Conclusion Smart Grid design and deployment must take into account the current cyber vulnerabilities in the

legacy power grid. The known vulnerabilities in the existing legacy power grid should continue to be addressed and mitigated in concert with the implementation of Smart Grid technologies. Resistance to attack is one of the seven principle characteristics of the Smart Grid vision. However, implementation of a Smart Grid that is resistant to attack is particularly difficult for several reasons. The Smart Grid deployment will increase the complexity of the existing system and will include the addition of many new communication paths. Increased complexity and expanded communication paths can easily lead to an increase in vulnerability to cyber attack. The size (millions of nodes) of a fully implemented Smart Grid and an unpredictable intelligent adversary make it difficult to anticipate how attacks may be manifested. Smart Grid technology that has known vulnerabilities has already been deployed in some parts of the current power grid. Furthermore, the goal of resistance to attack is in competition with some of the other desired characteristics of the Smart Grid, e.g. optimizes assets and operates efficiently. The desire to minimize costs and to provide services tend to take priority over the desire for security in the face of a threat that is not well understood. There must be a coordinated and ongoing effort to secure the Smart Grid that includes the full development lifecycle. The development life cycle includes requirements, design, implementation,

verification, validation, procurement, installation, operations, and maintenance. A failure in any phase of the lifecycle leads to defects, which lead to vulnerabilities that can be exploited by a skilled attacker. Incentives should establish that encourage vendors and power companies to place sufficient emphasis on the security aspects of the Smart Grid lifecycle. Each of the Smart Grid components has a security life cycle that must have a disciplined development process that emphasizes security and includes independent verification and validation to ensure vulnerabilities are avoided or are found and mitigated. The components of the system must be designed for interoperability such that the emergent properties of the Smart Grid prevent successful catastrophic cyber attacks and

provide for attack detection and recovery. It is imperative that the requirements, design, implementation, and operations include multilevel of defense to prevent catastrophic consequences in case new vulnerabilities are discovered or attackers find new ways to subvert some of the defense mechanisms. The Smart Grid is an upgrade to the current electrical power grid. This upgrade is in response to changing consumer requirements for the 21st century. Several cyber security risks will be present in the Smart Grid, and research has been done to identify and mitigate these risks. The Smart Grid cyber security research is separated into five different categories: PCS Security, Smart Meter Security, Power System State Estimation Security, Smart Grid Communication Protocol Security, and Smart Grid Simulation for Security Analysis. PCSs have been in use for some time now, but not in an environment like the Smart Grid. Traditional PCSs were designed with limited or no security, so a complete set of security tools and policies will need to be developed for these systems. The security vulnerabilities provided in and the risk assessment methods in can be used to develop security tools and policies for the PCS. One of the security tools that can be used on the Smart Grid PCS is the IDS in There have been several security risks identified with Smart Meters, and many of these risks need to be addressed before Smart Meters can be used in large-scale environments. So far work has been done in three security areas for Smart Meters. An IDS is designed for Smart Meters. Work has been done with securing redundant Smart Meter reading systems. Finally, several researchers have looked into Smart Meter anonymity and privacy. The power system state estimation model used in the Smart Grid will be at risk of cyber attacks. One of the attacks against this model is a false-data injection attack. The work addresses different aspects of this type of attack. Since the power system state estimation model makes up a critical section of the Smart Grid's functionality, the work in uses the power system state estimation model to determine the communication channel capacities that will be needed to ensure secure communications. There are many other kinds of attacks that can be performed against the state estimation model that will need to be researched. The Smart Grid will need to use many different communication

protocols because of the varying requirements of the many Smart Grid components. An authentication protocol design guideline was developed that can be used by protocol designers. In addition to communication protocol work, some work has been done with cryptography. Simulating the Smart Grid can be used to evaluate cyber security. Smart Grid simulation is broken up into two types: software and hardware. Two software simulations and one hardware simulation have been developed for the Smart Grid. Work in developing viable Smart Grid simulators will help improve the Smart Grid design process. Scenario and challenges in India : Smart Grid Interaction: IEEE-SA pinpoints four key challenges for Smart Grid Implantation in India Smart Grid Implementation Challenges in India: The Power Industry calls for a complete switch into the next generation through automation. Despite monetary issues, power utilities need to begin with basic automation systems eventually upgrading to the advanced systems. By analyzing the growing power demand and market competence, this is the only way-forward for the domestic power industry. The implementation of Smart Grid is not going to be an easy task as the Indian power sector poses a number of issues such as minimizing T&D losses, power theft, inadequate grid infrastructure, low metering efficiency and lack of awareness. Power theft: Power theft has been one of the major issues in India. A few ways to help prevent the power theft are the use of overhead lines that are insulated and the LT overhead wires used for distribution of power could be replaced with insulated cables in order to minimize the theft of energy through hooking. The conventional energy meters could be replaced with digital tamper proof meters and the use of prepaid card is yet another solution to eradicate theft of energy.

Inadequate Grid Infrastructure: For India to continue along its path of aggressive economic growth, it needs to build a modern, intelligent grid. It is only with a reliable, financially secure Smart Grid that India can provide a stable environment for investments in electric infrastructure - a prerequisite to fixing the fundamental problems with the grid. Low metering efficiency: The commercial losses are mainly due to low metering efficiency, theft & pilferage. This may be eliminated by improving metering efficiency, proper energy accounting & auditing and improved billing & collection efficiency. Fixing of accountability of the personnel / feeder managers may help considerably in reduction of AT&C loss. Lack of awareness: The understanding of consumers on how power is delivered to their homes is very minimal. Before implementing Smart Grid

concepts, they should be educated about the Smart Grids, the benefits of Smart Grid and Smart Grids contribution to low carbon economy. Consumers should be made aware about their energy consumption pattern at home, office etc. Utilities need to focus on the overall capabilities of Smart Grids rather than mere implementation of smart meters. Policy makers and regulators must be very clear about the future prospects of Smart Grids. The major challenge for implementing smart Grid Security in India is availability of funds. Huge investments are required in order to setup a secured link between the customers and the Smart Grid. The cost of setting up more plants can be deferred drastically. At that point of time, more emphasis will be on overall development of T&D efficiency based on demand response, load control and many other Smart Grid technologies. With timely and detailed information provided by Smart Grids, customers would be encouraged to avoid over use, adopt energy-efficient building standards and invest continually in energy efficient appliances. To tackle the Smart Grid future, we need to have compelling Smart Grid consumer products, collaborative vendor partnerships and a willing investment community. The policy makers and regulators have to implement a robust incentive model frame work to attract more and more private investments

keeping the rate of return, based on the output generated. Policy makers and regulators can mitigate this by seeking economies of scale and implementing advanced digital technologies. India is ranked as the third largest market for smart grid investments. Smart grid is a strategic area of focus for IEEE Standards Association (IEEE-SA). Through India Smart Grid Task Force, an initiative of Ministry of Power, India, IEEE-SA have been able to create an initial momentum in this area. The India Smart Grid Task Force is an inter ministerial group and serves as a government focal point for activities related to Smart Grid. To drive the smart grid development in India, IEEE-SA is dedicated to working with industry professionals, academia and government officials. A Standards Interest Group (SIG) for India has been formed as the first step and it provides a platform for the Indian technical community to participate in global standards development. As one of the world's leading standards development organizations, IEEE-SA acts as a catalyst to bring standards developed in India on a global scale. In addition to standards development, IEEE-SA is focusing on creating awareness and educating about smart grid through various workshops and panel discussions across the country. Efforts are being made in India to create a collaborative environment which will work towards setting global standards wherein deployment of interoperable technologies using the Smart Grid will become a reality faster. IEEE-SA is actively growing its engagement in India to educate, and promoting Smart Grid Standards interests in the country. With the formation of Standards Interest Group (SIG) for India, IEEE-SA has successfully engaged India and its professional technical community in global standards development including those for the Smart Grid. Outreach programs like Smart Grid security workshops deliberating the role of standards and challenges in the Indian context are also being conducted across cities. IEEE-SA have conducted outreach

programs to directly interact with Indian companies in order to focus on the field

of power, communications and information technology, to solicit their interest to participate in IEEE standards projects. With the transition to digital electricity infrastructure comes the challenge of communication security and data management; as digital networks are more prone to malicious attacks from software hackers, security becomes the key issue to be addressed. Smart Grid success depends on the successful handling of two major IT issues, i.e security & integration and data handling. With an

increase in computers and communication networks the threat of cyber-attack has also increased invariably. Utilities can use and implement cyber security standards to reduce the venerability to the consumers and provide a higher reliability that their valuable information is being protected. Implementing cyber security measure through the use of standards will help reduce software and implementation cost. As it is observed, there has been certain degree of backlash and apprehension to Smart Grid implementation in developed countries, particularly in the USA. IEEE-SA is closely working with groups in India, such as the engineering community including vendors, utilities, academics to participate in the standards development and work towards implementing smart grid successfully in India. Also having the technical participant from India provide requirement to ensure standards development groups to understand and identify any possible gaps and address some of India technical issue. Also because of the challenges that India has, a more robust grid will be welcomed. A Unique Security Solution for Smart Grid: Needs to Address Four Key Areas 1. Automating Security Controls Continuous Controls Monitoring IT Applications, Systems, Networks and Devices Network, End-Point and IT Security Controls

Physical Access Controls and Video Surveillance Control System and SCADA Security Controls 2. Actively Enforce Security Policies Securing end points and information - privacy Securing Physical Access to assets and facilities Securing SCADA and other real-time control applications 3. Real-time Risk and Compliance Management Real-Time Risk Analysis Multi-Regulatory Compliance - NERC CIP, NERC, FERC, NIST SP800-xx. NISTIR Risk analysis across operational systems and IT systems 4. Situational Awareness and Incident Response Continuous monitoring for blended threats Active Incident Management Dashboards In conclusion, security is a never-ending game of wits, pitting attackers versus asset owners. Smart Grid cyber security is no exception to this paradigm. The Smart Grid is a large and complex system that will be geographically spread out over a large area, and protecting it against attackers will be a challenge.