IEEE Power & Energy Magazine - September/October 2016 - 52

figure 1. The DHS Aurora vulnerability document.

The utility's procurement requirements specified "manual
intervention" for certain operating conditions; however, the
vendor configured an automatic-only execution process.
Consequently, during system testing, the process operated differently than expected, causing a large number of distribution
circuit breakers to be automatically and unexpectedly opened
by the SCADA control system. This incident was deemed a
nonmalicious event, yet the incident exemplifies the risk of
an unintentional cyberactor that can affect the operation of
critical operating facilities when broad encompassing cybersecurity practices are not implemented holistically.

Florida Power & Light Outage (2008)
In February 2008, a system disturbance initiated by a transmission system fault led to the loss of approximately
2,300 MW of load in South Florida. The disturbance further
caused the subsequent loss of approximately 4,300 MW of
generation within the region and additional load shedding.
An engineer was diagnosing a switch that had malfunctioned at Florida Power & Light's Flagami substation in west
Miami. The engineer disabled two layers of relay protection
and then conducted a diagnostic process that caused a fault
leading to cascading outages due to the disabled protection. The resulting outages led to loss of power to more than
5 million people throughout Florida. While the cause of the
fault was not deemed as intentional, the loss of protection
was not identified by the SCADA operator.
These examples demonstrate that while cyberincidents
may not appear to be intentional or malicious, they still pose
a risk that should be accounted for. In both the Florida and
Arizona cases, the only difference between the incidents
being malicious and unintentional was the motivation of the
individual involved.

Aurora Vulnerability Demonstration
The Idaho National Laboratory conducted a test in 2007 to
demonstrate that it is possible to damage an electric generator
52

ieee power & energy magazine

through improper synchronization to the electric grid. This
test was called the Aurora vulnerability demonstration.
An "Aurora event" refers to the consequential situation
whereby a substation circuit breaker or breakers are opened
and closed very quickly, resulting in an out-of-phase condition for the ac rotating equipment connected to the substation. When the breakers are closed out of phase, the torque
from the mis-synchronization transfers high forces upon the
generator, or induction motor, large enough to induce high
stresses, creating the risk of severe damage to the equipment.
The Aurora vulnerability specifically refers to a physical gap
in the substation relay protection to its associated electric
grid connection. Aurora was demonstrated and confirmed
as a real risk to electric generators and induction motors
connected to the grid during the test at the Idaho National
Laboratory. During the test, the system dispatcher reported
that he could not see any external effects until the generator
was effectively destroyed. The test indicated that substation
protection equipment could unknowingly become compromised if an actor successfully manipulates operating devices,
potentially resulting in significant damage without warning.
Following the Aurora test, specific hardware solutions
were developed to address the Aurora risk and thus to protect the generator against mis-synchronization induced by
substation circuit breakers, and these solutions were made
available to the industry along with industry guidance from
NERC in 2007. Unfortunately, this vulnerability remains
unmitigated at many substation and switchyard facilities, as
there is no requirement for operators to install the mitigating hardware. POWER Magazine, in September 2013, stated
that it's believed that very few substation facilities within the
U.S. electric industry, and almost none outside the United
States, have implemented a protective solution. Aurora can
affect all types of ac rotating electrical equipment connected
to an electric grid, as well as other interconnected equipment
such as transformers if they are not properly protected by
Aurora hardware mitigation.

The Story Hits the Street
In July 2014 the U.S. Department of Homeland Security
(DHS) declassified more than 800 pages on the Aurora
vulnerability, and, as a result, those details were also made
available to potential hackers through hacker websites.
With fewer than a handful of U.S. utilities that have confirmed installation of the Aurora hardware mitigation, this
leaves many facilities as unsecured. Well-coordinated and
executed attacks, exploiting vulnerabilities such as Aurora,
could damage portions of the electric system. Depending
on the depth of penetration, scale of attack, and the specific
equipment compromised, outages could range anywhere
from small (hours or days) upwards to months to a year for
larger, more critical facilities. Figure 1 demonstrates the
basic formula to create an Aurora event. The presentation
from which this figure was referenced, now declassified by
the DHS, in essence provides a road map for an attacker to
september/october 2016



Table of Contents for the Digital Edition of IEEE Power & Energy Magazine - September/October 2016

IEEE Power & Energy Magazine - September/October 2016 - Cover1
IEEE Power & Energy Magazine - September/October 2016 - Cover2
IEEE Power & Energy Magazine - September/October 2016 - 1
IEEE Power & Energy Magazine - September/October 2016 - 2
IEEE Power & Energy Magazine - September/October 2016 - 3
IEEE Power & Energy Magazine - September/October 2016 - 4
IEEE Power & Energy Magazine - September/October 2016 - 5
IEEE Power & Energy Magazine - September/October 2016 - 6
IEEE Power & Energy Magazine - September/October 2016 - 7
IEEE Power & Energy Magazine - September/October 2016 - 8
IEEE Power & Energy Magazine - September/October 2016 - 9
IEEE Power & Energy Magazine - September/October 2016 - 10
IEEE Power & Energy Magazine - September/October 2016 - 11
IEEE Power & Energy Magazine - September/October 2016 - 12
IEEE Power & Energy Magazine - September/October 2016 - 13
IEEE Power & Energy Magazine - September/October 2016 - 14
IEEE Power & Energy Magazine - September/October 2016 - 15
IEEE Power & Energy Magazine - September/October 2016 - 16
IEEE Power & Energy Magazine - September/October 2016 - 17
IEEE Power & Energy Magazine - September/October 2016 - 18
IEEE Power & Energy Magazine - September/October 2016 - 19
IEEE Power & Energy Magazine - September/October 2016 - 20
IEEE Power & Energy Magazine - September/October 2016 - 21
IEEE Power & Energy Magazine - September/October 2016 - 22
IEEE Power & Energy Magazine - September/October 2016 - 23
IEEE Power & Energy Magazine - September/October 2016 - 24
IEEE Power & Energy Magazine - September/October 2016 - 25
IEEE Power & Energy Magazine - September/October 2016 - 26
IEEE Power & Energy Magazine - September/October 2016 - 27
IEEE Power & Energy Magazine - September/October 2016 - 28
IEEE Power & Energy Magazine - September/October 2016 - 29
IEEE Power & Energy Magazine - September/October 2016 - 30
IEEE Power & Energy Magazine - September/October 2016 - 31
IEEE Power & Energy Magazine - September/October 2016 - 32
IEEE Power & Energy Magazine - September/October 2016 - 33
IEEE Power & Energy Magazine - September/October 2016 - 34
IEEE Power & Energy Magazine - September/October 2016 - 35
IEEE Power & Energy Magazine - September/October 2016 - 36
IEEE Power & Energy Magazine - September/October 2016 - 37
IEEE Power & Energy Magazine - September/October 2016 - 38
IEEE Power & Energy Magazine - September/October 2016 - 39
IEEE Power & Energy Magazine - September/October 2016 - 40
IEEE Power & Energy Magazine - September/October 2016 - 41
IEEE Power & Energy Magazine - September/October 2016 - 42
IEEE Power & Energy Magazine - September/October 2016 - 43
IEEE Power & Energy Magazine - September/October 2016 - 44
IEEE Power & Energy Magazine - September/October 2016 - 45
IEEE Power & Energy Magazine - September/October 2016 - 46
IEEE Power & Energy Magazine - September/October 2016 - 47
IEEE Power & Energy Magazine - September/October 2016 - 48
IEEE Power & Energy Magazine - September/October 2016 - 49
IEEE Power & Energy Magazine - September/October 2016 - 50
IEEE Power & Energy Magazine - September/October 2016 - 51
IEEE Power & Energy Magazine - September/October 2016 - 52
IEEE Power & Energy Magazine - September/October 2016 - 53
IEEE Power & Energy Magazine - September/October 2016 - 54
IEEE Power & Energy Magazine - September/October 2016 - 55
IEEE Power & Energy Magazine - September/October 2016 - 56
IEEE Power & Energy Magazine - September/October 2016 - 57
IEEE Power & Energy Magazine - September/October 2016 - 58
IEEE Power & Energy Magazine - September/October 2016 - 59
IEEE Power & Energy Magazine - September/October 2016 - 60
IEEE Power & Energy Magazine - September/October 2016 - 61
IEEE Power & Energy Magazine - September/October 2016 - 62
IEEE Power & Energy Magazine - September/October 2016 - 63
IEEE Power & Energy Magazine - September/October 2016 - 64
IEEE Power & Energy Magazine - September/October 2016 - 65
IEEE Power & Energy Magazine - September/October 2016 - 66
IEEE Power & Energy Magazine - September/October 2016 - 67
IEEE Power & Energy Magazine - September/October 2016 - 68
IEEE Power & Energy Magazine - September/October 2016 - 69
IEEE Power & Energy Magazine - September/October 2016 - 70
IEEE Power & Energy Magazine - September/October 2016 - 71
IEEE Power & Energy Magazine - September/October 2016 - 72
IEEE Power & Energy Magazine - September/October 2016 - 73
IEEE Power & Energy Magazine - September/October 2016 - 74
IEEE Power & Energy Magazine - September/October 2016 - 75
IEEE Power & Energy Magazine - September/October 2016 - 76
IEEE Power & Energy Magazine - September/October 2016 - 77
IEEE Power & Energy Magazine - September/October 2016 - 78
IEEE Power & Energy Magazine - September/October 2016 - 79
IEEE Power & Energy Magazine - September/October 2016 - 80
IEEE Power & Energy Magazine - September/October 2016 - 81
IEEE Power & Energy Magazine - September/October 2016 - 82
IEEE Power & Energy Magazine - September/October 2016 - 83
IEEE Power & Energy Magazine - September/October 2016 - 84
IEEE Power & Energy Magazine - September/October 2016 - 85
IEEE Power & Energy Magazine - September/October 2016 - 86
IEEE Power & Energy Magazine - September/October 2016 - 87
IEEE Power & Energy Magazine - September/October 2016 - 88
IEEE Power & Energy Magazine - September/October 2016 - 89
IEEE Power & Energy Magazine - September/October 2016 - 90
IEEE Power & Energy Magazine - September/October 2016 - 91
IEEE Power & Energy Magazine - September/October 2016 - 92
IEEE Power & Energy Magazine - September/October 2016 - Cover3
IEEE Power & Energy Magazine - September/October 2016 - Cover4
https://www.nxtbook.com/nxtbooks/pes/powerenergy_091020
https://www.nxtbook.com/nxtbooks/pes/powerenergy_070820
https://www.nxtbook.com/nxtbooks/pes/powerenergy_050620
https://www.nxtbook.com/nxtbooks/pes/powerenergy_030420
https://www.nxtbook.com/nxtbooks/pes/powerenergy_010220
https://www.nxtbook.com/nxtbooks/pes/powerenergy_111219
https://www.nxtbook.com/nxtbooks/pes/powerenergy_091019
https://www.nxtbook.com/nxtbooks/pes/powerenergy_070819
https://www.nxtbook.com/nxtbooks/pes/powerenergy_050619
https://www.nxtbook.com/nxtbooks/pes/powerenergy_030419
https://www.nxtbook.com/nxtbooks/pes/powerenergy_010219
https://www.nxtbook.com/nxtbooks/pes/powerenergy_111218
https://www.nxtbook.com/nxtbooks/pes/powerenergy_091018
https://www.nxtbook.com/nxtbooks/pes/powerenergy_070818
https://www.nxtbook.com/nxtbooks/pes/powerenergy_050618
https://www.nxtbook.com/nxtbooks/pes/powerenergy_030418
https://www.nxtbook.com/nxtbooks/pes/powerenergy_010218
https://www.nxtbook.com/nxtbooks/pes/powerenergy_111217
https://www.nxtbook.com/nxtbooks/pes/powerenergy_091017
https://www.nxtbook.com/nxtbooks/pes/powerenergy_070817
https://www.nxtbook.com/nxtbooks/pes/powerenergy_050617
https://www.nxtbook.com/nxtbooks/pes/powerenergy_030417
https://www.nxtbook.com/nxtbooks/pes/powerenergy_010217
https://www.nxtbook.com/nxtbooks/pes/powerenergy_111216
https://www.nxtbook.com/nxtbooks/pes/powerenergy_091016
https://www.nxtbook.com/nxtbooks/pes/powerenergy_070816
https://www.nxtbook.com/nxtbooks/pes/powerenergy_050616
https://www.nxtbook.com/nxtbooks/pes/powerenergy_030416
https://www.nxtbook.com/nxtbooks/pes/powerenergy_010216
https://www.nxtbook.com/nxtbooks/ieee/powerenergy_010216
https://www.nxtbook.com/nxtbooks/pes/powerenergy_111215
https://www.nxtbook.com/nxtbooks/pes/powerenergy_091015
https://www.nxtbook.com/nxtbooks/pes/powerenergy_070815
https://www.nxtbook.com/nxtbooks/pes/powerenergy_050615
https://www.nxtbook.com/nxtbooks/pes/powerenergy_030415
https://www.nxtbook.com/nxtbooks/pes/powerenergy_010215
https://www.nxtbook.com/nxtbooks/pes/powerenergy_111214
https://www.nxtbook.com/nxtbooks/pes/powerenergy_091014
https://www.nxtbook.com/nxtbooks/pes/powerenergy_070814
https://www.nxtbook.com/nxtbooks/pes/powerenergy_050614
https://www.nxtbook.com/nxtbooks/pes/powerenergy_030414
https://www.nxtbook.com/nxtbooks/pes/powerenergy_010214
https://www.nxtbookmedia.com