RSS Alerts

Related Links

  • Detica
  • HP
  • Elsevier Ltd is not responsible for the content of external websites.

Related Stories

  • Watt matters – smart electricity grids security
    The IT industry needs to pay more attention to the electricity grid in the near future. Simon Perry, principal associate analyst with Quocirca, explains why looking at the concept of smart grids
  • Infosecurity Europe: President Obama's Blackberry revealed
    The guys on the Blackberry stand at the Infosecurity Europe show weren't willing to talk specifically about it, but it looks like the White House has taken delivery of a custom Blackberry smartphone for President Obama.
  • What’s in store for 2010?
    The Noughties are behind us now, but memories of a decade of data breaches will continue to haunt the infosec professional. If only there was a way of knowing what the threat landscape would look like in the months to come. Well you’re in luck as Davey Winder has dusted off the crystal ball and spoken to a broad church of infosec professionals to get some informed predictions for 2010
  • Information security goes green
    Green IT has gone mainstream. The last year has seen corporations such as Citigroup establishing their environmental credentials by opening green data centres. But how do the separate disciplines of green IT and information security come together? Robin Arnfield reports
  • Smart energy meters securely meet WiFi
    It looks as though the smart energy meters that energy companies in the UK and US are committed to installing in the years ahead will be WiFi-enabled, as the ZigBee Alliance and the WiFi Alliance are linking up.

News

HP develops security audit assessments for smart energy grids

05 October 2009

Hard on the heels of widespread reports about smart energy meters and their grids being vulnerable to hacker attacks, HP has launched a security audit for smart grid services.

Announced at HP's Executive Energy Conference 2009 in Budapest late last month, the HP Smart Grid Security Quality Assessment (SGSQA) service is aimed at utility companies and smart grid operators.

According to HP, the service is based on existing security audit methodology the company has used internally for over six years to test its own software and hardware in sectors such as defence.

As a result, HP says, the methodology is both mature and sophisticated.

Ian Mitton, HP's worldwide director of utilities, said that there is a lot of concern about the security in this field.

"Recent successful hacking attempts against some smart meter technology had led some energy company's to reconsider the security aspects of the technology", he said.

"That has caused a lot of concern in the market and this is our response to that."

HP said that its new security service is currently being trialled with three utility companies, two of which are in the US. Early reports suggest that the security audit works in multi-vendor environments.

As reported in the UK press this last week, plans to install gas and electricity smart meters in every home by 2020 pose a "national security risk" because the devices could be hacked into.

In a weekend report in the Daily Telegraph, one of the government's own data security consultants has warned that the smart meters could "be programmed to cripple the national grid or to steal valuable household data, breaching the privacy of millions."

Ian Watts, head of utilities with Detica, the data security firm, was quoted in Saturday's Telegraph that there are already around 40 million smart meters in use worldwide and, "even at this early stage, we have seen a number of security breaches."

"These have included insecure meters, hacking of customer details, denial of service attacks and suspected infiltration by foreign intelligence services."

According to Detica's Watts, the utilities network has been defined by the government as a key part of the critical national infrastructure.

"The impact of any large-scale power cut could not only put lives at risk but be potentially paralysing for the economy. Whilst there are many potential benefits of smart meters that justify their introduction, we must be aware it also brings new risks and should therefore 'design in' security from the outset to guard against this", Watts said.


 

 

This article is featured in:
Business Continuity and Disaster Recovery Compliance and Policy Internet and Network Security Malware and Hardware Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Copyright © 2010
Elsevier Ltd. All rights reserved.
Terms & Conditions | Privacy | Website Design Working with water