Cybersecurity

There have been many reports of cyberintrusions, hacking, and malicious attacks on the electric power system. One vulnerability that has drawn substantial discusssion is the Aurora vulnerability. This paper discusses the vulnerability, how it is implemented, what the risk factors are, who is vulnerable, and what steps will mitigate this risk.

• Myth or Reality – Does the Aurora Vulnerability Pose a Risk to My Generator? 
• Mitigating the Aurora Vulnerability With Existing Technology 

SEL strongly urges all critical infrastructure sectors to apply good security practices broadly to protect assets from information system attacks (cyberattacks). The following are ten tips that offer sensible, practical, and proactive steps to reduce the risk of attacks.

•  Download Ten Tips for Improving the Security of Your Assets 

SEL security products are designed to support everyone who works to make power reliable while enhancing the usability and simplicity of the overall system operations. We understand the need for high availability and real-time access to critical operations. Our devices are scalable and interact with IT infrastructure. Good security and compliance aren’t born out of regulation, but from foresight, planning, and good security practices.

• Download Cybersecurity Solutions From SEL 

SEL security devices ensure supervisory control and data acquisition (SCADA) systems will not fall victim to disgruntled insiders, network hackers, or even cyberterrorism. SEL security solutions are compatible with existing SCADA communications protocols and have little impact on data flow.

Cybersecurity devices must be compatible with existing SCADA communications devices and protocols, such as data radios and modems using DNP3 or Modbus^® protocols. Also, SCADA cybersecurity devices must not interfere with data flow on control and/or monitoring systems.

SEL devices secure SCADA systems by authenticating and logging users as well as encrypting and authenticating data on a wide variety of industrial and commercial applications. SEL rigorously tests the operation of its security devices with various SCADA devices and protocols, resulting in designs that have little or no impact on data throughput. SEL wireless and serial encrypting transceivers assist users in securing their infrastructure.

SEL provides real-world, hands-on cybersecurity training to help customers comply with NERC cybersecurity requirements, teaching them to implement strong electronic access controls in SEL relays and communications products. Participants learn how to identify and mitigate possible attacks and to assess real threats and risks to power system security.

Use these posters to emphasize the importance of good security practices in your offices, substations, and control centers. SEL designed these posters to deliver a short, actionable message, and we will add additional posters with new messages in the future. Pick your favorite image and the most important messages to your company.

NERC-CIP-004-2 R1 states that, “The Responsible Entity shall establish, document, implement, and maintain a security awareness program….” One of the requirement’s suggestions includes posters that communicate a security message. We hope that these posters are helpful to you and your organization.

• View the available posters
• How Would We Know?