Integrated Network Solutions for Power Utility Substations Address Security

The core of any substation network design is a comprehensive long term architectural vision. Ethernet technology belongs at the core of this architecture; it’s importance is recognized by IEC

61850 and UCA architectures. Today, this versatility can be achieved ... with security included.

Ethernet has become a low-cost physical media, universally accepted across power utility network systems suppliers. In substation environments, it provides enormous data network capacity for substations operations, including

multi-Gigabit capacity for video surveillance, high-volume file transfers and high-priority security systems traffic.

GarrettCom’s integrated network solutions include not
only the Industrial Ethernet Core, but also an Ethernet Edge,
WAN access and Serial Edge—all of which are inter-related,
inter-operable and integrated with network-wide approach-
es to physical security, network access, network security and
network resiliency. GarrettCom’s Magnum DX multi-protocol
routers, with both Ethernet and serial port connectivity,
combine with the company’s flagship Magnum 6K line of
managed Ethernet switches to address needs such
as intensified security and selective traffic filtering.
NERC/CIP security requirements are one driving
factor for integrated solutions. Layer 2 Ethernet
switches and port-based security solutions must
be integrated with Layer 3 and 4 router protec-
tions. Electronic Perimeter Security (CIP-005)
requires “firewall” capability on all routable
network connections (meaning all “IP” based con-
nections) leaving the substation boundary. Also,
inside the substation, unused physical and logical
ports must be disabled. Systems Security (CIP-007)
requires substation network elements themselves
(as “systems”) to have user access controls with
strong passwords and differentiated user profiles,
as well as extensive logging of security, network
management and network operation events.
Logging for these activities must be linked to cen-
tralized archival, auditing and security compliance
management systems.

Security requirements for substation networks will continue to evolve, with sophisticated security requirements increasingly migrating from enterprise networks into substations, factories and other industrial environments. Industrial-grade Magnum DX routers and 6K switches combine to provide IP routing functions, including static and dynamic routing; flexible physical or virtual (per VLAN) traffic filtering options; and substa-tion-hardened (not office-grade or merely rugged) components. These unique combinations of capabilities provide a powerful new set of secure networking solutions for industrial networks.

Contact information: 510-438-9071 marketing@garrettcom.com