Wednesday, June 16, 2010

Homeland Security: It may be impossible to protect the North American grid against catastrophic events

It may be impossible to protect the North American grid against catastrophic events
Published 14 June 2010

Making sure the North American grid continues to operate during high-impact, low-frequency (HILF) events -- coordinated cyber and physical attacks, pandemic diseases, and high-altitude nuclear bomb detonations -- is daunting task; the North American bulk power system comprises more than 200,000 miles of high-voltage transmission lines, thousands of generation plants, and millions of digital controls; more than 1,800 entities own and operate portions of the system, with thousands more involved in the operation of distribution networks across North America

Power distribution point // Source: arstechnica.com

Can North America keep the lights on during a catastrophe? This is what a public-private report released last week pondered when it weighed the perfect storm — the risks associated with coordinated cyber and physical attacks, pandemic diseases, and high-altitude nuclear bomb detonations on North America’s power system.

According to the 120-page report (.pdf) issued by the U.S. Department of Energy and the North American Electric Reliability Corporation, these high-impact, low-frequency (HILF) events could “cause long-term, catastrophic damage to the bulk power system.”

Matthew Harwood writes that the report is the summary of a November 2009 closed workshop that brought together approximately 110 attendees from government and the electric sector to discuss HILF threats and how public-private partnerships can address them.

The ability of the government and the electric sector to coordinate and develop mitigation strategies to address HILF events is a daunting problem considering the sheer size of the sector.

“The North American bulk power system is comprised of more than 200,000 miles of high-voltage transmission lines, thousands of generation plants, and millions of digital controls,” the report states. “More than 1,800 entities own and operate portions of the system, with thousands more involved in the operation of distribution networks across North America.”

Discussing an issue that transcends threats to the bulk power system, the report notes that government and the electric sector must get better at sharing information, especially when it goes to the government sharing information with industry.

“The sector is heavily reliant on information from the public sector for each risk discussed in this document,” adds the report.

Harwood notes that of all the threats, the report seems to take the risk of a coordinated attack most seriously. “The consequences associated with a coordinated cyber and/or physical attack could result in the physical damage or destruction of critical assets, such as generators, substation components, and large transformers,” the report warns. “If conducted on a large enough scale, it is possible that the bulk power system could not recover in its present form, but would need to be restored in islands or using rotating outages where enough equipment was still available to operate the system.”

While the report notes a coordinated attack has never occurred, the reality behind protection efforts must heighten DOE and NERC’s concerns: there really is not any.

“Perhaps the first step to adequate mitigation is the acknowledgment that fully protecting the system from a coordinated attack is not possible.” The bulk power system is simply too big with too many vulnerabilities to protect.

No comments:

Post a Comment