The document outlines the agenda for an AMI security workshop, including introductions, an overview of AMI security challenges from both top-down and bottom-up perspectives, how utilities are managing security, vulnerability testing, lessons learned, and the road ahead. Presenters are from security companies and utilities to discuss topics like threat modeling, attack surfaces, software development lifecycles, penetration testing, and ongoing security processes.

3. Presenters Slade Griffin – Penetration Testing & Incident Handling Engineer, EnerNex Kevin Brown – RF & Embedded Security Engineer, EnerNex Ido Dubrawsky – Security Engineering Team Lead, Itron Robert Former – Head of Security Research and Testing, Itron Stephen Chasko – Principal Security Engineer, Landis+Gyr Edward Beroset – Director of Technology and Standards, Elster Robert Humphrey – Lead IT Security Analyst, Duke Energy

5. Gartner Hype Cycle – Where Are We? You Are Here

6. Merging Two Infrastructures Electrical Infrastructure “ Intelligence” Infrastructure

7. The Smart Grid

8. Utility WAN NAN HAN Securing Communications

9. IT-based & Web-based WAN RF & Embedded Technologies & Protocols

10. Smart Meters and Infrastructure

11. AMI Concerns (consumers)

12. AMI  HAN Concerns

17. Security Development Lifecycle vs. Traditional Development Lifecycle Threat Modeling Complete and Mitigations Reflected in Specifications Product Code Complete Final Release Candidate Requirements Design Implementation Verification Release Support & Servicing Feature Lists Quality Guidelines Architecture Docs Schedules Functional Specifications Design Specifications Testing and Verification Development of New Code Bug Fixes Code Signing & Signoff RTM Product Support Service Packs/QFEs Security Updates Security Kickoff Security Design Best Practices Security Architecture & Attack Surface Review Threat Modeling Use Security Development Tools & Security Best Dev & Test Practices Create Security Documentation And Tools for Products Prepare Security Response Plan Security Push Pen Testing Final Security Review Signoff On Security Requirements Security Servicing & Response Execution Security Training

21. Attack Surface Example Source: Microsoft, 2009

24. Example Attack Tree Source: Schneier, Bruce, Attack Trees, Dr. Dobbs Journal, December 1999, accessed at: http://www.schneier.com/paper-attacktrees-ddj-ft.html

31. Attack Tree Threat Assessment Security Goals Privacy Assessment Incident Response Periodic Threat Assessment Process Audits Security Test Results Audit against threat model External Penetration Testing Process Compliance Release Verification Peer Review Resolution Automated Review Results Tool Review Security Architecture Cryptography Review Security Test Plan – Attacks, Cryptography, Functionality Coding Practices

33. Security Focus and AMI Security Goals

36. Security vs Operations Mount the Box How High?

37. Security vs Operations Mount the Box How High?

38. Security vs Operations Mount the Box How High?

39. Security vs Operations Mount the Box How High?

40. Security vs Operations Mount the Box How High?

41. Inside the Box Memory Coms Module Coms Module USB Serial Sensor Relay Switch Actuator

42. The Cyber-Physical Line Memory Coms Module Coms Module USB Serial Sensor Relay Switch Actuator