Questions of information security and privacy/data protection have been a major field of research within the smart grid domain over the past years. A broad variety of sometimes highly sophisticated approaches, models and communication schemes have been proposed and discussed. Inevitable givens and constraints from the regulatory domain have, however, largely been overlooked in these discussions.
This talk gives a techno-legal overview on the main paradigms and preconditions from European regulation that any approach to smart grid information security and privacy/data protection must allow for in order to be actually applicable. In particular, this refers to the conditions of the liberalised energy market and the various implications arising from them. These will therefore be outlined in order to allow for better-founded discussions on security and privacy / data protection schemes for smart grids in the future.
Finally, a brief overview on current regulatory developments in the field of smart grid information security and privacy will be given, particularly including foreseeable conflicts in the context of the upcoming European General Data Protection Regulation.
Frank Pallas is researcher at the Karlsruhe Institute of Technology’s Center for Applied Legal Studies as well as at the FZI Research Center for Information Technology, Germany. Since receiving his doctorate from the Technical University of Berlin in the field of information security economics and regulation in 2009, he has been working on techno-legal aspects (including, in particular, data protection) of cutting-edge and security-sensitive technologies like Cloud Computing and Smart Grids in various research projects. Furthermore, he holds a guest professorship for information economics and data protection at Technical University of Berlin since 2011.
This talk is part of the "Cyber Security Lecture Series" and organized by the Automation Systems Group at the Institute of Computer Aided Automation supported by the AIT Safety and Security Department.