEC TC57 portfolio, among them standards especially designed for end-to-end security. Additionally international security standards like ISA 99 or the NERC CIP standards were developed and will be discussed here. Furthermore this chapter describes an overview on previous attacks in the energy domain, existing solutions and security standards, and also insights on security metrics and patterns.

Standards in the Electro Mobility Domain—Vehicle 2 Grid

The domain of electromobility extends the topic of the Smart Grid by another large consumer, but also adds storage possibilities. Therefore it is necessary to create a new infrastructure of loading points. The communication is not limited between loading points and the vehicle, but there is also a communication between loading point and the distribution network. Additionally there are many different scenarios possible, whereas the loading point also communicates with EMS/DMS. These chapter addresses the aforementioned points and give further information and possible solutions in terms of communication standards.

Aligning IT Architecture Analysis and Security Standards for Smart Grids

In this paper, an approach using the European Smart Grid Architecture Model (SGAM) in the context of the NISTIR 7628 is presented. Research has shown that both models and methodologies have particular impact, but have not yet been put into mutual context. The combination of these models makes it possible for US Smart Grid experts to reuse the SGAM model and its benefits, and vice versa, European stakeholders are encouraged to use the security analysis framework from NIST. Within this paper, we briefly introduce the methodologies including their strengths and fallbacks. We outline the necessity to make them interoperable and aligning them. Finally, the logical interface framework from NISTIR 7628 is mapped onto the SGAM and its planes, domains and zones, bridging the existing gap. In addition to those results, we outline the need for a future integration with a maturity model for security assessment and point out a roadmap and preliminary results.

Glaubwürdigkeit in dynamischen Wirkleistungsverbünden

ZusammenfassungVertrauenswürdigkeit kann ein Schlüsselfaktor für die Entscheidungsfindung im Rahmen agentenbasierter Systeme sein. Im vorliegenden Beitrag soll die Vertrauenswürdigkeitsfacette Glaubwürdigkeit, die das frühere Verhalten von Agenten innerhalb von Verbundbildungsprozessen an Elektrizitätsmärkten abbildet, betrachtet werden. Diese Facette dient Agenten im Rahmen von Verhandlungen als Kriterium, um über die Kooperation mit anderen Handelspartnern zu entscheiden. Schwerpunkt dieses Beitrags ist ein Konzept zur Berechnung und Verwendung der Facette Glaubwürdigkeit, die einen Teil eines Vertrauensmodells für ein agentenbasiertes Verbundbildungssystem darstellt. Das Vertrauensmodell soll als ein Sicherheitsmechanismus für den Schutz der kritischen Infrastruktur Energie dienen.

Informationssicherheit im Smart Grid

Dieses Kapitel widmet sich dem Thema Informationssicherheit fur Smart Grids und insbesondere der Absicherung einer Architektur auf Basis der im vorherigen Kapitel beschriebenen ERA. Hierfur wird ein Vorgehensmodell zur Herausstellung relevanter Sicherheitsaspekte beschrieben. Im ersten Abschnitt 4.1 folgt zunachst die Einfuhrung einiger Begriffe aus dem Umfeld der Informationssicherheit, die im Vorgehensmodell Verwendung finden. Danach wird ein Vorgehensmodell in Abschnitt 4.2, das fur die Absicherung der in Kapitel 3 beschriebenen Referenzarchitektur ERA verwendet wird. In Abschnitt 4.3 wird abschliesend die Anwendung des Vorgehensmodells anhand von Beispielen aus der ERA erlautert.