Tag Archive for: Cyber Security

, , ,

Electrical data security

Data center data security reliability depends on many different factors. For example, from the energy supply and operational reliability of the power supply. This is what we refer to in this blog as electrical data security. Electrical data security conditions must be constantly monitored to achieve Tier 1 – 4 levels. It is advisable for you to monitor parameters of power quality, energy and fault current detection as well as cyber security together.

Figure 1: https://www.hpe.com/ch/de/what-is/data-center-tiers.html (31.1.2020); Source: Camille Bauer Metrawatt AG (own design)

Electrical data security and the problem

Various studies have shown that poor network quality causes costs. These run into the billions every year. As early as 2007, the Pan-European LPQI Power Quality Survey estimated that the damage amounts to the equivalent of $150 billion annually. In the meantime, the challenges this poses for everyone have steadily increased. And that’s especially true for data centers.

The basic requirements for a data center

There are many requirements to consider when planning the power supply for a data center:

  • Secure location in terms of energy supply and environmental conditions
  • High energy efficiency to minimize operating costs
  • Maximum availability due to redundancies (UPS, generators)
  • High security (fire protection, access, defense against cyberattacks)
  • System stability and reliability of the devices used
  • Possibility for later expansion
  • Compatibility with the standard e.g. according to DIN EN 50600,etc.
  • etc.

Possible solutions for electrical data security

1. investment protection through good power quality (PQ)

Figure 2: Power quality simplified; Source: Camille Bauer Metrawatt AG

2. system protection by residual current and fault current monitoring

The risk

Residual current monitoring (RCM) in low-voltage networks (e.g. data centers) that is not detected or is detected too late represents a significant safety risk:

  • Fault currents and insulation decay are caused by defective / bad components (e.g. switching power supplies, LEDs, server systems, PV, etc.)
  • In the data center should / must not be switched off in the event of a fault!
  • Overheated cable insulation causes a fire risk!
The solution

Detection of risky fault currents by means of permanent residual current measurement, thereby increasing the safe operation of electrical systems.

Figure 3: Residual current monitoring Source: Camille Bauer Metrawatt AG

Advantages
  • Time-consuming manual checks are no longer required (shutdown issue)
  • Continuous monitoring instead of status quo
  • Legal security with regard to the law, auditors (asset protection) and insurance companies
  • Permanent damage prevention to people and equipment

3. electrical data security through cyber security

Threat from cyber attacks

Figure 4: Threat of cyber attacks

The topic of cyber security is becoming increasingly important due to the constantly growing level of networking. Especially in the areas of critical infrastructure. Due to the threat situation, effective cyber security is essential there. Thus also very specific in data centers and considered under the topic of “electrical data security”.

You can find the complete blog post on cyber security here

Find complete solutions for your data center here

/0 Comments/by
, ,

Ensuring grid quality on a small scale

Ensure power quality! These claims are becoming stronger and louder. This is confirmed by utilities, industrial companies, but also by many of the electrical specialists who are increasingly confronted with the topic on the part of their customers. The question often arises as to which measuring device should be used, with which expertise and with which budget.

Ensure the quality of the network for industrial needs. This is now offered by the LINAX PQ1000 series power analyzer according to IEC61000-4-30 class S. The measuring instrument is specially designed for the area of “Demand Side Power Quality” (DSPQ). There you will find the process for securing the power quality on the consumer side (according to the PoCC as per IEC TR 63191).

But why class S and not class A

Standards

Measuring instruments according to IEC 61000-4-30 Class A generally provide measured values that are comparable across measuring instruments and manufacturers. In case of legal cases, class A is mandatory and is particularly relevant for distribution system operators.

IEC 61000-4-30 class S power quality analysers are intended for basic / advanced power quality analysis and provide useful monitoring data. Instruments that meet Class S performance requirements are used for statistical power quality surveys and other applications and measurement services. There are no potential disputes there. Thus, comparable measurements are also not mandatory. The performance requirements for Class S are less stringent than for Class A. Among other things, this also results in a lower price. They are often used in industrial and supply engineering at the IPC(according to IEC [TR] 63191 this is the network distribution according to the Point of Common Coupling (PoCC)). Even in data centers, these are strongly recommended according to EN50600-2-2:2019-08 [Kapitel 6.2.3 Spannungsqualität] within the infrastructure.

Ensuring power quality with certification even for class S

A very important criterion for correct and repeatable measurement of power quality is compliance with standards for the measurement procedure. These are not to be confused with power quality compliance standards. For this reason, class S measuring devices should also be certified. With the LINAX PQ1000, this is ensured on the basis of the big brothers LINAX PQ3000 & PQ5000 by METAS, the Swiss Federal Institute of Metrology. Swiss precision.

Ensuring network quality with the highest standards of cyber security

Cyber Security

The topic of cyber security is also becoming more and more important due to the constantly growing networking. Especially in the areas of power distribution, whether in public or private networks. Due to the threat situation, effective cyber security is essential. To this end, the LINAX PQ1000offers many of the same effective protective features as its larger siblings. These include:

Designs of the LINAX PQ1000

LINAX PQ1000 all views

The PQI, according to Definition according to IEC 62586-1/2 for the analysis of power quality in power supply systems also called Power Quality Instrument (PQI), is available in various options. With the common 96x96mm form factor, the meter fits well anywhere. Whether for panel mounting with TFT display or for DIN rail mounting with or without TFT display. All variants are possible and offer high flexibility. Added to this is the simplest operation and communication via integrated web browser. Without additional software, operation, parameterization and monitoring are made child’s play.

More tutorials (e.g. on the topics UPS, PQ analysis, PQEasy reporting, data export, etc.) can be found here.

/0 Comments/by
, ,

Cyber security is essential

The topic of cyber security is becoming increasingly important due to the constantly growing level of networking. Especially in the areas of energy and SmartGrid. Due to the threat situation, effective cyber security is essential there.

Cyber security is essential

Cyber security is essential

Potential risks (data theft & data manipulation)

  • Hacking & Cracking
  • Listening
  • Datamining
  • Theft of passwords and other information
  • Unauthorized access (intranet, end devices, servers, …)
  • Modification of data & data telegrams
  • Delete data
  • Changing configurations
  • etc.
Data flow in the context of the 7 network layer
The seven network layers

The seven network layers

  • Electrical interconnections must communicate with each other
  • Integration into the World Wide Web (www)
  • Integration of more measuring points
  • Users on grid level 7 (local distribution grid <1kV) become (app) specialists (e.g. SmartHome, energy procurement, …)
  • SmartGrid applications are becoming popular and also demanded
  • Planning with simulation and trends are becoming increasingly important for the networks
  • Dynamic load management (e.g. Redispatch, …)

The basic problem of cyber security

Risks cyber attacks

Risks in the energy infrastructure during cyber attacks

  • Individual approaches take up only partial aspects of essential cyber security
  • IT experts mostly have a technical focus and less on the overall context
  • ISO/IEC27001 on cyber security provides a complete, holistic management system and is very complex
  • IEC62443 on cyber security is in principle only applicable to the subarea of industrial automation
  • There is still no IT security standard according to IEC for power quality instruments as well as power monitoring devices at device level. This is currently in the committees of EC TC 85 / WG 20 – Equipment for measuring and monitoring of steady state and dynamic quantities in Power Distribution Systems under the project title: “Cybersecurity aspects of devices used for power metering and monitoring, power quality monitoring, data collection and analysis “is discussed.

Potential solutions on cyber security

Cyber security is essential - and here are the solutions

Cyber security is essential and here possible solutions are presented

In this blog, solution approaches are to be found at the level of measuring devices, which are also used in sub-areas of software solutions. From this, approaches from ISO/IEC27001 (Annex A; Reference measure objectives and measures) can be found, such as. For instance:

  • Access control for systems and applications
  • Cryptographic measures
  • Physical and environmental security
  • Protection from malware
  • Data backup
  • Logging and monitoring
The following approaches should make a significant contribution to a significant increase in safety at the level of measuring instruments:

Learn more while klicking.

/0 Comments/by
,

Role-based access control on the basis of measuring instruments

In order to reduce threats such as data theft, data manipulation and operating errors, appropriate protection mechanisms are indispensable. These include role-based access rights (RBAC), which are intended to prevent unauthorised access to functions, views and data.

/0 Comments/by