INGATE

From The Sip Trunking Experts

TMCNet:  Securing Critical Infrastructure Through Nontraditional Means [Signal]

[April 06, 2013]

Securing Critical Infrastructure Through Nontraditional Means [Signal]

(Signal Via Acquire Media NewsEdge) A cloud project takes advantage of emerging concepts to protect energy against disruptive threats.

Researchers at Cornell University and Washington State University have teamed to create GridCloud, a software-based technology designed to reduce the time and difficulty involved with creating prototypes of smart-grid control paradigms. The system will help overcome hurdles of cloud computing in complex settings. The effort combines Cornell's Isis2 platform, designed for high-assurance cloud computing, with Washington State's GridStat technology for smart grid monitoring and control. The advent of this technology promises to boost both the security and the reliability of electrical services.


Developers aim to build a scalable software structure that is secure, self-healing and inexpensive to operate. They believe that by combining Isis2 and GridStat, a cloud-based grid can have all those factors as well as guarantee consistency. Infrastructure owners motivated by economies of scale and the desire to deploy the new smart-grid solutions end up with a system that also is more resistant to attack and likely to survive other disruptions.

Dr. Ken Birman, a professor at Cornell and co-principal investigator on the project, explains that several motivations drive the effort. One involves trying to find a solution to control a power grid when multiple organizations own and have access to the infrastructure. "A second challenge that's emerged is that people have studied the power grid and found that we don't operate it very efficiently Birman says. Power suppliers often are producing extra power, for example, or finding it difficult to take advantage of renewable sources. Sometimes renewable energy- such as the type that comes from solar panels on homes - is blocked from entering the power grid because officials lack the knowledge to access and use it safely.

The third driver is the military, especially in terms of security. Various malefactors could target power grids through the Internet, impacting U.S. Defense Department operations and overall safety in the United States or other areas of North America. Developers of GridCloud believe they can help determine how to use network computer systems to monitor the power grid and then improve ways to control it "so we can actually do a better job of protecting the grid against mishaps," Birman explains.

Working on the effort now is important, with increasing power problems occurring across the world from the large-scale outage in India last July to problems restoring electricity after Hurricane Sandy last October. Birman believes the world is moving closer to instabilities in power provision, so officials must find ways to prevent those in a manner secure enough to also protect against deliberate attacks.

Another upcoming trend enabling GridCloud involves the placement of high-rate synchronized sensors onto the grid. According to project personnel, some of these sensors are deployed in experimental set-ups, but usage remains in the early stages. The tools enable monitoring personnel to view activity many times per second compared to current sensors that submit information every two to four seconds. Dr. Carl Hauser of Washington State University, the other co-principal on the project, says that the time delays leave plenty of time for strange occurrences to happen without anyone noticing.

With the high-rate sensors, information is processed at superhuman time scales, creating high- resolution insights into the true state of the grid at any time. But this requires a system that can capture the data, place it safely into a data center and then use it to construct accurate models. Hauser explains that the type of processing GridCloud offers would give operators a much more immediate sense of the grid's state, so they could react to events as they occur rather than analyze what caused past problems.

Project personnel are working to demonstrate a capability for performing high-assurance monitoring, data collection and other related efforts over whatever networks grid owners employ. The scale of power grids demands incorporation of huge numbers of data sources, lending itself well to cloud computing. Developers want to take advantage of that technology to build a capability that can secure the grid. The GridStat component collects and transmits data in reliable ways into the cloud environment. Much of what researchers are focusing on includes determining the interfaces and boundaries between power grids and the cyber infrastructure they are building as well as the appropriate networking.

Along with the cloud comes the ability to compute on an enormous scale and on different levels of scales, essentially enabling users to buy computation in small units to build up to larger computation. The cloud also allows flexibility in the location of that computation.

Hauser says that during Hurricane Sandy, companies with cloud computing moved their work from the East Coast to the West Coast to keep nationwide services running. "The companies that did that were very, very successful at it" compared to locationbound organizations, he explains. This circumstance illustrates how cloud computing can be more reliable and available. However, it also means that personnel at various locations must rely on more communication between one another because power resides in more locations and more overall interdependencies exist Owners must actively manage these interdependencies and adjust to changes in the environment to ensure computational capabilities remain available to keep the grid operating.

Birman believes that for cloud computing and the grid to work best together, data must be collected by more than one source. With GridCloud, sensors are monitored by several machines within the cloud. Each sensor acts like a microphone and the machines as audio-capture devices. Through this process, one or two accurate copies still can be captured even if one glitch occurs, because the odds of all the copies incurring damage is minimal. Because GridCloud is selfrepairing, it should fix problems quickly, and continue to capture data during any trouble.

A single power-grid controlling application runs on the data, merging the copies to reduce the duplication. The operators see only one report of the state of the grid, but what they access has better timing properties, fault-tolerance and security than if information were generated without the redundancy built into the system.

Birman likens the concept to streaming one Netflix show to three televisions simultaneously. Even if the stream freezes on one set, chances are good the video will continue uninterrupted to at least one of the two others. Redundancy can help achieve a more balanced outcome if a system or other piece of technology crashes. Ideally, the problems would be invisible to users. Continuing with Netflix as an example, Hauser explains that the Christmas Eve outage of the streaming services - which the company attributed to trouble with cloud services - demonstrates that putting services into the cloud environment works only if sufficient attention is paid to ensuring availability in the face of risks created by additional interdependencies.

GridCloud currently is about one year into its three-year grant funded by the U.S. Department of Energy's Advanced Research Projects AgencyEnergy (ARPA-E). Developers are striving to produce a viable demonstration vehicle that people could use to build a scalable monitoring center. Hauser explains that ARPA-E intends the project to pay significant attention to the path the technology would take into commercial use. "That's something we're required to do and eager to do," he states.

Birman adds that the government is introducing the academic researchers to big players in industry while exposing them to the types of challenges operators face. These actions help project personnel obtain the real-world data necessary to create a convincing demonstration. Without the authentic facts, creating a realistic situation is difficult. Developers find themselves in the interesting situation of using an open- source software model, which means that work cannot focus on a specific company while aiming for a product that others actually will employ. "We'll be disappointed if we don't create something people can one day use," Birman says.

Hauser emphasizes that the project is building what developers call a platform for the development of power grid monitoring and control applications in the cloud. They are not building the full applications but only bits of them to demonstrate the overall capabilities of the platform. "The point is to build something that other people can use to sort of explosively create new things," he states. "New kinds of software; new kinds of programs that will allow people to do these energy efficiency and reliability and security tasks that we know need to be done that can't be done today and to put them into use across the grid." Who exactly would employ GridCloud one day remains open, but Birman states that the list might be longer than people would expect. For one, a political question exists of whether the government should create larger monitoring centers to watch the state of the national power grid. If it does, GridCloud would be a fit for that effort. At the same time, as larger regional structures continue to emerge, providers will compete while sharing the infrastructure, so groups of these competitors may need to operate regional centers. "Those are going to get built because they have to be built by people making their money in that area," Birman says. How that will play out remains unclear and may develop differently in different locations.

Even individual power operators with their own large regional networks will need to increase the management of their networks. As various renewable energies become more prominent - such as offshore wind farms- infrastructure management will increase in complexity. Birman believes more entities will begin to play roles in keeping the power grids safe and operational. The type of software he and his team are developing can become a powerful tool to protect operation of the infrastructure against various forms of manipulation, including an attack by a nation-state.

Crews work in Sea Bright, New Jersey, to restore power that was knocked out during Hurricane Sandy. Some 2.7 million people were without power during the height of the storm. GridCloud, a project between Cornell University and Washington State University, employs cloud technology to make smart grids self-healing and more resilient in the event of natural or man-made disasters.

In addition to helping protect the smart grid from terrorist attackSr GridCloud can assist power suppliers to improve resource management. This work includes determining how to integrate power from nontraditional sources into the grid.

"We'll be disappointed if we don't create something people can one day use." - Dr. Ken Birman, co-principal investigator for GridCloud WEB RESOURCES GridCloud: www.cs.cornell. edu/Projects/gridcontrol ARPA-E: http://arpa-e.encrgy.gov (c) 2013 Armed Forces Communications and Electronics Association

[ Back To SIP Trunking Home's Homepage ]

Loading
Subscribe here for your FREE
SIP TRUNKING enewslettter.

Featured Partner


Featured Whitepapers

SIP Security for the Enterprise
Voice over IP (VoIP) is incorporated into a variety of computer networks, both public and private, and used for everyday transactions and communications among carriers, businesses, government agencies...

Making A Broadband Purchase Decision
Businesses today have many options for broadband connectivity. Clarifying your particular business needs prior to selecting a broadband provider will ensure an optimal match of broadband service to your requirements.

Voice-Optimized Network Delivers Premier Call Experience
Customers equate call quality with business quality. Real-time communication, interpersonal interaction, and the cordial tone of a call center representative can create a positive impression of your business that no email can match.

Featured Case Studies

Business Telecom Expenses Reduced 50%
A small to medium sized company in the midwest was interested in migrating to IP Communications, but in today's economy, they were hesitant to upgrade their communication system due to their perception that the cost would outweigh the benefits.

Multi-State Company Cuts Telecom Costs 50%
A multi-site, multi-state company with extensive monthly long distance fees and toll-free charges did not have adequate broadband for Broadvox SIP Trunking requirements, nor did they have a SIP enabled telephone system.

Discover Leisure Connects Remote Users to its IP-PBX
Discover Leisure is one of the largest resellers of caravans and motor homes in the UK. With 15 branch of?ces all over the country, the company spent a great deal of money every month just on internal phone calls.

Featured eBOOKS

Internet+: The Way Toward Global Unified Communication
Connecting the telephony of the enterprise PBX or Unified Communications (UC) system using SIP trunks instead of conventional telephone lines has been very successful in recent years.

What is SIP Trunking? Edition 2
SIP trunking is becoming more of a focus for service providers. One key issue many service providers face when deploying SIP trunks is NAT, or Network Address Translation, traversal.

What is SIP Trunking? Edition 1
A vast resource for information about all things SIP - including SIP, security, VoIP, SIP trunking and Unified Communications.

Featured Videos

Broadvox VAR Testimonial VAR 1:
Part 1 of the VAR (Value Added Reseller) Partner Program Testimonials for Broadvox...

E-SBCs AS The Demarcation Point:
Ingate's Steve Johnson talks to Erik Linask about the role session border controller plays as the demarcation point at...

Demystifying DPI
How can deep packet inspection protect your SIP traffic as well as your entire network?

Featured Resources

Partner Program Overview:
Over 4,000 VARs, Master Agents, Solution Providers, and Independent IT Professionals trust Broadvox. We offer customized services and solutions to fit seamlessly into any company's business model. And when you partner with Broadvox, every member of our team stands behind you and your customers 100%...

SIP Trunk UC Summit

What's New

Presenting the New Ingate/Intertex Website:
Internet+ is an extended Internet access allowing high quality SIP (Session Initiation Protocol) based real-time person-to-person communication, everywhere and for any application. It applies to both fixed and mobile networks ...

Featured Blogs

Featured Webinars

Secure SIP Trunking:
What You Need to Know

Successfully Deploying Enterprise SIP Trunking:
Tools and Techniques for Overcoming Common Roadblocks

Featured Podcasts

Getting the Most Out of Your SIP Trunks:
Ingate's Steve Johnson and TMC's Erik Linask discuss how best practices forgetting the most out of SIP Trunking services and common pitfalls to avoid.

Featured Datasheets

Ingate SIParator E-SBCs
Adopting SIP is a simple process with the Ingate SIParator, the secure enterprise session border controller (E-SBC). The SIParator makes secure SIP communications - including VoIP,SIP trunking and more - possible while working seamlessly with your existing network firewall.

Ingate Firewalls
Everyone is talking about enterprise usage of VoIP, instant messaging and other types of realtime communications including presence and conferencing.

SIP Trunk Solutions for Service Providers
The award-winning Ingate Firewall and Ingate SIParator deliver a high quality, reliable SIP trunk connection between the customer's IP-PBX and the service provider network, and solve interoperability issues to simplify deployments and support for remote diagnosis of reported issues.