Word has come from the Cyber Security and Infrastructure Security Agency (CISA) of the Department of Homeland Security that it has gathered data and information that China (PRC) hackers have invaded and placed programs inside major government and non-government American computer programs that manage major infrastructure in the U.S. In the case of conflict between the United States and China, China could institute these cyber hacking programs to shut down the electric grid, the delivery of water, the treatment of wastewater, and the operation of gas pipelines as well as degrade military response.
Director Wray of the FBI reached the same conclusions in testimony recently given to Congress.
In 2019, I sent an in-depth paper describing the threat with a comprehensive Civil Defense Plan on how to respond to the Department of Energy and then to the Department of Homeland Security. I heard from John Ostrander, the responsible person at the Department of Energy who generally agreed with the paper and who recommended that I send It to Homeland Security which has primary jurisdiction. I sent my paper to DHS and have heard nothing.
In light of the recent news, I recommend you read my paper including the recommended Civil Defense Plan. If needed I can send a copy of the paper to you.
Cyberattack; Preparation & Alleviation
To: Major Policy Makers
In his book Lights Out: A Cyberattack, A Nation Unprepared, Surviving the Aftermath, Ted Koppel described the major national security issue of a successful cyberattack on the electric grid and the fact that the government and public are not prepared. The following paper describes the exposure and a civil defense plan to prepare the public. I have taken this subject up through the Secretary of Energy's subject matter expert and he agrees with my analysis and plan. It is a major issue that needs to be addressed before it is too late.
During the last year, the states of Texas and California have faced electricity blackouts due to winter storms, fires, high winds, and high temperatures. Rolling blackouts have occurred, and have shut down parts of the electric system, leaving millions without electricity in freezing cold temperatures for days. However, there is another man-made action that could lead to major electric blackouts, and that is a cyberattack, causing a complete shutdown of one of the major electric grids in the US This could leave tens of millions of Americans without electricity, water, gas, and wastewater treatment for weeks. This type of outage would last until each utility has restarted and then interconnected with all of the other providers. This restarting and interconnecting is termed a “black start”. There is further discussion of black start below.
Ted Koppel, in his book mentioned above, Lights Out, covers this national security issue, including the need to communicate with the American public on this very serious national security issue. With the recent successful cyberattacks that have occurred against our federal government and businesses, a cyberattack happening on our major utilities is just a matter of time, as the director of the FBI has recently stated.
Below is a discussion of what happens if the Western grid interconnection should suffer a cyberattack and has to shut down. Thirty-one utilities interconnected to the loop would go black and up to 60 million Americans would be without electricity, water, gas, and wastewater treatment for about three to six weeks. They would not be prepared to handle such an attack.
The good news is that we can be prepared, and the recent Texas blackouts really demonstrate to us that we need to be prepared. Below is a CIVIL DEFENSE PLAN that should be used by each state and territory in case of a shutdown of the supply of electricity.
The following is part of an exchange I had about the policy and process issues relating to preparing for cyberattack issues on the electric grid. I know a great deal of work has been done to develop emergency plans to respond to earthquakes, but cyberattacks are man-made and at this time, probably much more likely. The public is totally in the dark about this situation, and the threatened impacts are far too significant for this to continue.
The director of the FBI agrees that a cyberattack will happen to the electric grid and other major infrastructure. My concern is that there will be a massive shutdown of electric service and our families will not be prepared to respond to it.
A successful cyber-shutdown of the Western Electric Grid Loop is a major national security issue. Properly defining the exposure to the public and preparing to respond to it is critical to maintaining reliable electric service. It is also a way to bring environmental balance back to the 31 interconnected electric utilities, because of the need to maintain sufficient firm generation resources, ie. coal, nuclear, gas, hydro, and biofusion, rather than solar and wind resources, within the control areas of these interconnected utilities.
First, there is a need to question several existing California and federal policies, such as the California Resource Board’s once-through-cooling regulations, which shut down existing firms generating resources that will be necessary to black start several control areas. To black start areas, here is what happens: Isolated power stations are started individually, and then they are gradually reconnected to one another to form an interconnected system again. It is used when the grid experiences a blackout and must be restarted from scratch.
Second, it brings into question the 50% Renewable Policy Standards and whether compliance with these standards will leave sufficient firm resources within each control area to black start the control areas.
Third, it brings into question the EPA regulation to shut down coal-fired units. There may be a need to exempt certain units for national security reasons.
Finally, the Federal Energy Regulatory Commission’s, (FERC), continuing push for competition needs to be put into question. For example, FERC Order 1000 needs to be put into question. The more we bifurcate the vertically integrated systems, the harder it will be to control them if a successful cyber attack occurs. The concept of restructuring needs to be reviewed and at the least, IOUs need to be given the right to build firm power resources necessary to black start their control areas and the local air quality agencies need to be mandated to issue the necessary Emission Reduction Credits to build the necessary firm generation.
I agree that a successful cyberattack will happen. Therefore, comprehensive federal and individual state plans need to be devised. I wrote Rick XXX at the XXX Firm in Washington D.C. and asked if the California ISO had black start plans in case of an attack. He said yes, but they are confidential for security reasons. For the reasons set forth above and other facts I know, I cannot believe that these plans are complete. The fact that this issue has not been raised to civil defense and major policy issues shows that the government is not in command of the problem, or does not have the problem sufficiently on its radar.
MAJOR CIVIL DEFENSE PLAN
In approaching a major civil defense plan to respond to the exposure of having the Western Electric Loop shut down due to a cyberattack, several steps need to be taken in planning for a unified government, electric, gas, and water utility response.
First, the public needs to be educated on the importance of this serious national exposure, and every family unit should be encouraged to have three weeks of water and dry foodstuffs in store, as well as a heat source to cook them. This is exactly like earthquake planning in Southern California, except all the structures are left standing.
All emergency generators will be started, and sufficient fuel for these generators will be maintained at their locations for six weeks. A complete inventory of the locations of the emergency generation will be conducted by the county governments, along with each city government. Additional generators will be acquired at centralized shelters to provide heating or cooling centers for the local population. Facilities with solar power should install storage batteries to make maximum use of the solar power that can be generated each day. Finally, emergency generators should be placed at all water and gas pumping stations as well as at all water purification plants. Gas stations should be required to have emergency generators, as well as all police and fire stations. Major government offices should also have emergency generators. Next, emergency generators will be required at all hospitals, assisted nursing homes, and other essential medical and emergency facilities. Also, grocery stores, food and water storage, and distribution facilities should have emergency generators as well.
Second, the state and county governments, in coordination with FEMA, (the Federal Emergency Management Agency), will take control of all public and private food and fuel distribution centers. Pursuant to a coordinated federal, state, regional, and local government civil defense plan, food and water for the population in each county for a period of an additional three weeks needs to be distributed. Central distribution centers at churches and schools need to have been set up ahead of time and a specific implementation process put in place. Also, the National Guard needs to be prepared to be called up, along with all available police, sheriff, and state troopers, in order to maintain order.
Each electric utility should be broken into its own electric control area and given the responsibility to completely black start its individual control area within three weeks. The assured deliverance of the required natural gas to power the firm's generating resources must be assured in advance. The black start will begin around the substations that are close to the firm generating resources, and slowly move out from there. Because of the break up of the vertically integrated utility, an emergency plan must be developed between the distribution, transmission, and generation utilities in each control area on how to black start the individual control areas.
The primary focus should be put on black starting the firm-generating facilities that will keep the water and gas utilities running. Next, education of the public on how the black start process will work and how the civil defense plans will work before and during the restoration process needs to take place. We have earthquake plans similar to this, but cyberattacks are more likely, and the response will be different and can be much more manageable.
For the first two weeks, only authorized vehicles will be allowed on the streets except in an emergency situation or at designated times set for going to food and water distribution centers.
This whole process should be completed in three weeks but should be designed to stretch out to six weeks if necessary. At this point in time, the control areas should be designed to function for six months without reconnecting to the loop. This will provide time for a determination of how the cyber attack occurred, and for a solution to be developed to fix and stop it. In addition, the civil defense plans should be reviewed and modified where necessary. Also, all water and foodstuff should be replenished.
Be safe. Tom Taber, 13 major company awards including the highest. Company changed the retirement program to try and get me to stay. Consulted for Bob Foster and LPA for 16 years and then TDBU on I-710 expansion for over two years.
Note: Black Start
National Renewable Energy Laboratory: Black start is the ability of generation to restart parts of the power system to recover from a blackout. This entails isolated power stations being started individually and gradually reconnected to one another to form an interconnected system again. It is used when the grid experiences a blackout and must be restarted from scratch. As such, black start is a critical resource for maintaining the reliability and resilience of the electric power system and is central to system restoration and recovery plans for system operators.
Wikipedia: A black start is the process of restoring an electric power station, a part of an electric grid or an industrial plant, to operation without relying on the external electric power transmission network to recover from a total or partial shutdown.
Kent's Note: None of the websites I visited to learn about black start capitalized the term. A few of them used it as "blackstart".