Can cloud keep the grid secure?
- By Mark Rockwell
Cloud computing is altering the cybersecurity posture of infrastructure providers, according to Karen Evans, assistant secretary of the Energy Department's Office of Cybersecurity, Energy Security, and Emergency Response.
Speaking after CESER's Cybersecurity for Energy Delivery Systems (CEDS) program on Nov. 6, Evans said cloud adoption among infrastructure providers is growing. The volume of data from remote sensors in pipelines and energy systems has to go somewhere, said Evans, and that could be the cloud in the future.
Many utilities are looking at reducing operating costs and considering what portions of their systems they can move to the cloud. There is a distinct difference and set of concerns, said Evans, when using the cloud for administrative data and operational data for a grid system.
"Obviously you want to be able to take advantage of the efficiencies of cloud, but then [the Departement of Homeland Security] released a bulletin dealing with [threats against] managed services," she said. "CESER’s role is to get as much information out to industry about cloud security as possible.”
Some utilities are extremely cautious about moving to the cloud, however, even using air gaps, or physical separation to keep some systems separate from the public internet.
A paper presented at the CEDS conference by Argonne National Laboratory researchers outlined an ongoing project to help grid providers securely move their data to the public cloud.
The project, which began in 2016 and is slated for completion in 2021, uses Amazon Web Services' GovCloud and specialized encryption capabilities that keeps "real" operations data on local servers, while it is decrypted for optimization, then encrypted before being to be moved to the cloud, said Argonne researcher Feng Qiu.
That step, said Qiu, protects against a gap in encryption for the data that could otherwise be exploited by hackers as it is moved into commercial cloud. The technology is designed to work on any commercial cloud, and the lab plans on making it available to the industry as a straight technology transfer or offered as a software-as-a-service for grid providers, he said.
Mark Rockwell is a senior staff writer at FCW, whose beat focuses on acquisition, the Department of Homeland Security and the Department of Energy.
Before joining FCW, Rockwell was Washington correspondent for Government Security News, where he covered all aspects of homeland security from IT to detection dogs and border security. Over the last 25 years in Washington as a reporter, editor and correspondent, he has covered an increasingly wide array of high-tech issues for publications like Communications Week, Internet Week, Fiber Optics News, tele.com magazine and Wireless Week.
Rockwell received a Jesse H. Neal Award for his work covering telecommunications issues, and is a graduate of James Madison University.
Click here for previous articles by Rockwell.
Contact him at firstname.lastname@example.org or follow him on Twitter at @MRockwell4.