The modern energy industry finds itself in a state of upheaval. Securing our energy future means that renewable energy sources, such as wind, solar and water power are increasingly necessary to augment the power supply; in order to use this energy efficiently, the energy has to be temporarily stored, transported and billed on demand, making ICT infrastructures for monitoring and control an absolute must.
The Smart Grids which result from this integration of ICT infrastructures with the distributed energy grid are security-critical infrastructures. Disruptions and failures of the energy supply can have serious impacts on both business and society-at-large; as the Stuxnet worm demonstrated in mid-2010, successful attacks on control networks (such as SCADA-systems) constitute an enormous risk. In order to protect against attacks and to prevent manipulated ICT components in the Smart Grid from being turned into weapons against society, appropriate protective measures must be integrated into the infrastructure. For example, smart meters and gateways installed at the consumer must be protected against manipulation in order to prevent energy theft. The communication between participating entities, as well as the services for collecting energy usage, accounting and billing information, must be protected from the injection of false data. This includes for example the secure integration of electric vehicles. It is also necessary to develop privacy-compliant solutions which prevent the construction of unauthorized consumer usage profiles.