“We're in a state of crisis,” said Chalk. “The front door is open and there is no lock to be had. There is not a power meter or device on the grid that is protected from hacking - if not already infected - with some sort of trojan horse that can cause the grid to be shut down or completely annihilated.”
“One of the most amazing things that has happened to mankind in the last 100 years is the Internet. It's given us possibility beyond our wildest imagination. But we also know the vulnerabilities that exist inside of it. And then we have the backbone, the power grid that powers our nations. Those two are coming together. And it's the smart meter on your home or business that's now allowing that connectivity.”
Chalk also issued a challenge to governments, media and technology producers to show him one piece of digital technology that is hack-proof.
“The computer companies that are involved, the manufacturers that are involved, bring forward a technology and I will show you that it's penetrable,” said Chalk. “I'll do it on national TV, I'll do it anywhere. But I can guarantee you 100% that there is nothing out there today – nothing – that can't be penetrated.”
Chalk's strong words come amidst increasing reports of the smart grid's fatal insecurities, even from the governments and energy companies who are forcing their hand with the smart program. “Every endpoint [meter] is a new potential threat vector,” according to Doug Powell, manager, SMI Security, Privacy & Safety, for Canadian utility BC Hydro.
And in an interview with Energy Now, former CIA Director James Woolsey was also highly critical of energy policy makers, whose plans received multi-billion dollar funding as part of the Economic Stimulus Act of 2008. “The so-called 'smart grid' that is as vulnerable as what we've got now is not smart at all,” said Woolsey. “It's a really, really stupid grid.”
But there's more. In an audit released in January, the US Inspector General Gregory Friedman was also highly critical. “Without a formal risk assessment and associated mitigation strategy, threats and weaknesses may go unidentified and expose the ... systems to an unacceptable level of risk,” Friedman wrote.
Energy officials knew of these weaknesses but approved plans for the projects anyway, auditors said. “The initial weaknesses had not always been fully addressed, and did not include a number of security practices commonly recommended for federal government and industry systems.”
And security is not the only technologically-based obstacle faced by smart grid proponents. In March, alarm bells were rung following current CIA Director David Patraeus' confirmation that governments will use wireless smart appliances to spy on citizens. “Items of interest will be located, identified, monitored, and remotely controlled through technologies such as radio-frequency identification, sensor networks, tiny embedded servers, and energy harvesters,” Patraeus said at a meeting of In-Q-Tel, the CIA's venture capital firm. He added that this will prompt a rethink of “our notions of identity and secrecy.”
With strong criticism to the smart grid now coming from many directions, energy corporations and governments now have the challenge to explain to an increasingly unapproving public why they continue to fast-track smart grid installations.
Citizen groups and organizations throughout the US, Canada and Europe have launched legal actions to stop the installation of smart meters. They cite issues such as cost increases, health risks, privacy concerns, grid vulnerability and the lack of democratic process. In Chalk's home province of British Columbia, Citizens for Safe Technology and the BC Coalition to Stop Smart Meters are leading a growing challenge.
Options for opting out of the smart metering program have been announced in markets including California, Maine, Vermont, Louisiana, Michigan, Connecticut, Quebec, the UK and the Netherlands. In the US, several regions including the counties of Santa Cruz and Marin are enforcing outright moratoriums.
“Unless we wake up and realize what we're doing, there is 100% certainty of total catastrophic failure of the entire power infrastructure within 3 years,” said Chalk. “This could actually be worse than a nuclear war, because it would happen everywhere. How governments and utilities are blindly merging the power grid with the Internet, and effectively without any protection, is insanity at its finest.”
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.