Menu

Cybersecurity,
Interoperability and Data

The current frame for digital activities in ENTSO-E is provided by its IT Strategy that was approved in 2017. This has led to the establishment of a Digital committee that is the advisory body to ENTSO-E on Digital matters. The ENTSO-E IT Strategy has clearly identified interoperability and cybersecurity as two of the founding capabilities for ENTSO-E’s information systems. This has led to the development of an ENTSO-E Cyber Security Strategy that was approved in the first months of 2019.
In this context, relevant activities are steered as detailed in the following paragraphs.

Cybersecurity

Protecting TSOs’ systems and network operation tools against cyber-attacks is obviously of paramount importance for the security of electricity supply. For several years now, ENTSO-E has been acting as a platform for the sharing of best practice between TSOs. The entry into force of the CEP tasked ENTSO-E with the mandate to promote cyber security and data protection in cooperation with relevant authorities and regulated entities (Art. 30.1.n Reg. 943/2019).

Under the framework of the Connecting Europe Facility (CEF) project, ENTSO-E carried out the following cybersecurity activities:

Activity 1: Cybersecurity design
  • ISO 27001 TSO Scope & Secure Software ­Development Lifecycle (SSDLC)
  • Risk Impact Matrix & Data Classification
  • Supply Chain security & procurement
  • Tech. & operation cybersecurity standards
Activity 2: Identify requirements for a cybersecurity testing facility
Activity 3: Cybersecurity Operations Centre

Moreover, ENTSO-E performed cyber risk assessments on the main ENTSO-E legally mandated IT platforms: CGM, EAS, Transparency Platform and Outage Planning Coordination/Short Term Adequacy Assessment Process (OPC/STA). Regarding the latter, ENTSO-E performed external penetration testing and drafted the Security Plan.

Finally, ENTSO-E’s participation in the European Commission Smart Grid Task Force, EG 2 – Working group on Cyber­security culminated with the publication of the final report in June 2019. The working group focused on the cyber security aspects of cross-border electricity flows, and on common minimum requirements, planning, monitoring, reporting and crisis management for the electricity subsector.

Data exchange standards:
Ensuring pan-European interoperability

tandards facilitate cross-border exchange and allow for the efficient and reliable identification of different objects and parties relating to the internal energy market and its operations. Standards also support the implementation of network codes in various ways, and several of ENTSO-E’s IT tools and data environment, such as the OPDE, rely on standards. In accordance with Art. 30.1.k of the Electricity Regulation (943/2019), ENTSO-E should contribute to the establishment of interoperability requirements and non-discriminatory and transparent procedures for accessing data.

ENTSO-E develops and maintains an Electronic Data Interchange library to enable interoperability between actors in the electrical industry in Europe. As part of this activity, 11 implementation guides, including profiles based on the Common Information Model (CIM), were developed or updated in support of several IT projects of ENTSO-E and TSOs, e.g. the Transparency Platform (including publication processes for capacity allocation configuration, outage, Transmission, data extraction, EB GL, Financial Settlement of KΔf, ACE and ramping period, SO GL and transparency reporting), European balancing platforms (aFRR, RR) and coordinated capacity calculation. In addition, a new release of the Common Grid Model Exchange Standard (CGMES 3.0) was developed to support the CGM building process required by the Network Codes and the TYNDP.

In 2019, ENTSO-E also published a new version of the Harmonised Electricity Market Role Model that includes the roles from the Network Codes.

Standardisation activities in 2019 also included continued collaboration with the standardisation organisation European Committee for Electrotechnical Standardisation (CENELEC) and the International Electrotechnical Commission (IEC), especially in relation to the implementation of network codes:

Committee Draft on balancing processes
(IEC 62325-451-7);

New Work Item on HVDC processes
(IEC 62325-451-8);

Committee Draft for CIM base
(IEC 61970-301 Ed7);

Committee Draft for Voting on CGMES
(IEC 61970-600-1&2).

Download

ENTSO-E Annual Report 2019

This Annual Report covers the period from January to December 2019. It focuses on the legal mandates given to ENTSO-E. Activities covered in this report have been performed thanks to the 42 members of ENTSO-E who provide its financial resources and whose staff provides expertise to the Association.

Chapters:

  1. System Operation
  2. Market
  3. System Development
  4. Transparency Regulation
  5. Research, Development and Innovation
  6. Cybersecurity, Interoperability and Data
  7. TSO–DSO partnership and demand side flexibility
Download the full report (PDF, 4.2 Mb)
ENTSO-E Annual Report 2019