Date Published: May 2019
Email Questions to:
The National Cybersecurity Center of Excellence (NCCoE) at NIST is seeking comments on a draft project description that will focus on securing Industrial Internet of Things (IIoT) information exchanges of distributed energy resources (DERs) in their operating environments. As an increasing number of DERs are connected to the grid, there is a need to examine the potential cybersecurity concerns that may arise from these interconnections.
The goal of this project is to document an approach for improving the overall security of IIoT in a DER environment that will address the following areas of interest:
- The information exchanges between and among DER systems and distribution facilities/entities, and the cybersecurity considerations involved in these interactions.
- The processes and cybersecurity technologies needed for trusted device identification and communication with other devices.
- The ability to provide malware prevention, detection, and mitigation in operating environments where information exchanges are occurring.
- The mechanisms that can be used for ensuring the integrity of command and operational data and the components that produce and receive this data.
- Data-driven cybersecurity analytics to help owners and operators securely perform necessary tasks.
This project will result in a publicly-available NIST Cybersecurity Practice Guide (SP 1800 series)—a detailed implementation guide of the practical steps needed to implement a cybersecurity reference design that addresses this challenge.
Keywords data integrity; distributed energy resource (DER); industrial control system; Industrial Internet of Things; malware; microgrid; smart grid