Enhancing control systems security in the energy sector NSTB SANS SCADA SUMMIT 2008 Control Systems Security in the Energy Sector Hank Kenchington U.S. Department of Energy
Enhancing control systems security in the energy sectorNSTB
SANS SCADA SUMMIT 2008
Control Systems Security in the Energy Sector
Hank KenchingtonU.S. Department of Energy
Control Systems are critical to our Nation’s economy, health and safety, and quality of life
Natural Gas PipelinesCrude Oil Pipelines
Sources: Canadian Association of Petroleum Producers & North American Electric Reliability Corporation
Electricity Interconnections
VisionIn 10 years, control systems for critical applications will be designed, installed, operated, and maintained to survive an intentional cyber assault with no loss of critical function.
VisionIn 10 years, control systems for critical applications will be designed, installed, operated, and maintained to survive an intentional cyber assault with no loss of critical function.
Roadmap – framework for public-private collaboration
•
Industry-driven
•
Near, Mid, and Long-term
•
Public-Private Working Group to coordinate implementation
•
ieRoadmap - enables implementation (hosted on pcsforum.org)
Key Strategies and Selected Milestones
Develop andIntegrate Protective
Measures
Detect Intrusion & Implement
Response StrategiesSustain SecurityImprovements
Sustain SecurityImprovements
Measure and Assess Security
PostureMilestonesMilestones MilestonesMilestones MilestonesMilestones MilestonesMilestones
50% of asset owners & operators performing self-
assessments of their control systems using consistent criteria (2008)
Fully automated security state and common response of control system networks (2015)
Secure connectivity between business systems and control systems within corporate network (2009)
Secure control system architectures produced with built-
in, end-to-end security (2015)
Cyber incident response is part of emergency operating plans at 30% of control systems (2008)
Self-configuring control system network architectures are in production (2015)
Compelling, evidence-based business case to increase private investment in control system security (2007)
Cyber security awareness, outreach, and education programs integrated into energy sector operations (2015)
Public-private Working Group to coordinate Roadmap implementation
Electric SectorCoordinating Council
Oil & Natural Gas SectorCoordinating Council
Government Coordinating Council for Energy
CIPAC
Energy Sector Control
Systems Working Group
Critical Infrastructure Partnership Advisory Council
NisourceEl PasoBP
AmerenCanada -
ISOEntergyCenterpoint
ieRoadmap – “weapon of mass collaboration”1
•
On-line Roadmap Mapping Tool
•
Hosted by Process Control Systems Forum (PCSF)
•
>70 projects mapped by 10 organizations
www.pcsf.org/roadmap
Facilitates collaboration and measures progress
1“Wikinomics, How Mass Collaboration Changes Everything”, Tapscott
and Williams
DOE National SCADA Test Bed
Key Program Areas•
Assess energy control systems vulnerabilities/ develop mitigation recommendations
•
Outreach and awareness•
Integrated Risk analysis•
Develop advanced,
secure control systems technologies
Purpose: Support industry and government efforts to enhance cyber security of control systems
in energy sector
…established 2003
INL
SNL
PNNL
ORNL
ANL
“..the only reliable way to measure security is to examine how it fails”
Bruce Schneier, Beyond Fear
1.
System Assessments and Vulnerability Mitigation•
SCADA/EMS System Assessments:
Completed: ABB, AREVA, GE, Siemens In process/planned: Telvent, OSI, Siemens, ABB Consortium,
Teltone
Gauntlet Dial-up Gateway2. Outreach and Awareness
•
Vendor User Groups, training courses -
over 1,600 end-users trained•
Coordinate with Industry groups, e.g. “Mitigation techniques for NERC “Top 10”
vulnerabilities”
•
Coordinate w/other Federal agencies, President’s Council of Advisors on S&T3. Integrated Risk Analysis
•
Modeling/simulation to evaluate end-to-end cyber security effects4. Advanced Technology Development
•
SCADA Protocol Authenticator (serial)•
Open Architecture/Interoperable Design for Secure Remote Devices
(IP)•
ANTFARM•
5 new industry-led projects –
over $8MM in federal funding plus private cost-share
NSTB – Summary of Key Activities
More secure SCADA systems in energy market TODAY due to NSTB assessments
314On-Site214Test Bed -
Components239Test Bed -
Systems
PlannedIn ProcessCompletedAssessments
5 Enhanced Systems 4 Enhanced Systems in development 5 Patches (addressing 5 issues) 2 New Perimeter Architectures 21 Installations of One Vendor’s Upgraded Systems 45 Asset Owner Requests for Proprietary Assessment
Reports 82 System Applications Using Downloaded Software Patches
MARKET OUTCOMES:
Utility Consortium demonstrates commitment to cyber security
ABB Consortium to Fund Advanced SCADA Security ResearchHouston, Texas, December 11, 2007
The consortium partners, represent 45 million customers across the U.S. and Australia and include:
• Austin Energy• Detroit Edison• Indianapolis Power & Light Company• ITC Transmission• Kansas City Power & Light Company (KCP&L)• LCRA• New York Independent System Operator (NYISO)• Snowy Hydro Limited• Tri-State G&T Association, Inc.
Industry-led consortium will work with DOE National SCADA Test Bed at Idaho National Laboratory.
U.S. National
Risk
Consequence of InterestSystem ImpactsScenario EffectsPlausible Threats
Threat to Consequence Risk ModelThreat to Consequence Risk Model
Threat Cyber Effects Systems Impact Consequence Risk- Actors/Attack
method- Asset identification
- Vulnerability- Motivation
- Confidentiality- Integrity- Availability- Kinetics (bombs)
- Power Flow- Pipeline Flow
- Local- Regional- National
- Economic- Public Health- Trust in Govt- Safety- Environmental
PossibleThreats
Threat Cyber Effects Systems Impact Consequence Risk- Actors/Attack
method- Asset identification
- Vulnerability- Motivation
- Confidentiality- Integrity- Availability
- Power Flow- Pipeline Flow
- Local- Regional- National
- Economic- Public Health- Trust- Safety- Environmental
Framework for Conducting Control System Cyber Security Analysis Framework for Conducting Control System Cyber Security Analysis
IdentifyThreats
Evaluate impact on
control system
Evaluate physical impacts
Evaluate impact on other CI
Assess and quantify the Risk
Virtual Control Systems Environment
Graphical User
Interface
Communication Network Simulator
(OPNET, Qualnet, NS-2)
Simulated Process
Electric Power
Control System Simulator & Device Model Library (e.g.,
PLC)
Visualization Tools for rendering of system-
under-study data
Information Probe
Information Flow
Communication Path
Hardware-in-the-
Loop
Software Library: Visual simulation tools; PCS devices and network modelsHybrid Simulation Library: hardware component interfaces; emulated devicesAnalysis Library: Analysis and result visualization toolsPower Simulation Library: static and dynamic power models
VCSE VCSE ToolTool--BoxBox
Hybrid Control System Simulation Test Bed
•
Passive network discovery tool to developed by Sandia National Laboratories
•
ANTFARM input –
a database containing network information, including node relationships
•
ANTFARM output –
graphical depiction of the network for easier understanding of the networked system topology.
A|N|T|F|A|R|M
Advanced Network Toolkit For Assessments and Remote Mapping
Recently awarded DOE projects to support Energy Roadmap
1. Hallmark Project -
commercialize Secure SCADA Communications Protocol (SSCP)
-
Schweitzer Engineering Laboratories, Pacific Northwest National Laboratories, CenterPoint Energy
2. Detection and Analysis of Threats to the Energy Sector (DATES) – IDS (network, host, and device level), event correlation framework, and a sector-wide, distributed, privacy-preserving repository of security events for participants to automatically contribute without attribution -
SRI International, ArcSight, Sandia National Laboratory, end-user
(tbd)
3. Audit and Attack Detection Toolkit -
extend capability of existing vulnerability scanning tools (e.g., Nessus et al) to evaluate SCADA security configuration (supports compliance with NERC CIP-005 and CIP-007) and develop templates for a security event monitoring system by mining data in PI Systems -
Digital Bond, Tenable Network Security, OSIsoft, Constellation Energy, PacifiCorp, TVA
4. Lemnos
Interoperable Security Program -
conduct testing, validation, and outreach
to
increase the availability of cost-effective, interoperable security solutions for IP-based communications; foster development and acceptance of standards -
EnerNex Corp., Schweitzer Engineering Laboratories TVA, Sandia National Laboratory
5. Protecting Intelligent Distributed Power Grids against Cyber
Attacks -
develop risk-based critical asset identification system; an integrated and distributed security layer including security agents, distributed security switched managers, and security managers and an optimization technique to establish
the best topology for networking the security components -Siemens Corporate Research, Idaho National Laboratory, Rutgers Center for Advanced Energy Systems
Recent NSTB reports (see NSTB CD)...stop by NSTB booth and pick up your own copy!
•
Measure and Assess Security Posture•
Categorizing Threat: Building and Using a Generic Threat Matrix (SNL)•
Threat Analysis Framework (SNL)•
Security Metrics for Process Control Systems (SNL)•
Develop and Integrate Protective Measures •
Secure SCADA Communication Protocol Performance Test Results (PNNL)•
AGA 12, Part 2 Performance Test Results (PNNL)•
Secure ICCP Integration Considerations and Recommendations (SNL)•
NERC 2007 Top 10 Vulnerabilities/Mitigations (NSTB)•
Security Framework for Control System Data Classification and Protection (SNL)
•
Detect Intrusion and Implement Response Strategies•
OPSAID Initial Design and Testing Report (SNL)•
Sustain Security Improvements•
Framework for SCADA Security Policy (SNL)•
Impacts of IPv6 on Infrastructrure Control Systems (SNL)
Visit Website for more info
•
Roadmap to Secure Control Systems in the Energy Sector
•
ieRoadmap (web-based tool)•
System Testing and Assessments•
21 Steps to Secure Control Systems•
Lessons Learned from Cyber Security Assessments of SCADA/EMS Systems
•
Cyber Assessment Methods for SCADA Security
•
A Summary of Control System Security Standards Activities in the Energy Sector
www.oe.energy.gov/randd/css.htm
Hank Kenchington
US Department of Energy
202-586-1878www.oe.energy.gov/randd/css.htm
Enhancing control systems security in the energy sectorNSTB
For more info contact: