Cyber Security

BED’s Aurora Vulnerability Customer Information Sheet

In June 2007, the Department of Homeland Security (DHS) shared a video documenting an experiment conducted in March 2007 at the Department of Energy’s (DOE’s) Idaho lab, where using only digital means, researchers hacked into a “power plant's” generator and caused it to self destruct.  The event is now called the “Aurora Vulnerability”, and reportedly served as a wake-up call for regulators to guard against cyber-security threats to critical infrastructure like power plants and the telecom system.  The Aurora Vulnerability is a situation where not only are there cyber related threats on the grid; there are operationally related adverse impacts as well.  The North American Electric Reliability Corporation (NERC) asked for industry input and involvement in trying to implement strategies to remedy the current vulnerabilities and to address Congress and the Federal Energy Regulatory Commission’s (FERC) concerns.  Since NERC’s notification and regional posting on March 15, 2010, BED has worked diligently in preparing a working plan to help mitigate the risk of an Aurora attack.  This plan was completed as of December 13, 2012.  If you have any questions regarding BED’s “Aurora Vulnerability”, please contact us at (802) 658-0300.

Revised 12/14/12