Module-OT: A Turnkey Solution for Securing Energy Systems

Research output: NRELPoster

Abstract

The Modular Security Apparatus for Managing Distributed Cryptography for Command-and-Control Messages on Operational Technology Networks (Module-OT) is a flexible and lightweight solution for grid-edge devices focusing on end-to-end security. It is a bump- in- the-wire solution acting as a secure conduit for data between devices or systems across a network. It improves the cybersecurity posture of DER systems by providing authentication, authorization, and data integrity to secure DER communications. Additionally, it performs key management, provides data security through whitelisting Internet Protocol addresses and ports, blocks unauthorized connections, controls user access, and allows serial or Ethernet connections for added flexibility. The core software is portable to various Linux-based operating systems and is developed to be customized by the developer and researcher communities. Module-OT has been validated in the lab, has been demonstrated at a 500-KW PV-plus-storage site, and has been proven ready to secure operational technology devices. Its core functionality meets current standards, including validation procedures of the NIST Cryptographic Algorithm Validation Program (CAVP) and the Federal Information Processing Standard (FIPS 140-2). Because of its capability to provide an accessible and affordable option for stepping up security across modern energy systems, Module-OT can serve as an effective technological option to standardize cybersecurity moving forward.
Original languageAmerican English
StatePublished - 2022

Publication series

NamePresented at the Defense TechConnect Innovation Summit & Expo, 27-29 September 2022, Washington, D.C.

NREL Publication Number

  • NREL/PO-5R00-83842

Keywords

  • cryptography
  • cybersecurity
  • DER systems
  • energy systems security

Fingerprint

Dive into the research topics of 'Module-OT: A Turnkey Solution for Securing Energy Systems'. Together they form a unique fingerprint.

Cite this