CRSP – MC Customer meeting Welcome to the CRSP Annual Customer Meeting May 23, 2017 11:00 am – 3:00 pm The meeting will begin at 11:00 am MDT We have logged on early for connectivity purposes Please stand-by until the meeting begins. Please remember to keep your phone muted unless you have a question or comment. Handout Materials https ://www.wapa.gov/regions/CRSP/rates/Pages/rates.aspx 1
118
Embed
Welcome to the CRSP Annual Customer Meeting May 23, 2017 ... › regions › CRSP › rates › Documents › ... · Welcome to the CRSP Annual Customer Meeting May 23, 2017 11:00
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
CRSP – MC Customer meeting
Welcome to the CRSP Annual Customer Meeting
May 23, 201711:00 am – 3:00 pm
The meeting will begin at 11:00 am MDTWe have logged on early for connectivity purposes
Please stand-by until the meeting begins.Please remember to keep your phone muted unless you have a
Cyber Security updateDawn Roth Lindell, Senior Vice President and Chief Information Officer
May 23, 2017CRSP Management Center, Annual Customer Meeting
Subject, Office or event
WAPA Blocks by Country for April
24CRSP-MC Customer Meeting
Subject, Office or event
WAPA Blocks by Country- April exclude US
25
Source Geographic
Country/Region
Count
United States 1141425China 162962France 64807Bulgaria 64007Germany 41076Russia 39390Hong Kong 36723United Kingdom 31663Canada 28287Czech Republic 27161India 22296Republic of Korea 21554Vietnam 9960
CRSP-MC Customer Meeting
Subject, Office or event
WannaCry Ransomware, May 12, 2017
• What?• Worldwide attack• 200,000+ victims in 150 countries• Encrypts all data on the system, pay to unlock it
• How?• Phishing, visiting infected websites• Worm – spread using Eternal Blue, leaked NSA exploit• Infected machine scans subnet• Sends same exploit to all other
vulnerable machines
26
Source: “WannaCrypt Malware Analysis” reported on Blueliv.com on 5/15/2017
CRSP-MC Customer Meeting
Subject, Office or event
WannaCry Ransomware, May 12, 2017
• Who?• Perpetrators are likely North Korean• Hardest hit – Russia, Taiwan, Ukraine, India• Anyone with outdated, unsupported or pirated versions
of MS Windows
27CRSP-MC Customer Meeting
Subject, Office or event
What can we learn?STOP. THINK. Connect.Four part cybersecurity plan• Predict – perform exposure analysis• Prevent – deploy defensive solution to reduce
attack surface• Detect – monitor infrastructure for intrusion,
suspicious activity• Respond – identify how attack happened,
impact on system, remediation
28
Source: “Ransomware made you Wannacry? 10 things the Disaster Taught” by Cigniti.com on 5/21/2017
CRSP-MC Customer Meeting
Subject, Office or event
What can we learn?STOP. THINK. Connect.• Open attachments with extreme caution• Do not take fake tech support calls• Use robust anti virus protection• Keep everything patched and updated• Clean the system of old stuff• Dependable back up needed
29CRSP-MC Customer Meeting
Subject, Office or event
2016 Key Attacks
30
Security Week, Verizon’s Data Breech Digest, “Attackers Alter Water Treatment Systems in Utility Hack: Report”, reported in 3/22/16 Security Week by Eduard Kovacs
• Unnamed Water UtilityDiscovered during a vulnerability
assessmentHacktivist IP address connected to
payment systemStole 2.5 million customer records
Accessed SCADAAltered water flow & treatment chemical
ratio
CRSP-MC Customer Meeting
Subject, Office or event
How?• Online connection to payment systemExploited a known vulnerability
• Poor architectureSame IBM AS/400 for financial &
operational tech systems• Old OT technology• At least 4 separate connections in prior
60 days
31
Verizon’s Data Breech Digest “Attackers Alter Water Treatment Systems in Utility Hack: Report”, reported in Mar. 22, 2016 Security Week by Eduard Kovacs
CRSP-MC Customer Meeting
Subject, Office or event
2016 Key Attacks
March 24, 2016• Bowman Avenue Dam in Rye, NY, attacked
by IraniansDid not gain control Did gain access to process/network diagrams
32
Tripwire Site Article, “3 ICS Security Incidents that Rocked 2016 & What We Should Learn from Them”, Oct. 31, 2016, reported by David Bisson
CRSP-MC Customer Meeting
Subject, Office or event
2016 Key AttacksAugust 2016• Operation Ghoul Uncovered by researchers at Kaspersky Lab 130 victims- Navy, other military, aerospace, petrochemical,
machine industries
• Spear-phishing campaign targeting industrial organizations in the middle east Email appeared to come from Emirates NBD (a bank) Came with Hawkeye (malware) or with a linkCollects keystrokes, clipboard data, other data
33
Tripwire Site Article, “3 ICS Security Incidents that Rocked 2016 & What We Should Learn from Them”, Oct. 31, 2016, reported by David Bisson
CRSP-MC Customer Meeting
Subject, Office or event
How?• Exploit the human –
spear phishing• Commercial off the
shelf malware
34
Tripwire Site Article, “3 ICS Security Incidents that Rocked 2016 & What We Should Learn from Them”, Oct. 31, 2016, reported by David Bisson
CRSP-MC Customer Meeting
Subject, Office or event
2016 Key AttacksOctober 21, 2016• Attack on Dyn- Internet infrastructure company• Provides critical tech services to Twitter, Amazon,
Tumblr, Reddit, Spotify and Netflix among others• DDOS• Mirai Malware
35
Krebs on Security, “Hacked Cameras, DVRs Powered Today’s Massive Internet Outage”, October 21, 2016, by Brian Krebs
CRSP-MC Customer Meeting
Subject, Office or event
How?
Mirai Malware via the internet• Creator released source code• Looks for IoT with factory default
usernames/passwords DVR’s Cameras- especially with components from
XiongMai Technologies Password is hardcoded into the firmware- web
credentials• Gains access, uploads DDOS flood
36
Krebs on Security, “Hacked Cameras, DVRs Powered Today’s Massive Internet Outage”, October 21, 2016, by Brian Krebs
CRSP-MC Customer Meeting
Subject, Office or event
How?Researchers at Flashpoint scanned the internet on Oct 6, 2016Found 515,000+ instances
with the vulnerabilityBackdoor to network
WAPA: 37 cameras with the default passwords
37
Krebs on Security, “Hacked Cameras, DVRs Powered Today’s Massive Internet Outage”, October 21, 2016, by Brian Krebs
CRSP-MC Customer Meeting
Subject, Office or event
2016 Key Attacks
December 18, 2016• Ukraine outage or UkrEnegro “North”
substation Removed 1/5 of Kiev’s energy 75 minute outage
• Note: in the last two months- 6500 Russian attempts on Ukrainian State Institutions per Ukrainian President
38
Washington Post, “Russian operation hacked a Vermont utility, showing risk to U.S. electrical grid security, officials say”, Dec. 31, 2016. Alice Crites, Carol Morello and Ellen Nakashima contributed to this report, also By Juliet Eilperin and Adam Entous
CRSP-MC Customer Meeting
Subject, Office or event
How?• Initial assessment points to cyber attackSCADA logs show “close” then “open”
commands to breakersUkraine blames Russia
39
Washington Post, “Russian operation hacked a Vermont utility, showing risk to U.S. electrical grid security, officials say”, Dec. 31, 2016. Alice Crites, Carol Morello and Ellen Nakashima contributed to this report, also By Juliet Eilperin and Adam Entous
CRSP-MC Customer Meeting
Subject, Office or event
ICS Vulnerability Analyses
• Fire Eye Analysis, Jan 2000 – April 2016• 123 vendors affected by vulnerability
disclosures 90% between 2011 – 2015
• 1,552 separate vulnerabilities
33% still not patched
40
Fire Eye, “Sight Intelligence 2016 ICS Vulnerabilities report, Overload: Critical Lessons from 15 Years of ICS Vulnerabilities” by Sean McBride, Jeffrey Ashcraft, & Nathan Belk
CRSP-MC Customer Meeting
Subject, Office or event
ICS Vulnerabilities• Study by Positive Research Center, October 2015• 146,136 ICS components web accessible• Found 691 vulnerabilities in ICS components 58% high severity 39% medium severity
• By Vendor: Siemens – 124 Schneider Electric – 96 Advantech – 51 GE - 31
41CRSP-MC Customer Meeting
Subject, Office or event
So how do we tackle these issues?
First: SANS Top 20, #1, #2• Inventory hardware• Inventory software
42
IT and OT have the same cyber security needs.
CRSP-MC Customer Meeting
Subject, Office or event
So how do we tackle these issues?Challenges:• Collaboration required- mutual respect is critical• Our OT technology is shockingly old Identify first Prioritize based on impact, simplicity of exploit, patchable?
• Embedded tech Asset list Actually embedded
• ICS vendors have been slow- we must push!
43CRSP-MC Customer Meeting
Subject, Office or event
So how do we tackle these issues?• Threat Intelligence is a must
• Need analysis continuously• Must address across industries• Must share- there is NO shame
44
APPALPPCE- ISAC
Vendor serviceWAPA pilotFBI Infraguard
CRSP-MC Customer Meeting
Subject, Office or event
So how do we tackle these issues?• Segment network• WAPA: Secure Enclave Support Center for
substations• Network considerations• Prioritize based on CIP
• Of course- separate business from SCADA• Enforce this• Educate field folks• Data transfer
45CRSP-MC Customer Meeting
Subject, Office or event
So how do we tackle these issues?
• Complete vulnerability assessmentWAPA results of our red teamOnly way to know truly where your
risk isPhysicalCyber
Visibility to InternetWAPA
- old blog site- video conferencing equipment
46CRSP-MC Customer Meeting
Subject, Office or event
So how do we tackle these issues?• Inadvertent insider Anti phishing campaignsWAPA Results
47
Campaign Sent Users who clicked
Users whocompleted training
1 33 0 N/A2 59 11 43 58 18 64 184 37 8
CRSP-MC Customer Meeting
Subject, Office or event
We, in this industry, must recognize we are:
•Vulnerable•Under attack•At risk•Responsible to harden our assets• In need of rapid information sharing
48CRSP-MC Customer Meeting
Subject, Office or event
Questions?
49CRSP-MC Customer Meeting
50
Budgets & Transparency
Date: 05/23/20172016
Dennis R. SullivanInterim Chief Financial Officer
Budgets & Transparency
• Annual budgets• FYs 17, 18, 19• Improving MOU work plan discussions• Future annual budget guidance
• HQ 10-year capital plans• FY 20 plan meeting September 12th (tentative)• Discuss projects > $1M• Regional beneficiaries participate in evaluation
• WAPA Transparency Act51CRSP-MC Customer Meeting
52
Mountain West Transmission Group Update – CRSP Customer Meeting
Date: 05/23/20172016
Parker Wicks
• Letter to LAP and CRSP Customers• Transmission Cost Shift Mitigation Update• Brattle Study Results• Argonne Results • CRSP Cost Benefit Analysis• Mitigation• Customer Meetings• Federal Register Notice
Overview
53CRSP-MC Customer Meeting
• LAP and CRSP sent letter to customers January 5th, 2017
• Outlined that Mountain West Participants intended to begin in-depth discussion with the Southwest Power Pool (SPP)
• After issuance of letter, main focus has been on discussions with SPP and working to ensure SPP understands what Mountain West is asking
• MISO and PJM may still be considered if discussion with SPP don’t prove fruitful
Letter To Customers
54CRSP-MC Customer Meeting
• Entities have been working to update the Transmission Cost Shift Mitigation Analysis
• Originally used 2013 data• Updated with 2016 data to include “Known and
Measurable” items
• As update has been finalized, has become necessary to revisit cost shift mitigation
• Entities continuing to work on revised cost shift mitigation plan
Transmission Cost Shift Mitigation
55CRSP-MC Customer Meeting
• Final Report Released to the public• Available here:
2016 Adjusted Production Cost Model – CRSP Results:
CRSP
TWh $/MWh Total ($m/yr)
Case A Case CMR∗CMR-A
Difference Case A Case CMR*C-A
Difference Case A Case CMR*
C-ADiffere
nceProduction 4.38 4.38 0.00 $1.76 $1.76 ($0.00) $7.70 $7.70 $0.00Purchases 1.28 1.28 0.00 $22.24 $21.19 ($2.19) $28.54 $25.73 ($2.81)Sales 0.18 0.18 0.00 $19.35 $18.25 ($1.10) $3.40 $3.21 ($0.19)Total 5.49 5.49 0.00 $5.98 $5.50 ($0.48) $32.85 $30.22 ($2.62)∗CMR=Coal Must Run, this modeled coal units without any additional flexibility and is more reflective of how the coal units operate today.
2024 Adjusted Production Cost Model – CRSP Results:
• More in-depth analysis of impact of market operations on CRSP
• Utilized GT Max Model and same modeling assumptions used for LTEMP EIS
• Economic dispatch vs. static schedule
• Showing a cost to CRSP from market participation• Driven by two aspects
• Revenue from sales smaller in a market• Correction to loss calculations from how Brattle modeled them
• Also looking at market costs associated with maintaining Grandfathered and Exchange Agreements
Argonne Analysis
58CRSP-MC Customer Meeting
• Currently estimating cost to CRSP is approx. $12M the first 3 years then dropping to approx. $8M in out years
• Half of this cost driven by estimated admin fees (approx.)
• Other cost driven by • Market Cost• Meter/Comm/IT upgrades• D.C. Tie Revenue Requirement• Miscellaneous Market Charges
• Still working to refine estimates of market charges for Grandfathered and Exchange Agreements
CRSP Cost/Benefit Analysis
59CRSP-MC Customer Meeting
• Due to current estimated cost, CRSP must receive mitigation in order to continue to participate
• Three aspects to current mitigation efforts:• 1 – Receive first distribution of ROTR revenue distribution for
approx. half of CRSP estimated costs• 2 – For other half of costs, establish bi-lateral agreements
with specific entities to ensure CRSP mitigated for any costs not mitigated through ROTR
• 3 – Continue to work to reduce costs where ever possible• Reduction in Admin Fee for WAPA• Working to extend Federal Service Exemption to Grandfathered
and Exchange Agreements• Any other areas discovered as analysis and discussions continue
CRSP Mitigation
60CRSP-MC Customer Meeting
• After mitigation proposal is finalized and accepted, CRSP planning to hold customer meetings
• Format still not determined – may be in person, WebEx, or combination of both
• Will need to hold meetings soon after mitigation finalized
Upcoming Customer Meetings
61CRSP-MC Customer Meeting
• After mitigation principles agreed upon, WAPA plans to issue FRN recommending LAP and CRSP pursue formal negotiations with SPP
• Planning a 45 day comment period • Conduct public meetings • Final decision will then be posted to websites and
sent out to customers• Similar to UGP process
Federal Register Notice
62CRSP-MC Customer Meeting
• CRSP Mitigation needs to be accepted• CRSP customer meetings• FRN process completed and final decision made• CRSP would begin formal negotiations with SPP• Mountain West participants would work with SPP,
SPP members and each other to draft changes to tariff
• Barring any significant issues, membership agreement could be signed Jan-Feb of 2018
• Go live – could be Spring of 2019
Next Steps
63CRSP-MC Customer Meeting
Questions?
64CRSP-MC Customer Meeting
65
SLC Office MoveTentatively September 2017
CRSP Customer Meeting
May 23, 2017
Amy Cutler
We are moving to• 299 South Main Street
Suite 200
• The “Wells Fargo” Building
• Next to Gallivan Plaza UTA Trax Station – Direct line to SL Airport
66CRSP-MC Customer Meeting
New Building and General Info
• We are reducing our footprint by 28%
• Open work environment • With hoteling concept• Multiple collaboration
areas• Likely move in date:
September 2017
67CRSP-MC Customer Meeting
Office Photos
68CRSP-MC Customer Meeting
69
Office Layout
CRSP-MC Customer Meeting
Subject, Office or eventCRSP-MC Customer Meeting
Subject, Office or eventCRSP-MC Customer Meeting
72
Asset Management Update
CRSP Customer Meeting
May 23, 2017
Amy Cutler
Asset Management 2.0• Areas of Focus
• Data Collection and Management• Risk management• Industry Trends and Market Analysis• Maintenance Technical Support• Reliability Centered Maintenance Program• Project Management
73CRSP-MC Customer Meeting
FY2017 FocusTier I Asset Analysis
• Includes transformers, breakers and T-lines• Metric – Measures Health Index (HI) and Consequence
Score• Major activity – Improve T-Line HI
AM Data Usage• Maintained risk threshold • Metric –Contingency plans• Major activity – Establish Service Request/Mitigation
plans for assets with higher consequences
74CRSP-MC Customer Meeting
FY2017 Focus ContinuedStrategic Asset Management Plan
• Additional asset classes• Reviewing asset classes with SME• Document new recommendations for improvements
Asset Life Cycle Management/Cost Analysis• Coordination and collaboration • Minimum data set required
75CRSP-MC Customer Meeting
T-Line HI condition values
Wood Steel Lattice Steel/Concrete PolePole Goat Head PoleCrossarm Arm/Bridge CrossarmBrace K Member/Window BracePole Hardware Body Extension Pole HardwareGuy Leg Member GuyAnchor Foundation AnchorInsulator Guy FoundationPhase/Conductor Anchor InsulatorVibration Damper Insulator Phase/ConductorStatic Wire Phase/Conductor Vibration DamperOPGW Vibration Damper Static WireSigns* Static Wire OPGWDistribution Apparatus* OPGW Signs*
Signs* Distribution Apparatus** Not planning on using in HI Calculations
76CRSP-MC Customer Meeting
Strategic Asset Management Plan• Additional Asset Class
Instrument Transformer Review complete Batteries – SME input received, report drafted Helicopters Switches (including Circuit Switchers and Interrupters) Transmission Lines lower Voltages (30kV to 100kV) Breakers (30kV to 100kV) Right-of-Ways (ROWs) Non-GSA Vehicles and Heavy Equipment
• Began implementing monthly release volume criteria in January 2017– Yet to implement additional scheduling requirements– ROD states it will be implemented prior to the end of the WY
• WAPA and BOR are working collaboratively on updating Operational guidelines.– Waiting to receive comments back from Reclamation and begin steps to
finalize both
CRSP-MC Customer Meeting | 81
WY 17 Spring Recap• Early season precipitation was good for all the major
basins– Created above average snowpack and inflows
• Gunnison River Basin - Aspinall Units• 144% of average• Currently spilling at all three units to meet ROD targets
– Green River - Flaming Gorge Dam• Green River 236% of average
– Lake Powell - Glen Canyon Dam• 130% of average• WY17 nearly triggered equalization
CRSP-MC Customer Meeting | 82
Current 24 mo. indicates a possibility forEqualization in WY18
CRSP-MC Customer Meeting | 83
Planned Maintenance• Aspinall
– Morrow Point Station Service work July – August– Morrow Point and Blue Mesa exciter replacement in the
future – extended outage for each unit
• Flaming Gorge and Fontenelle– Standard Maintenance
• Glen Canyon– Unit #2 rewind should be finished August 2017– Unit #3 will begin August 2017 – May 2018 – last rewind
on this contract
CRSP-MC Customer Meeting | 84
Other information• Overall the energy market has been relatively stable.
– Experienced one period of a price spike in early May due to warm weather and a major unit outage on the system.
• This time last year we were being vigilant to the possibility of providing Aliso Canyon emergency assistance – Never needed to respond– Doesn’t seem to be a concern this year.
• Been working with our internal GTMax Superlite expert to get up-to-speed on monthly hydro modeling to better project seasonal purchases
Merchant Function (tab 14)$9,918 $7,954 ($1,964) -20%
Ancillary Services and Other (tab 14) $5,118 $5,145 $27 1%
Total Offsetting Annual Revenue $34,676 $34,401 ($275) -1%
Revenue RequirementsMay 2016 Update
Values in 1,000’s
115
WAPA 169 FY 2017 Change
Item 2017 Workplan 2019 Workplan Amount Percent
Rate Setting Period:
Beginning year 2016 2018
Pinchpoint year 2025 2025
Number of rate setting years 10 8
Total Expenses : $135,769 $130,836 ($4,933) -4%
Total principal payments : $48,104 $53,186 $5,082 11%
Total Annual Revenue Requirements : $183,873 $184,022 $149 0%
Less Total Offsetting Annual Revenue: $34,676 $34,401 ($275) -1%
Net Annual Revenue Requirements: $149,197 $149,621 $424 0%
Energy Sales 5,071,804 5,186,871 115,067 2%
Capacity Sales 1,407,920 1,415,675 7,755 1%
Composite Rate 29.42 28.85 -0.57 -1.9%
CRSP – MC Customer meeting
Next StepsNo Rate Action Proposed for the SLCA/IP Olmsted Rate Action to establish a rate
Each applicant who receives an allocation will pay its proportional share of the annual expenses of the Project based on their proportional share of the energy produced
Rather than pay a stated rate per kWh for energy, applicants who receive an allocation will pay their proportional share of the Project’s allocable investment and total annual OM&R expenses via an annual installment