Risk
10/5/2012
07:58 PM
Dark Reading
Dark Reading
Products and Releases
Connect Directly
RSS
E-Mail
50%
50%

Smart Grids: A Data Privacy Protection Nightmare?

GlobalData expects the smart grid cybersecurity market to exhibit huge growth before the end of the decade

LONDON, UK (GlobalData), 17 September 2012 - By enabling more efficient transmission and distribution of electricity, smart grids are rapidly gaining popularity around the world. However, concerns are growing that the two-way flow of information the technology involves threatens privacy and could potentially compromise personal data, says a new report by energy industry experts GlobalData.

The latest report* states that while governments worldwide prepare to spend billions on securing smart grid infrastructure from external threats, large portions of the global community are fighting the potential harvest and dissemination of personal information by utility companies and other organizations.

Data collected through various smart grid technologies such as smart meters and smart appliances helps utilities to understand their consumers' electricity consumption patterns. Based on these patterns, companies can plan their generation, provide more effective services, and also reduce peak-hour demand or load by forming suitable demand-response programs.

Worries for data privacy arise when the data collected from smart grid technologies is used to analyze the personal habits, lifestyle and behavior of consumers, beyond providing them with efficient electricity services.

In the US, a lack of clarity about the ownership and responsibility over energy consumption data has raised concerns among the population about data safety, whereas in 2009 large scale consumer group protests in the Netherlands forced the Dutch government to back down from plans to enforce the mandatory installation of smart meters in all households.

Canada is one of the few smart grid markets to recognize the significance of consumer data privacy to its citizens, creating a set of guidelines in the 1990s known as Privacy by Design in the 1990s. This has prompted major utilities in Canada to incorporate security features into their smart grid systems.

GlobalData expects the smart grid cyber security market to exhibit huge growth before the end of the decade, climbing from a global value of $7.8 billion in 2011 to $79 billion in 2020.

* Cyber Security in Smart Grid – Market Size, Key Issues, Regulations and Outlook to 2020

-ENDS-

-NOTES TO EDITORS-

This report provides insights into global developments related to cyber security in smart grid.

This report was built using data and information sourced from proprietary databases, primary and secondary research, and in-house analysis conducted by GlobalData's team of industry experts.

-ABOUT GLOBALDATA-

GlobalData is a leading global business intelligence provider offering advanced analytics to help clients make better, more informed decisions every day. Our research and analysis is based on the expert knowledge of over 700 qualified business analysts and 25,000 interviews conducted with industry insiders every year, enabling us to offer the most relevant, reliable and actionable strategic business intelligence available for a wide range of industries.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Flash Poll
Current Issue
Cartoon
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-2963
Published: 2014-07-10
Multiple cross-site scripting (XSS) vulnerabilities in group/control_panel/manage in Liferay Portal 6.1.2 CE GA3, 6.1.X EE, and 6.2.X EE allow remote attackers to inject arbitrary web script or HTML via the (1) _2_firstName, (2) _2_lastName, or (3) _2_middleName parameter.

CVE-2014-3310
Published: 2014-07-10
The File Transfer feature in WebEx Meetings Client in Cisco WebEx Meetings Server and WebEx Meeting Center does not verify that a requested file was an offered file, which allows remote attackers to read arbitrary files via a modified request, aka Bug IDs CSCup62442 and CSCup58463.

CVE-2014-3311
Published: 2014-07-10
Heap-based buffer overflow in the file-sharing feature in WebEx Meetings Client in Cisco WebEx Meetings Server and WebEx Meeting Center allows remote attackers to execute arbitrary code via crafted data, aka Bug IDs CSCup62463 and CSCup58467.

CVE-2014-3315
Published: 2014-07-10
Cross-site scripting (XSS) vulnerability in viewfilecontents.do in the Dialed Number Analyzer (DNA) component in Cisco Unified Communications Manager allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCup76308.

CVE-2014-3316
Published: 2014-07-10
The Multiple Analyzer in the Dialed Number Analyzer (DNA) component in Cisco Unified Communications Manager allows remote authenticated users to bypass intended upload restrictions via a crafted parameter, aka Bug ID CSCup76297.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Marilyn Cohodas and her guests look at the evolving nature of the relationship between CIO and CSO.