RIUNIONE ESPLORATIVA PER UNA
CANDIDATURA ITALIANA
ALL’INIZIATIVA EUROPEA ERN-CIP
CYBERSECURITY
ENEA – Lungotevere Thaon di Revel, 76 –
ROMA
Esperienza maturata in ERSE
G. Dondossola
ERSE – Dpt. Sviluppo Sistema Elettrico
9 Luglio,
2009
Background
Testbeds Sistemi RT
•
•
•
Periodo: 20 anni
Settore: elettrico
Aree di attività
Risk
Assessment
Automazione
SCADA
Cyber
Security
1. Specifiche formali, Validazione e Verifica
Sistemi Real Time
2. Sistemi Distribuiti, Reti di comunicazione, Architetture ICT
Automazione Stazione e Sistemi SCADA
3. Performance, Dependability, Cyber Security
CIIP
4. CIIP - Risk Assessment
5. CIIP - Testbeds
2
Critical Information Infrastructure Protection – CIIP
Infrastructures owned/operated/used by Power Utilities
Fundamental to national and international
Security
Economy
Quality of life
PCS – ResTest
Lab
PCS – ResTest
Lab
PCS – ResTest
Lab
PCS - ResTest
CESI RICERCA
http://crutial.cesiricerca.it
FP6-2004-IST-4-027513
Critical Utility InfrastructurAL Resilience
communication
network
electricity
grid
CRUTIAL is a RTD Project in the area of Critical Information Infrastructure Protection launched by the European Union under the Information
Society Technologies priority of the Sixth Framework Programme.
The project addresses new networked ICT systems for the management of the electric power grid, in which artefacts controlling the physical
process of electricity transportation need to be connected with information infrastructures, through corporate networks (intranets), which are in
turn connected to the Internet.
CRUTIAL’s innovative approach resides in
modelling interdependent infrastructures
attempting at casting them into new architectural patterns
resilient to both accidental failures and malicious attacks
Objectives
Work Packages
 Investigation of models and
architectures that cope with openness,
heterogeneity and evolvability endured
by electrical utilities infrastructures
WP1 Identification and description of
Control System Scenarios
 Analysis of critical scenarios which ICT
faults provoke serious impact on the
controlled electric power infrastructures
WP3 Testbed development
 Evaluation of distributed architectures
enabling dependable control and
management of the power grid
WP2 Interdependencies modelling
WP4 Architectural solutions
WP5 Analysis and evaluation of Control
System Scenarios
WP6 Dissemination
WP7 Management
8
Standards
•
•
•
•
NERC, IEC, IEEE, NIST, ISA
IEC 62351 - TC 57 WG 15 – Network Security, Protocol Security
ISA WG4 TG5 – Security Metrics
Cigrè – WG D2.22 – Information Security
1.
2.
3.
4.
5.
6.
Å. Torkilseng, S. Duckworth: "Security Frameworks for Electric Power Utilities Some Practical Guidelines when developing frameworks including SCADA/Control
System Security Domains", Electra, No. 241, December 2008.
G. Dondossola: “Risk Assessment of Information and Communication Systems Analysis of some practices and methods in the Electric Power Industry”, CIGRÉ
Electra, No. 239, August 2008.
M. Tritschler, G. Dondossola: “Information Security Risk Assessment of Operational
IT Systems at Electric Power Utilities”, Paper D2-01 D03, Cigré D2 Colloquium,
October 21-22, 2009, Fukuoka, Japan.
A. Bartels, L. Piètre-Cambacédès, S, Duckworth: “Security Technologies Guideline –
Practical Guidance for Deploying Security Technology within Electric Utility Data
Networks”, Electra, No. 244, June 2009.
L. Piètre-Cambacédès, T. Kropp, J. Weiss, R Pellizzonni: “Cybersecurity standards for
the electric power industry – a survival kit” – Paper D2-217, CIGRÉ Paris Session
2008, France
G. Ericsson, A. Bartels, D. Dondossola, Å. Torkilseng: “Treatment of information
security for electric power utilities – progress report from Cigré WG D2.22” Paper
D2-213, Cigré Paris 2008 Session, France
Cyber Risk Assessment Tools
11
Exploitation
• at industrial level
– To support the sector industry – decision processes and technological
development - with security know-how
– To set-up and experiment realistic attack scenarios
– To mitigate the vulnerabilities of the standard application protocols (e.g. IEC
60870-6, IEC 60870-5-104, IEC 61850)
– To facilitate the development of cyber security standards, guidelines and
practices for industrial usage (e.g. NERC,, IEEE, NIST, ISA, IEC 62351 under
development by the WG15-TC57)
– To assess the capability of secure and redundant architectures to tolerate the
threat hypotheses
– To develop advanced technological solutions and tools
– To offer a cyber security testing infrastructure for advanced SCADA,
automation and control systems
– To support risk assessment with statistics from experiments
– To support on-line security analysis with monitoring, detection and recovery
modules
• at research level
– To feed in model based evaluations with experimental measures
Sicurezza Infrastruttura Elettrica
Sicurezza Elettrica 
Piani di difesa
flessibili/integrati/
multioperatore
Esercizio Sistema
Elettrico 
Risk Management
Linee di difesa stratificate 
controlli stratificati
Protezione ICT
13