SmartMeters Facilitate Cyber War Against US
(c) Copyright 2011 David j Dilworth
This didn’t happen — yet.
“Within a quarter of an hour, 157 major metropolitan areas have been thrown into knots by a nationwide power blackout hitting during rush hour. . .
“Subways have crashed in New York, Oakland, Washington, and Los Angeles. . . . Aircraft are literally falling out of the sky as a result of midair collisions across the country. . . . Several thousand Americans have already died.”
This is an excerpt from “Cyber War” by Richard Clarke, former National Security Advisor to Presidents Obama and Bush. Its an “edgy account of America’s vulnerability to hackers, both state-sponsored and individual, especially from China.” – Seymour Hersch, Online Threat, New Yorker, Nov 2010
How does this relate to us as individuals? Well, a local scientist, Monterey Councilman Jeff Haferman, raised a concern at a Monterey Council meeting about Smartmeters. He asked “If PG$E (local electric power provider) can turn off your power remotely with a smartmeter, what keeps a hacker from doing that ?” Or worse, he asked “what keeps a hacker from turning off whole neighborhoods – or an entire community ?“
The PG&E representative was silent until prompted to respond. “I don’t have any information on that. I’ll get back to you.” That was in February, its now October and PG&E has made no response or answer yet.
What we have learned since then is that your data going out and PG&E’s “Power Shutoff” radio commands are not encrypted at the neighborhood level. This means “Smart”meter communication data is in “plain English” — it is readable by anyone with a laptop and WiFi. This means your so-called “Smart”meter is easily controlled by anyone with a laptop and a WiFi. Is this a wild speculative fantasy? No.
This “Fraternal” WiFi Break-In Did Happen:
Here’s a recent CBS article giving an actual example of a virtually identical break in of medical equipment – “Black hat hacker can remotely attack insulin pumps and kill people.” The article mentions already successful WiFi attacks on heart pacemakers and defibrillators. (“Pacemakers and implanted defibrillators are vulnerable to wireless attacks that could kill tens of thousands“)
“could allow outside agents to seize control of the grid and disrupt the flow of electricity across the nation.”
Even if utilities like PG&E ever intended to add encryption as a policy – some “smart”meters don’t really encrypt their data —
“Verizon has also discovered problems with some smart meters being sold on the market. In one case, a smart meter developer claimed their device was encrypted but Verizon’s tests showed it was protected only by a basic authentication mechanism.”
So here’s (most of) the recipe an ordinary and not-even-clever foreign spy could follow (in his spare time) to shut down our whole community’s electric power. He does not need to have any hacking skills. (It took an amateur computer user only two days to get more control than is described here.)
1. Rent a cheap house.
2. Turn on laptop to start recording the unencrypted Smartmeter signals. The unencrypted signals are at 900 MHz (megahertz) and if the premise also has a “smart” gas meter, the frequency from the electric meter to the gas meter is 2.4 GHz (gigahertz) – the same as your WiFi.
3. Then stop paying the bill – until PG&E sends the radio frequency shutoff command to your Smartmeter through the air.
4. After PG&E has turned off your power, then pay the Bill so PG&E turns power back by sending the radio frequency “ON command” to your Smartmeter through the air.
5. Analyze the recorded data to uncover the (unencrypted) “Shutoff command” and the “ON command.”
6. Repeat at another house until you find the general format for the “Shutoff command.”
Compare the signals sent to the first house and the second house to see how the “Shutoff command” changes from one house to another. (It probably just uses a 10 to 14 digit incrementing system for a specific neighborhood. Ten digits would allow more than a billion devices.)
Now the foreign spy will have all the information needed to shut down your house electricity and millions of others– and probably all electricity and gas for your community’s businesses and government as well. (I will not publish any information on how to broadcast the data to actually shut the meters off.) It is likely that the format of the “Shutoff command” and the “ON command” is the same or has very little variation across the US.
I’m not the only one concerned about this potential harm. One firm “successfully reverse engineered a smart meter–known as Advanced Metering Infrastructure (AMI)–and demonstrated the ability to inject a worm into the grid that would grant a hacker full control over the grid devices.”
Presidential Security Advisor Richard Clarke is right. Just because there is not yet any documented widespread power outage caused by hackers – does not mean it cannot happen. Clarke may have some technical details a bit off, but his description of the threat to our nation’s electrical power system is alarmingly accurate.
Commentary: The so-called “Smart”meter blitz is a greed driven rush to ignore serious harm by PG&E that the California Public Utilities Commission rubber-stamped and refused to require an Environmental Impact Report.
Then we need to require SmartER meters (SmartER-meters Solve All the “Smart-meter” Problems) that eliminates WiFi (commands and data privacy loss) and the dangerous high-amp fire hazard switch.
Additional reading :