October 21, 2021



Power Sector: Electricity authority plans test bed to tackle cyber threats, sets up task force

Drawing nearer to moderate security weaknesses of force gear and frameworks, the Central Electricity Authority (CEA) has set up a team that will detail testing guidelines and systems, and recognize necessity of foundation upgradation, by making a different proving ground for network protection in power area.

A proving ground is a confined environment where different investigations can be directed without influencing the whole set up. “This proving ground is being made for network protection consistence testing. We will likewise do occasional testing to alleviate security weaknesses of force hardware and frameworks,” said a senior government official, on the state of secrecy. The CEA, which is the peak strategy warning body in the power area, set up the team on December 28, 2017.

As indicated by the authority, the public authority is yet to designate a financial plan for the proving ground as the entire cycle is as yet in primer stage. “This team comprises of an authority each from Central Power Research Institute, Bureau of Indian Standards, NTPC Ltd, Power Grid Corporation of India Limited, Standardization Testing and Quality Certification, National Critical Information Infrastructure Protection Center and

Force System Operation Corporation Limited,” he added.In the wake of the Wannacry ransomware assaults last year, the CEA had cautioned of dangers to savvy network frameworks in the nation and an “critical” need to create a digital protection structure to address security needs in the nation’s force area. The Wannacry ransomware assault in May 2017 had influenced PCs and frameworks in 150 nations, including India after which, the Ministry of Power had requested that the CEA establish a board to talk about different issues like “network protection issues in the force area”. The Central Electricity Authority panel presented its report on July 19, 2017.

The CEA’s report suggested new “testing norms” for power utilities, the making of a “proving ground” at Central Power Research Institute (CPRI), adjusted obtainment rules for hardware utilized in power utilities and security reviews of all Supervisory Control and Data Acquisition (SCADA) frameworks and Energy Management Systems (EMS).

“However India in beyond couple of years has created specialized guidelines for assessing network protection/digital assaults, there is an apparent absence of safety incorporated into the shrewd matrix frameworks. Further, the system for data sharing on network safety occurrences should be created. Given the weaknesses in the activities of the force framework gadgets, including present practices followed, fostering a various danger interruption discovery framework is the need of great importance,” expressed the CEA’s report, named ‘Digital protection in Power System’.

“Digital and actual security dangers represent a critical and developing test to electric utilities. In contrast to conventional dangers to electric lattice unwavering quality, like outrageous climate, digital dangers are less unsurprising and thusly more hard to expect and address. This requires a pressing need to create a network safety system and administrative reaction to address the particular security needs of the force area in India,” the CEA’s report expressed.

Subsequent to presenting the report, the CEA, on August 11 last year, likewise gave the force service a show on network protection. Through its report, the CEA educated the Power service that two sub-advisory groups at the Bureau of Indian Standards (BIS) have been chipping away at “draft norms” to improve digital protection.