Coverage on National Commision on Grid Resilience’s (NCGR) Latest Report

The following is press coverage on the NCGR’s new report, courtesy of UtilityDive.com.

 

Dive Brief:

A new report from the National Commission on Grid Resilience (NCGR) calls for declassifying and giving utilities greater access to information about threats facing the United States’ electric system, to better protect critical infrastructure and communicate the extent of the risk to the public and decision-makers.

The report recommends Congress develop a new independent agency staffed by cybersecurity and defense experts, and “a profound overhaul of the communication of classified threat information to utilities.”

The call for greater information sharing with the electric industry is not new, but security experts questioned the need for a new federal agency when similar work is already being done by the Electricity Subsector Coordinating Council (ESCC) and NERC’s Electricity Information Sharing and Analysis Center (E-ISAC).

 

Dive Insight:

There is some risk in declassifying threat information, experts concede, as it may tip off foreign adversaries to the electric sector’s defense capabilities and the United States’ information gathering processes. However, as attempts to disrupt the power grid become more sophisticated, NCGR’s analysis views this as a necessary tradeoff to better inform the industry of the growing threat.

“This is a national security threat, but it’s not widely recognized by the American people. And even the people who should be charged with protecting us from it, often don’t get the information they need,” retired General Wesley Clark said Thursday at a public virtual event unveiling the commission’s recommendations.

Clark is an NCGR commissioner, along with former Republican Rep. Darrell Issa from California; Kevin Knobloch, a former DOE chief of staff who is now president of Anbaric offshore wind development entity New York OceanGrid LLC; Gueta Maria Mezzetti, a former member of the Pentagon’s Energy Security Executive Council; and several others. The group is chartered and supported by Woodstar Labs, a non-profit technology and analysis firm owned by Associated Universities Inc.

The report includes nine recommendations and calls for federal lawmakers to direct the Department of Energy (DOE), Department of Homeland Security (DHS) and the Director of National Intelligence to “establish a central clearinghouse and decisional node for communicating full and accurate threat information to bulk power system operators and electric utilities.”

Congress should establish a National Resilient Grid Authority to help test for and protect against electric system vulnerabilities, according to the report. The new agency would be independent and staffed by rotating appointments of security experts from both the private and public sector, the group said.

Clark said the government needs to build on the current Cybersecurity Risk Information Sharing Program (CRISP), which is a collaboration between the E-ISAC, DOE and the Pacific Northwest National Laboratory.

CRISP disseminates threat information, Clark said, “but it’s not fast enough, and it’s not detailed enough to take responsive action.”

DOE did not respond to requests for comment on CRISP’s capabilities.

NERC, in an emailed statement, said that timely and actionable information sharing “are essential to grid security,” and said it works with E-ISAC to”operate a full suite of products and services designed to provide threat intelligence and coordination to North American utilities on a range of cyber and physical security threats.”

Along with CRISP, those tools include NERC alerts, All Points Bulletins and Critical Broadcast Program calls. NERC and E-ISAC communications with utilities “focus on sharing security threats and mitigations in near-real time,” a spokesman said in an email.

But according to Clark, DOE, DHS and and industry entities “need expanded powers” to “name and shame” hostile actions and attack attempts, with an emphasis on the frequency of intrusions.

“I know this risks indicating how much we know about adversaries, but it’s a risk we have to take as a nation because we’ve got to get the American people and our private sector institutions to understand what we’re up against,” Clark said.

Security experts agree the need for threat information sharing is essential, but questioned the efficacy of a new federal agency and warned there can be danger in providing the industry with too much data.

Any communication overhaul should leverage existing self-governance mechanisms within the industry, including ESCC and E-ISAC, said Shawn Wallace, vice president of energy at IronNet Cybersecurity. That approach is endorsed by the NCGR recommendations, but Wallace balked at creation of a new federal agency.

“We do not need a new group or federal agency to step into this function when the E-ISAC is already performing this role in the sector,” he said in an email. He agreed with calls for real-time information sharing networks and action tools that “reach directly into system control rooms.”

“In order to meet the future threats, information sharing needs to be automated and real time,” Wallace said. “Utilities don’t need more information, they need better resolution on the information that’s already out there. …If they’re taking in too much information it can become diluting and they’ll struggle to get value from it.”

The call to more quickly disseminate threat information to the utility sector is not new. Last year, NERC President and CEO Jim Robb called for the federal government to accelerate the declassification of industry-relevant information regarding cybersecurity threats and consider broadening the availability of security clearances for the energy sector.

Other NCGR security recommendations include development of a nationwide network of resilience-focused microgrid test beds, changes to both on- and offshore transmission planning and a strategic reserve of grid transformers and other critical infrastructure.

Article by UtilityDive.com’s Robert Walton.

 

In Other News…

VLA Helps Astronomers Make New Discoveries About Star-Shredding Events

New studies using the VLA and other telescopes have added to our knowledge of what happens when a black hole shreds a star, but also have raised new questions that astronomers must tackle.

Radio Telescope is So Powerful it Can See the Surface of Other Worlds

Get ready for close-up surface images of distant planets in our solar system.

Next Generation VLA Endorsed by Canadian Panel

The Canadian Astronomy Long Range Plan 2020-2030, a report on priorities and recommendations for Canadian astronomy over the next decade, has recommended that Canada support the National Radio Astronomy Observatory’s (NRAO) proposed Next Generation Very Large Array (ngVLA), saying the new facility will enable transformational science across many areas of astrophysics.

The ITL Expects to Create 35 Businesses Between the Third and Tenth Year of Operation

The former Minister of Energy, Ricardo Raineri, who also has a long career as a professor and university researcher and international consultant, was appointed by the American consortium Associated Universities Inc. (AUI) as Director of Development and responsible for executing the installation stage from the Institute of Clean Technologies (ITL).

This Insane Picture of The Moon Was Actually Taken From Earth

A test of a powerful new space imaging instrument has given us a gloriously detailed new perspective of the Apollo 15 Moon landing site.

Successful Test Paves Way for New Planetary Radar

The National Science Foundation’s Green Bank Observatory (GBO) and National Radio Astronomy Observatory (NRAO), and Raytheon Intelligence & Space conducted a test in November to prove that a new radio telescope system can capture high-resolution images in near-Earth space.

The Very Large Array: Astronomical Shapeshifter

In order to study a wide range of astronomical phenomena, the VLA has several shapes or configurations, each with its own advantages.

ALMA Takes First Step Toward Return to Service

Personnel at the Atacama Large Millimeter/submillimeter Array (ALMA) in Chile have begun the process of returning the facility to an active observational status, following the shutdown caused by COVID-19 in March of 2020.

Adam Cohen, president of the entity that won the Corfo tender: “Our goal is to generate between 25 to 50 new companies in 10 years”

With the focus on putting the Clean Technologies Institute (ICTL) into operation soon is the Associated Universities, Inc. (AUI), the entity that won the Corfo tender that is being questioned by another of the consortiums that was in competition.

CORFO Selects AUI to Build and Manage the Chilean Instituto de Tecnologías Limpias

Santiago, Chile—On January 4th, the Corporación de Fomento de la Producción de Chile (CORFO) Council met to award the Chilean Instituto de Tecnologías Limpias (ICTL) construction, management, and operations to AUI.

You are now leaving AUI

You will be redirected to the related partnering organization's website.

You will be redirected to
in 4 seconds...

Click the link above to continue or CANCEL