Cyber Security in Systems and Solutions

Our systems and solutions: Seamless Cyber Security

  • media title1

    Increased networking of systems, standardization of communication protocols and operating systems, driven by savings in infrastructure costs and increase in operations efficiency, make digitalized power grids more vulnerable to cyber-attacks.

    But cyber security is not only a technical topic. Cyber security needs a comprehensive and holistic approach for the integration of systems. It needs well educated people, defined integration processes and a state-of-the art technology.

    For substation automation systems, the realization of security functions is subject to a number of constraints like availability requirement, expected 24/7 operation without interruptions and or long life- time of components.

    Considering these constraints, implementing these systems must be in line with the requirements of the international industrial security standards IEC 62443-2-4 and IEC 62443-3-3. All cyber security measures must follow basic cyber security design principles of defense-in-depth, the need-to-know principle and the holistic approach.

    A secure project integration covers several steps:

    • Analysis of technical customer requirements

    • Consideration of customer policies

    • Secure implementation

    • Verification and validation in FAT (factory acceptance test) and SAT (site acceptance test)

    • Secure handover to the customer

    • Security services to keep the system up-to-date

    This approach is also in line with national guidelines like BDEW Whitepaper (Bundesverband der Energie- und Wasserwirtschaft) in Germany or and NERC-CIP (North American Electric Reliability Corporation, Critical Infrastructure Protection) and supports the customer to meet local regulatory requirements.