Smart meters, data, cyber security
August 18, 2013
Yesterday I posted on the benefits of technology and data, Monitor me, data, health and technology. John Naughton takes us to the dark side of the potential of what happens when data, and network communications is not understood comprehensively. Naughton raises an interesting point about the proposed installation of data monitoring smart meters in 26 millions homes and its security implications in his Observer column.
Those whom the gods wish to destroy, they first make credulous. In the case of technology, especially technology involving computers, that’s pretty easy to do. Quite why people are so overawed by computers when they are blase about, say, truly miraculous technologies such as high-speed trains, is a mystery that we will have to leave for another day. The only thing we need to remember is that when important people, for example government ministers, are confronted with what a sceptical friend of mine calls “computery” then they check in their brains at the door of the meeting room. From then on, credulity is their default setting.
In which state, they are easy meat for technological visionaries, evangelists and purveyors of snake oil. This would be touching if it weren’t serious. Exhibit A in this regard is the government’s plan for “smart meters”. By 2020, more than 26 million British homes will have their old-style electricity and gas meters replaced by shiny new digital smart meters to monitor their gas and electricity usage.
He goes on to point out that, this computery thinking will leave the entire UK exposed to a potential cyber attack. This is the dark side of data.
But there is another side to the smart-meter story. Inside each device is a sim card that enables it to communicate with the utility companies that supply the gas and electricity. This is how the utilities will always be able to supply an accurate meter reading. But it will also enable them remotely to terminate your supply if, for example, you fail to pay your bills on time. Which means – and here’s the interesting bit – Kim Jong-un, the Chinese army or any number of unsavoury characters in the Middle East or Russia could do the same.
The potential for a networked world is complex and indeed complicated – and Naughton is pointing out that we need to think in more complex terms rather than in a short term linear fashion
“The off switch creates information security problems of a kind, and on a scale, that the energy companies have not had to face before,” writes Professor Ross Anderson, one of the country’s leading experts on cyber-security, in an oft-cited analysis. “From the viewpoint of a cyber attacker – whether a hostile government agency, a terrorist organisation or even a militant environmental group – the ideal attack on a target country is to interrupt its citizens’ electricity supply. This is the cyber equivalent of a nuclear strike; when electricity stops, then pretty soon everything else does too. Until now, the only plausible ways to do that involved attacks on critical generation, transmission and distribution assets, which are increasingly well defended. Smart meters change the game.”
Don’t you just love that “secure by design” approach? The government is asking us to believe that a project involving subcontractors from a range of companies going around the country installing networked computing devices in 26 million properties will result in a secure system. This is the same government, incidentally, which is so hot on security that it paid contractors millions of pounds for electronically tagging criminals who were either in prison or dead. All that remains now is for G4S to get some of the smart-meter installation work.
Read full article