Cybersecurity involves safeguarding the network of electric power systems against cyber threats. Solar energy is among the various methods of generating electricity for the grid, playing a role in generating power on a large scale through solar parks and utility-scale projects, as well as on a smaller scale through distributed energy resources (DER) like rooftop setups, batteries, and microgrids.
Solar energy is merely one category of DER technology, capable of generating and distributing electricity on a small scale across a broad region.
Solar power setups are linked to the power grid via devices such as inverters and often engage in regular interaction with utility management and automation systems. Big solar projects need to meet essential infrastructure security guidelines to start working.
On the other hand, smaller photovoltaic systems and other distributed energy resources (DERs) at present lack specific cybersecurity rules, and they are typically linked to the internet by their owners for tracking and management reasons. This situation can open up weaknesses in the grid that cybercriminals might take advantage of, highlighting the importance of cybersecurity for those managing the grid and the owners of solar systems.
Why Is Solar Cybersecurity Important?
Maintaining the dependable and secure functioning of electrical networks is essential for the U.S. economy and the country’s defense. As the quantity of solar power entering the grid increases, solar energy will play a crucial role in the system, enhancing its resilience to power outages. This is because solar panels are spread out, making them less vulnerable to widespread interruptions.
Nonetheless, the complexity of cybersecurity issues is amplified by the extensive number of entities involved in the solar energy sector. Solar installations must be more vigilant and protected against cyber threats, equipped with the ability to prevent, identify, detect, respond to, and recover from cyber-attacks.
It’s also important to educate solar system operators on cybersecurity norms and best practices for managing risks. The electric grid operates as a combination of cyber and physical systems, meaning cyber-attacks on the grid can lead to physical harm, safety concerns, and interruptions in the flow of information. Implementing solutions that offer grid operators continuous monitoring of all grid systems enables them to safeguard against and address cyber threats effectively.
SETO Research in Solar Cybersecurity
SETO’s projects in cybersecurity for solar and other distributed energy resources (DER) are working on enhancing their security to allow for swift detection of both physical and cyber-related disruptions. This will enable operators of the grid to quickly restore power at essential infrastructure locations using solar power.
In 2017, SETO supported Sandia National Laboratory with funding for their Solar Cybersecurity Roadmap, which serves as a roadmap for research in this field within SETO and other Department of Energy (DOE) agencies. By 2020, the Department of Energy’s Energy Efficiency and Renewable Energy (EERE) Office released a Multi-Year Program Plan that outlines strategies to bolster cybersecurity in renewable energy, manufacturing, buildings, and transportation sectors.
In 2022, the Office of Energy Efficiency and Renewable Energy, in collaboration with the Office of Cybersecurity, Energy Security, and Emergency Response (CESER), produced the Cybersecurity Considerations for Distributed Energy Resources on the U.S. Electric Grid report. This report offers guidance for the distributed energy resources sector, the energy industry, and the government on securing existing and future systems.
- Solar Energy Technologies Office Lab Call FY2022-24 – the Securing Solar for the Grid (S2G) initiative within this lab call is focused on establishing cybersecurity norms and certifications, tools for monitoring cyber-physical networks, strategies for evaluating and reducing risks, and training for stakeholders involved in distributed energy resources and inverter-based systems, including solar inverters, for the introduction and operation of new products in the market.
- Solar Energy Technologies Office Fiscal Year 2019 grant program – this program is dedicated to formulating strategic plans and decision-making aids that improve cybersecurity solutions and develop technologies to safeguard power electronic devices from cyber threats.
- Solar Energy Technologies Office Lab Call FY19-21 – this lab call aims to refine the analysis of challenges related to integrating the grid with solar energy, enabling the solar industry to create new tools and system designs that could enhance grid reliability and cybersecurity with significant solar energy penetration.
- Enabling Extreme Real-time Grid Integration of Solar Energy grant program – this program focuses on developing solutions for distribution planning and operation to facilitate dynamic, automated, and cost-efficient management of distributed and variable generation sources, such as solar, on the grid.
- Cutting-edge Integration of Solar Systems Grant Initiative – enhancing the understanding of solar energy systems in real-time, particularly at key infrastructure locations, boosting resistance to cyber and physical attacks, and fortifying the connection of solar energy on the power grid.
