Grid Security And Cyber Defense Cannot Fall On Deaf Ears, Experts Warn

The following is press coverage on the NCGR’s new report, courtesy of Forbes.com.

If the electrical grid is knocked out for long periods, the damage to the American economy would be insurmountable. And the country’s enemies know that. That is why its brain trust is dedicated to insulating the transmission network from both physical and cyber-attacks. 

The National Commission for Grid Resilience just laid out its blueprint to prepare the country for 21st Century combat — including the kind from afar and from behind a keyboard. Power companies are on guard and they are developing robust systems that can continue to generate and deliver power if attacked. Most, if not, all are participating in exercises that simulate mock assaults. The aim is to be proactive — to anticipate what moves the enemy might make. But it is a never ending battle with each side is always trying to one-up the other. 

“The idea that the Russians would use cyber attacks on the grid did not exist” in the 20th Century, says Darrel Issa, a former congressman and now a co-chair on this grid commission. “We later found that Osama bin Laden wanted to take down grids.” Issa, who spoke last week an event hosted by the Center for Strategic & International Studies, said that the focus has been on hurricanes and earthquakes. But in recent times, the experts have learned that more insidious events such as cyber attacks and invisible viruses can wreak havoc. 

The commission, dedicated to securing the grid, is comprised of General Wesley Clark, Norm Augustine, Dan Poneman, Kevin Knobloch, Adam Cohen and Rep. Issa. Among their recommendations are to ensure that the threats are widely understood by the utilities that must allocate scarce resources to these causes — ones that have a low probability of occurring but also ones that have a high consequence if they do occur. 

To that end, innovations need to be rapidly advanced and they need to be paid for by using public-private resources. The need is simply too great to depend on private investors who think short term and who are concerned about quarterly returns. Utilities should be able to recoup their outlays associated with resilience, the commission says, just as they do for all other capital expenses. The grid is a national asset. But with 500 separate grid owners, it is too hard to coordinate. As such, Congress needs to get involved and there must be a central repository upon which utilities, grid operators and safety experts can share information. 

 

Team Effort:

“The grid has evolved over many years — not from a clean sheet of paper,” says Commissioner Augustine. “There are a number of vulnerabilities. And most of the grid is owned and operated by the private sector. So the government has an important role to play by providing incentives to defend against those threats.”

The financial value stretches from preserving human life to maintaining the integrity of critical infrastructure. Consider that complex interdependency of utility systems: A loss of power can also take out the drinking water system, the wastewater facility and the communications infrastructure. For those reasons, the use of distributed assets such as onsite power generation with microgrids can provide protections.

The “bulk” electric grid is a fat target for two reasons. First, it’s a critical economic asset. A single brownout can cost as much as $10 billion, which comes in the form of direct losses as well as lost opportunities, estimates the Federal Regulatory Commission. Second, the grid is vast: Altogether, there are about 5,800 major power plants and 450,000 high-voltage transmission lines in the United States.

And because the system is now connected to the outside world through the Internet, it has become subject to evermore attacks.

Weather events are one matter. But cyber and physical assaults are another. Federal law enforcement has identified ways in which bad actors can plant malware and go on “phishing” expeditions to gain access to remote transmission networks. And it started around 2016 and it drew a lot of suspicions when the Kansas-based Wolf Creek Nuclear Operating Corp. got hacked in 2018. Russia is said to be behind the assault — a move similar to what it also, allegedly, did in 2015 to Ukraine’s network, which caused a lot more damage.

In one 48 month period, for example, 1,131 actual attacks occurred, with 159 of those successful, reports the Energy Department’s Joint Cybersecurity Coordination Center. Because electricity is “wheeled” across the country, any assault could reverberate. Altogether, the electrical transmission network serves more than 300 million people and it is comprised of 200,000 miles of wires

Consider PG&E Corp., which operates in the heart of Silicon Valley — home to America’s high tech sector: Masked gunmen burst into a substation and started firing automatic weapons that destroyed 17 transformers six years ago. PG&E is fighting back by bridging its information technology department with its operations unit, meaning that those who are responsible for securing the company are communicating closely with those who keep the lights on. 

 

High Priority:

The questions before U.S. lawmakers are over how to pay for these protective measure and whether the potential steps should be voluntary or mandatory.

Power companies, which prefer a voluntary approach, are already supposed to certify with the Federal Energy Regulatory Commission that they have developed robust systems that can continue to generate and deliver power if attacked. To comply, they are describing their potential risks based on historical accounts. More than 200 utilities and several government agencies have participated in emergency drills to simulate prolonged blackouts from both physical and cyber-attacks.

Duke Energy DUK -1.1% and Xcel Energy XEL -0.3%, which have been frequent targets of hackers, are allocating billions toward grid modernization. Grid operations are being protected, for example, by frequent password changes as well as by periodic patches to firewalls and upgrades. But it’s a constant chess match. Setting priorities by identifying high-value assets and then restricting access is a good start, all while ensuring employees are well-trained and well-vetted.

“A priority for the next administration should be for the United States to build a more secure and resilient power grid,” says General Clark. “To keep our nation powered and our electric companies informed, we must overcome the lag in communication between the intelligence community and power companies.”

History has shown that utilities know how to defend against natural catastrophes. But it is an open question on whether they can protect against more nefarious actions. To give the country a fighting chance, the National Commission for Grid Resilience has outlined its defense that will be presented to the next administration — something that the commissioners caution cannot fall on deaf ears.

Article by Forbes.com’s Ken Silverstein.

 

In Other News…

2022 AUI Scholarship Recipients

Below are the six recipients of the 2022 AUI Scholarship conducted by International Scholarship and Tuition Services, Inc. These students will each receive an award of $3,500 per year to aid in defraying expenses at the college or university of their choice. ELIJAH...

Astronomers Reveal First Image of the Black Hole at the Heart of Our Galaxy

This news article was originally published on NRAO.edu on May 12, 2022.Credit: EHT CollaborationAt simultaneous press conferences around the world, including at a National Science Foundation-sponsored press conference at the US National Press Club in Washington, D.C.,...

Scientists Find Elusive Gas From Post-starburst Galaxies Hiding in Plain Sight

This news article was originally published on NRAO.edu on Apr. 25, 2022.Scientists discovered that post-starburst galaxies condense their gas rather than expelling it, begging the question: what’s actually keeping them from forming stars? Post-starburst galaxies were...

Applications Accepted for 2022 Astronomy in Chile Educator Ambassadors Program

Applications are now being accepted for the 2022 Astronomy in Chile Educator Ambassadors Program (ACEAP).

Inspiring, Retaining and Promoting Female Talent in STEM Careers

Retaining and promoting female talent in science, technology, engineering, and mathematics (STEM) is a goal that must be embraced by large scientific facilities, civil society, academia and the private sector.

NRAO Researcher Receives Prestigious Engineering Award

Matthew Morgan, a scientist and research engineer at the National Radio Astronomy Observatory’s Central Development Laboratory, has received a prestigious engineering award for work that has beneficial applications far beyond its original purpose in radio astronomy.

Big Astronomy Hosts Live Talk and Q&A with Astronaut Dr. Sian Proctor

On Friday, February 4 at 7:00 pm EST, join astronaut, geoscientist, explorer and space artist Dr. Sian Proctor for a live talk and Q&A hosted by Big Astronomy.

NRAO Director Tony Beasley Honored as Lifetime AAAS Fellow

Tony Beasley, Director of the National Radio Astronomy Observatory and AUI Vice President for Radio Astronomy Operations, was today elected as a fellow of the American Association for the Advancement of Science (AAAS).

Stanley Whittingham on development in Chile: “Perhaps in 15 years they will no longer have internal combustion vehicles”

This news article was originally published on FUTURO360.com on Jan. 19, 2022.The chemist referred to encouraging the production of clean energy in order to stop the damage that has been caused during the last 30 years, which has encouraged global warming. In addition,...

28 WOMEN in STEM BECAME the FIRST GENERATION of PROVOCA MENTORS

As the end of 2021 approaches, we celebrate the certification of 28 women in STEM who became the first generation of PROVOCA mentors, a trained group of professionals and students in science, technology, engineering and mathematics that will provide mentoring to girls and young college students who decide to pursue a career in these disciplines.

You are now leaving AUI

You will be redirected to the related partnering organization's website.

You will be redirected to
in 4 seconds...

Click the link above to continue or CANCEL