In 2015 the Ukraine Power Grid was hit by a large-scale breakdown, leaving 220 000 people without electricity for several hours. The cause was later identified as a cyber attack targeting the automated control system.
Today, reliable operation of the power grid is critical for our society. The tolerance for major outages is consequently low. At the same time, operation of the grid relies heavily on automated control systems that are vulnerable to cyber attacks.
In North America, the NERC (North American Electric Reliability Corporation) issued a public notice in 2009 addressing the low level of protection of the electric grid against cyber attacks. To improve the resilience, NERC has developed a set of standards for Critical Infrastructure Protection (CIP) which providers of electric utilities are enforced to comply with.
Why Choose SNOK?
- No maintenance required
- Tiny footprint
- Backwards compatible
- Quick and easy to install
When selecting the best method for securing electrical substations from cyberattacks, it is important to find a solution that solves logistics and practical challenges as well as meeting security needs. Electric utilities often have own facilities such as substations at hundreds of sites, many are unmanned and in remote locations.
The SNOK™ Network Intrusion Detection System detects abnormal traffic on a substation network while being non-intrusive to the substation’s tasks and requiring minimal maintenance. SNOK™ can help you meet several of the NERC CIP requirements.
The solution can also be extended with SNOK™ Endpoint Monitoring to monitor any Windows or Linux based endpoint on site, even including systems that have met their end of life such as Windows XP. In addition to our own user interface, SNOK™ can forward alert data to all major SIEM systems and will work with customers to integrate alerts into to Operations Center Monitoring Systems that are already in place.