You can’t have it both ways

June 8, 2009
I attended the inaugural meetings of IEEE P2030 - Smart Grid, last week in Santa Clara. I had a discussion with a representative from a utility organization. He feels his constituency is too small to be governed by electric industry cyber security standards. He feels they will disconnect if they are mandated to meet these standards. On the other hand, the reason he was in Santa Clara is because his constituency is moving heavily into Smart Grid which requires you to be connected.

"
I attended the inaugural meetings of IEEE P2030 - Smart Grid, last week in Santa Clara. I had a discussion with a representative from a utility organization. He feels his constituency is too small to be governed by electric industry cyber security standards. He feels they will disconnect if they are mandated to meet these standards. On the other hand, the reason he was in Santa Clara is because his constituency is moving heavily into Smart Grid which requires you to be connected. If you look deeper, this approach is scary. The utilities his organization represents are city-owned which range from very small to the city of Los Angeles. At the Senate Energy hearings several weeks ago, it was pointed out that New York City is also excluded from the NERC CIPs. Has NERC or the affected utilities informed their mayors and city councils they aren’t important in maintaining electric reliability because the NERC CIPs said they weren’t? There is only one utility I know that is doing the right thing- addressing cyber security to maintain electric reliability for their customers independent of the NERC CIPs. You can’t have it both ways. If you want to be connected, you MUST meet cyber security standards. Joe Weiss

Sponsored Recommendations

IEC 62443 4-1 Cyber Certification – Why ML 3 is So Important

The IEC 62443 Security for Industrial Automation and Control Systems - Part 4-1: Secure Product Development Lifecycle Requirements help increase resilience for control systems...

Multi-Server SCADA Maintenance Made Easy

See how the intuitive VTScada Services Page ensures your multi-server SCADA application remains operational and resilient, even when performing regular server maintenance.

Your Industrial Historical Database Should be Designed for SCADA

VTScada's Chief Software Architect discusses how VTScada's purpose-built SCADA historian has created a paradigm shift in industry expectations for industrial redundancy and performance...

Linux and SCADA – What You May Not Have Considered

There’s a lot to keep in mind when considering the Linux® Operating System for critical SCADA systems. See how the Linux security model compares to Windows® and Mac OS®.