The power grid has vulnerabilities that can be exploited by manmade and natural events. INL plays a leading role in protecting the modern power grid from cyber and physical threats.
INL solves national challenges with technology innovations that provide intelligent sensors to enhance the resilience and security of the Smart Grid, secure control systems to reduce the threat of cyber attack, and physical devices and barriers to protect substations and transformers from geomagnetic disturbance and ballistic attacks.
The nation’s electric power grid consists of thousands of miles of high-voltage power lines, substations and distribution transformers, and millions of miles of low-voltage power lines providing electricity to homes, businesses and communities. Industrial control systems are at the heart of this network, controlling the flow of power and regulating safety and reliability.
Utilities rely on these systems to gather and communicate data on grid processes and operations and send commands to field connected devices controlling the flow of electricity. But as the power grid has evolved and new technology has been introduced, cybersecurity vulnerabilities in operational technology like control systems are an increasing concern to national security.
The Department of Energy Office of Electricity (DOE-OE) partners with INL on the Protective Relay Permissive Communication (PRPC) program to develop emerging solutions to protect the modern power grid from cyber and physical threats. One of the most important components of the electric power grid is the protective relay. When equipment fails or dangerous actions are initiated, relays protect power systems from damage. Protective relays provide protection against conditions on the power grid which could negatively affect the grid, damage equipment, or cause loss of life.
The PRPC program studies ways to transition protective relay equipment to a limited state. In a limited state, only the most essential relay functions operate. This constrained state represents an additional depth of defense of cybersecurity, while maintaining important business functions.
The Idaho National Laboratory’s (INL) Resilient Controls and Instrumentation Systems (ReCIS) Distinctive Signature is recognized as a thought leader in “resilient” control systems. Resilient systems maintain state awareness and proactively maintain operational normalcy in response to anomalies, including malicious and unexpected threats. This ReCIS focus anticipates emerging national challenges associated with the efficiency, effectiveness, and security of the Nation’s defense and critical infrastructure systems, including its wired and wireless communications networks.
ReCIS has a range of research facilities and test beds dedicated to sensors, control and intelligent systems research. The laboratory offers a variety of test beds for control system research, which can be utilized for complex evaluation of control system designs for cyber security, advanced control and operational verification and validation. >> READ MORE
Large disasters may ripple across cities, regions or even nationally through interconnected critical infrastructure systems. Right now, many of those connections are invisible, making it very difficult to put effective mitigation strategies in place. Critical links are often uncovered too late, causing greater impacts to infrastructure and challenging recovery efforts on the ground. Resilience Week is a symposia dedicated to the resilience of cognitive, cyber-physical systems. >> READ MORE
Large disasters may ripple across cities, regions or even nationally through interconnected critical infrastructure systems. Critical links are often uncovered too late, causing greater impacts to infrastructure and challenging recovery efforts on the ground.
INL develops new ways to enable decision-makers to understand the inter-connectivity and interdependencies of critical infrastructure systems. N&HS employs experts partnered with industry and government to provide response and recovery from natural and cybersecurity events for owners and operators of critical infrastructure. The lab’s expertise spans industrial control systems security, forensics and analysis.
The goal is to simplify and speed risk analysis by effectively and efficiently identifying hidden dependency risks, provide planners the ability to identify mission-critical processes and dependencies, and address contingency measures well before disaster strikes.
In collaboration with the Department of Defense, cyber and electric grid reliability researchers at INL have acquired and are using the physics-based Real Time Digital Simulator for enhancing the security of the nation’s electric power grid and related control systems including supervisory control and data acquisition systems. It allows engineers to visualize the effects of power grid failures. With 15 racks, INL has the largest installation of RTDS in the national lab system.
The ability to simulate real–time power grid information is a key factor in detecting previously unknown vulnerabilities and providing infrastructure owners and operators with a path forward for responding to grid failures. The simulator allows critical infrastructure protection specialists to predict, plan and prepare for catastrophic events.
To safeguard the public and support the Department of Energy’s (DOE) mission to ensure our energy delivery system is secure, resilient and reliable, Idaho National Laboratory operates a utility-scale electric grid test bed. The test bed is an operational, commercially fed system that provides power to INL’s key research facilities across its sprawling 890-square mile desert Site. The test bed includes: seven substations, a control center, 61 miles of 138kV transmission lines and multiple distribution circuits at 15kV, 25kV and 35kV.
Future Grid Enhancements
In 2019, INL expanded it power grid transmission and distribution network with the addition of a dedicated 16.5 mile, 138kV transmission line, equipment lay down areas, and new test pads for research and equipment testing. This additional line will be dedicated solely to conducting full-scale test experiments involving equipment such as diesel generators, transformers, gas-filled circuit breakers, switchgear, load banks, instrumentation and battery trailers. The expansion will also involve upgrades and modifications to one substation and control room additions.
INL’s cyber and controls expertise guided by intel-informed threat analysis provides unique products and capabilities. U.S. critical infrastructures that provide electrical power, clean water and other vital services to ensure our national security, lifeline services and economic prosperity are vulnerable to cyberattacks. All critical infrastructures rely on industrial control systems to serve as the command center for these vital assets.
Idaho National Laboratory has invested in the Cybercore Integration Center to advance the cybersecurity of vital cyber-physical systems through leadership, federal partnerships and research and development. The center focuses on:
Working with a broad range of private industries, government organizations, vendors and manufacturers to develop techniques and tools, INL researchers help reduce the cyber vulnerabilities found in many of the nation’s critical infrastructures.
To achieve mission success, the center combines seasoned control systems cybersecurity analysts, experienced power engineers, cyber researchers, and control systems experts to perform cutting edge analysis.
This supports national security initiatives that strengthen the security and resilience of critical infrastructure against cyberattacks.
INL cybersecurity is focused on different types of control systems and associated instrumentation, which include the devices, systems, networks, and controls used to operate and/or automate industrial processes.
INL’s nuclear security programs are fundamentally changing how the nation and world approach analysis of threats to the complex myriad cyber-physical systems.
Instrumentation and control within nuclear facilities and operations are continuously connected with information technology and wireless communications to address efficiencies, cost savings and convenience. In this digital command and control environment, the use of physical boundaries alone is inadequate to secure nuclear technology and facilities. An integrated cyber physical security approach is essential to address the resilience of the facility and continuity of operations.
INL’s nuclear and cybersecurity capabilities include:
INL’s Cybercore Integration Center is housed in an 80,000 square foot state-of-the-art facility equipped with secure office space and laboratories and leverage relationships with leading industry cybersecurity companies, universities and thought leaders to create the nation’s preeminent resource for control system cybersecurity.
As organizations integrate new technology solutions into their operational processes, their risk exposure also increases.
Consequence-Driven Cyber-Informed Engineering moves beyond the traditional focus areas of security by looking at an organization’s entire operation, securing the most essential operations and processes while simultaneously securing the technology. These frameworks expand on traditional assessments so that vulnerabilities are assessed not only in the context of a specific technology, but also how an exploited vulnerability may impact the operations and processes of the entire organization.
Testing Cyber Resilience of Operational Technology in the Energy Sector
Translating real-world cybersecurity events to protect U.S. utilities.
The Cyber Strike workshop is an example of Cybercore Integration Center actively enabling research and development of cybersecurity solutions to:
Address the nation’s lifeline infrastructure security and resilience challenges of today and tomorrow by training the nation’s critical infrastructure protection workforce, developing advanced all hazards analysis solutions, and enabling cyber defensive measures in partnership with government and industry.
INL advances the cyber resilience of critical infrastructure for the U.S. through improving and supporting cyber-physical risk analysis and risk management based on Information Technology and Operational Technology cyber defense and digital engineering practices.
AREAS OF EXPERTISE:
Given the increasing interconnections and interdependencies of systems — such as communications, power distribution and transportation infrastructure — it is essential that government agencies and industry recognize potential vulnerabilities and mitigations to protect critical infrastructure. Critical infrastructure analysis enables stakeholders to improve resilience and disaster preparation through resiliency assessment, dependency analysis and visualization, commodity and proportional flow mapping, modeling and geospatial analysis, as well as tabletop exercises and other risk management tools.
AREAS OF EXPERTISE:
The Subway System Interactive Infographic (SSII) is a visualization tool used to illustrate critical infrastructure system components, relationships, and cascading failures.
Infrastructure dependencies are visualized to help prepare for, respond to, and recover from all types of disruption.
National and Homeland Security develops and deploys training and exercises to enhance critical infrastructure security. The training and exercises are a result of an emphasis on multi-agency collaboration, partnering and sharing of experts and research facilities. This approach accelerates the maturation of technologies and methodologies from the conceptual to deployment stages; optimizes the benefits of leveraging investments in expertise, research programs and technical infrastructure; and creates effective environments for immediate information sharing of discoveries and emerging threats.
AREAS OF EXPERTISE:
AHA is a dynamic analytical framework that utilizes data about critical infrastructure to enable knowledge discovery and decision support. As the infrastructure changes, AHA is updated. The tool is used to simulate possible scenarios that might impact critical infrastructure, from natural disasters to addition of new equipment. It can identify interdependencies within the infrastructure systems and help decision-makers to understand how and where the infrastructure systems interrelate. In the past, the tool has been used in other INL research, and by state and federal government partners to guide policy decisions and to understand risk.
A virtual center to coordinate INL’s capabilities in assisting federal, state, local and private stakeholders with protecting operations from disruption.
INL’s Resilience Optimization Center tackles infrastructure resilience challenges through applying laboratory-wide capabilities and expertise. The center leverages 70 years of innovation; federal, state, local, private industry, and academia partnerships; unique research facilities; and 500+ multi-disciplinary experts from an unbiased federally funded research and development center. These offer a unique, shared perspective about inhibitors to future resilient infrastructure ecosystems, including the right balance of technology, economics and policy.