7 Comments

Summary:

Science fiction writers speculate that robots will eventually take over our networks, but conspiracy theorists say our current grid is under attack from foreign hackers—conspiracy theorists and high-level intelligence officials that is, according to the cover of the National Journal. The article alleges that Chinese paramilitary […]

Science fiction writers speculate that robots will eventually take over our networks, but conspiracy theorists say our current grid is under attack from foreign hackers—conspiracy theorists and high-level intelligence officials that is, according to the cover of the National Journal. The article alleges that Chinese paramilitary hackers were responsible for two massive U.S. blackouts. The theory had enough credibility for former CIA Director-turned-venture-capitalist James Woolsey to ask a panel of energy experts what is being done to secure the grid at the Google/Brookings plug-in electric vehicle conference in Washington this month. Video of Woolsey’s question and the panel’s response below.

So just how secure is our grid? Does making our grid smarter and more interoperable increase our risk? The panel’s moderator, Thomas Friedman, pointed out that our current grid’s inefficiencies are theoretically preventing mass disruption. But the shift to IP-based, smart-grid services leverages all of the security technologies that have been developed in the IP space. Still, industry sources echo the panel’s response and say Woolsey’s is an “extremely legitimate question.”

Silver Spring Networks CTO Raj Vaswani , who was not on the panel, tells us that “IP networks are decades ahead of any proprietary solutions.” But he concedes that securing the grid is different from securing Internet services. “The threat model is extremely complex because you’ve got devices sitting out in the field potentially for years with no physical security.”

Vaswani says this isn’t suddenly a new issue with the smart grid becoming a hot topic. “It’s wrong to think we’re secure now and installing these services would somehow make us less secure,” Vaswani adds. “The truth is, we’re not that secure now, but it’s been less of concern since currently most of the grid has only a fairly limited amount of networked control.”

While the Administration has never officially said China had anything to do with the blackouts, DOE representative Andy Karsner laid out what he saw as the potential of such attacks in terrifying terms:

“This isn’t the cyber-hacking that you think of just for passwords. This is the capacity to destroy hardware in your home, at airports, at military bases, your car, if its connected through the grid.”

But it’s getting better. As Sue Tierney, Managing Principal at Analysis Group, pointed out, the trend toward distributed generation is making the grid harder to take down. With more solar panels on individual roofs and cars soon plugging into the grid to push and pull electrons, the importance and vulnerability of central substations decreases. “The sky definitely isn’t falling,” Vaswani says. “And if we are doing this right, we’ll be shoring it up.”

  1. [...] so we asked some smart grid startups. The threat is real, they say, and the solution is IP. Continue reading at Earth2Tech and watch [...]

    Share
  2. Excellent post and scary information. I just finished a post a few days exploring the potential threats hackers pose compared to the relatively minimal threats of people like the shoe bomber.

    As a Phoenix resident it’s amazing to think how devastating both in cost of lives and economy the complete loss of power to the greater Phoenix area’s 6 million residents for 2 days would cause.

    It really puts the media hyped terrorism threats in perspective and illustrates how most of them are complete hogwash used to manipulate the public.

    The big picture stuff – like downing the power grid, compromising the FAA’s network, etc. is pretty astounding.

    Share
  3. Pretty serious business here. It’s a common topic at Hacker conventions…
    http://www.redherring.com/Home/12117

    Share
  4. [...] a theme that Woolsey has addressed before — back in June, he asked a panel of energy experts at the Google/Brookings plug-in electric vehicle conference what was being done to secure the grid. [...]

    Share
  5. [...] Partner at VantagePoint Venture Partners, adviser to GridPoint, and focused on security and the smart grid [...]

    Share
  6. [...] potential consequences of cyber attacks on a digital power grid could be similarly frightening. Andy Karsner said back in 2008, when he was with the Department of Energy: “This isn’t the cyber-attacking that you [...]

    Share
  7. [...] potential consequences of cyber attacks on a digital power grid could be similarly frightening. Andy Karsner said back in 2008, when he was with the Department of Energy: “This isn’t the cyber-attacking that you [...]

    Share

Comments have been disabled for this post