QoS and NERC CIP Compliance
13
Smart Grid Communication Networks: QoS and NERC CIP Compliance Presenter: Jayant Deshpande Network Performance and Reliability Department Bell Labs Alcatel-Lucent June 10, 2010 Contributors: Ahmet Akyamac, Ken Budka, Andrew McGee
Transcript of QoS and NERC CIP Compliance
Smart Grid Communication Networks:
QoS and NERC CIP Compliance
Presenter: Jayant Deshpande Network Performance and Reliability DepartmentBell LabsAlcatel-LucentJune 10, 2010
Contributors: Ahmet Akyamac, Ken Budka, Andrew McGee
2 June 10, 2010
Presentation Outline
• Smart grid Applications
• Integrated communication network architecture for smart grid
• Quality of Service (QoS) to support smart grid application performance
• Compliance with North American Electric Reliability Council (NERC) Critical Infrastructure Protection (CIP) requirements
3 June 10, 2010
DistributionSubstation
Transformer
(Bulk)Power Generator Transmission Lines
Feeder
From Traditional Power Grid to Smart Grid
SmallHydro
Storage
Car Charging Station
CHPUPS
Storage
UPS
(Hierarchy of)Micro grids
4 June 10, 2010
Pushto
Talk
SCADASCADA
DistributionAutomation
Teleprotection
Pushto
Talk
Mobile Workforce
Data
Video
Pushto X
Utility EnterpriseApplications
Voice
Data
Video
VideoSurveillance
ElectricVehicles
AutomatedDemandResponse
SynchrophasorsSmart Metering (AMI)
MicrogridManagement
Smart Grid Applications: A Few Examples
and many other
and many other
5 June 10, 2010
Application Requirements (Qualitative)
ApplicationData Rate /
Data Volume(at endpoint)
(One way) Latency
AllowanceReliability Security
Smart Metering Low/V. Low High Medium HighDistribution Automation Medium/Low Low High HighTeleprotection High/Low V. Low V. High V. HighOther Operations data Medium/Low Low High HighSynchrophasors (Phasor Meas. Units) High/Medium V. Low High High
Automated Demand Response (ADR) Medium/Medium Low High High
Electric Vehicles (eg PHEV) Medium/Medium Low High High
Micro Grid Management (between EMSs)
High/Low Low High High
Mobile Workforce (push to talk) Low/Low Low High High
Mobile Workforce (real time video) High/Medium Medium High High
Enterprise data Medium/Low Medium Medium MediumEnterprise Voice Low/V. Low Low High MediumVideo Surveillance High/Medium Medium High High
A few other significant application characteristics• Generally upstream data volume larger than downstream• Application requirements may be different (from the table above) during incidents (eg, emergency load control)
6 June 10, 2010
Power Station(Large, Traditional)
Distributed Alternate Renewable Power Generation(eg, PV, Wind, Bio mass, Tidal, Microturbines)
Meter Data Man. Sys.
Voice/Data/Push to X Systems
SCADAMan. Sys. …
Utility Data and Control CenterExtranet
ConnectivityEMSRTO / ISO
Wire
less
Acc
ess
Net
wor
k
Wire
line
Acce
ss N
etw
ork
Neighborhood Area Network
Power Line Communication NetworkHAN / (enterprise) LAN
MeterMeter
Building (Residential, Business, Industrial, Other)
Distributed EnergyResources
Utility “Pole”
Vehicle(PEV, PHEV)
SCADA Meter Concentrator
Essential
StorageStorage
Vehicle ChargingStation
MobileWorkforce
Distribution Man. Sys.
Video Surveillance
if present if present if present
BillingSystem
Voice/Data
Utility Office
Micro GridEMS
StorageStorage
Substation
SCADA Meter Concentrator
…Protection CCTVVoiceData
SCADAMan. Sys.
EMS
if present
EMS
(IP/MPLS) Core Network
PV
PMU
WAMSMan. Sys.
Communication Network Architectur for Smart Grid
7 June 10, 2010
One or more network-specific adapters, gateways, etc
Transmission Line PLC Feeder PLC NAN Wireless
Access NetworkWireline
Access Network
CoreNetwork
Substation
Router
Add
ition
al p
t-to-
pt
netw
ork(
s)fo
r tel
epro
tect
ion
MeterConcentrator CCTV
ADR Management
System
Data
Voice…EMSPMUProtectionSCADA
ManagementSystem
SCADA
Substation automation LAN(of station bus and process bus)
…
“Gat
eway
”
Traffic Concentration at a Substation
Distributed Alternate Renewable Power Generation(eg, PV, Wind, Bio mass, Tidal, Microturbines)
Storage
MobileWorkforce
(Voice/Data)Vehicle Charging
StationMicro Grid
EMSUtility “Pole”
SCADAPVMeterMeterMeterMeter
(Adjoining )Substations
Distributed Alternate Renewable Power Generation(eg, PV, Wind, Bio mass, Tidal, Microturbines)
StorageStorage
MobileWorkforce
(Voice/Data)Vehicle Charging
StationMicro Grid
EMSUtility “Pole”
SCADAPV
Utility “Pole”SCADAPV
MeterMeterMeterMeterMeterMeterMeterMeterMeterMeterMeterMeter
(Adjoining )Substations
Smart Grid Elements In the Neighborhood of the Substation
Egress DiffServ treatmentfor traffic from a largenumber of applicationswith a wide variety of
latency and performancerequirements
8 June 10, 2010
Conventional Application Classification May Not Be adequate
Dec
reas
ing
Prio
rity
Network Control
Teleprotection
PMU (Class A Data Service)
PTT Signaling (incident-related)
Smart Metering(access many meters in a short time)
SCADA (poll response)
VoIP bearer (including PTT)
VoIP signaling (including some PTT)
PMU (Class C Data Service)
On demand SCADA
Smart Metering(periodic meter reading)
Critical enterprise/operation data
Non-critical enterprise/operations data
Active ADR
Best Effort Data
Video
Smart Grid Application Priorities
Network Control
VoIP bearer
Critical data
VoIP Signaling
Video
Non-critical data
Best Effort Data
Typical Data Network Application Prioritiesand QoS Classes
Class 1
Class 4
Class 3
Class 2
New QoS paradigm may be needed
9 June 10, 2010
NERC CIP Requirements: Reference Architecture
routable protocol (ie, IP)
Bulk Power Station(Transmission) Substation
ESP(Electronic Security
Perimeter)
(Utility) Data and Control Center
P
D
T
LANLA
N
LAN
MeterMeter
Collector RTU IED ; and other smart grid elements
CommunicationNetwork
Critical Cyber Assets (CCA) must be enclosed within an ESP; and thus be subject to NERC CIP requirements
10 June 10, 2010
NERC CIP Requirements Compliance with Non-Routable Protocols
routable protocol (ie, IP)
Bulk Power Station(Transmission) Substation
ESP(Electronic Security
Perimeter)
(Utility) Data and Control Center
CommunicationNetwork
(supporting eg,VPWS, VPLS)
P
D
T
LANLA
NLAN
MeterMeter
Collector RTU IED ; and other smart grid elements
non-routable protocol
S
C
Q
(Current) exemption from NERC CIP requirements: Systems using non-routable protocols allowed to be outside the ESP
11 June 10, 2010
routable protocol (ie, IP)
Bulk Power Station(Transmission) Substation
ESP(Electronic Security
Perimeter)
(Utility) Data and Control Center
P
D
T
LANLA
NLA
N
MeterMeter
Collector RTU IED ; and other smart grid elementsMeterMeter
Collector RTU IED ; and other smart grid elements
CommunicationNetwork
(Preferably MPLS-based)
Cyber Security Threats* to Bulk Electric System
• Unauthorized access to information
• Unauthorized modification or theft of information
• Denial of service• Repudiation/
unaccountability
• Denial of service• Repudiation/
unaccountability
• Denial of service• Repudiation/
unaccountability
* IEC TS 62351-1
12 June 10, 2010
Security Compliance Level using ITU-T X.805 Security Standards
Mandatory Security
Optional Security
ComplianceOut of Scope
31%
26%
41%
13%10%
24%
29%
8%
0.00
20.00
40.00
60.00
80.00
100.00
120.00
140.00
31%
26%
41%
13%10%
24%
29%
8%
0.00
20.00
40.00
60.00
80.00
100.00
120.00
140.00Access Control
Authentication
Non-Repudiation
DataConfidentiality
CommunicationSecurity
DataIntegrity
Availability
Privacy
13 June 10, 2010
www.alcatel-lucent.com
