Ensuring autonomy of the Microgrid assets using Protocol Specific RBAC for Major Utility in the Asia Pacific [IEC62351 based DNP3…
Kalkitech December 25, 2023
Kalkitech December 25, 2023
Customer: Utility in Asia Pacific Region
Industry: Microgrids. Defined as a group of interconnected load and distributed energy resources (DER) with clearly defined electrical boundaries that act as a single controllable entity concerning the Main Grid.
Business Case:
In a scenario, where multiple Microgrids & utility main power lines were connected to form an interconnected grid, the individual Asset Owners of various Micro Grids lost control and autonomy of their assets.
Asset Owners, therefore, needed to evolve a mechanism to allow Microgrid Assets to be connected to the Main Grid but still retain Functional Autonomy of their owned assets.
The mechanism must factor in the following Use cases:
Solutions:
The Business case criteria were fulfilled by having the Microgrid Network introduced with a combination of DNP3 SAV5 based Kalkitech SYNC Protocol Gateways and an RBAC Application Server to enforce Microgrid Asset segmentation.
Solution Components:
Application Segmentation for Network Access to shared DER/Microgrid Asset resources was created so that a DER resource within the same Microgrid was allowed to be read and controlled by its own DER Controllers but access to outside Controllers would be limited by real-time operational rules.
This Application Segmentation was achieved by DNP3 SAv5 Protocol Gateway Devices with Roles Based Access Control (RBAC) to create Operational Network boundaries for sharing or denying access to Microgrid controllers outside its segmental zone.
Each Segment zone had at least one Kalkitech SYNC2000 gateway (licensed with DNP SAv5 and Role-based access controls application client) and communications between two different security zones were routed through the respective security gateways with agreed access controls.
An Administrative Access Controller Server, owned by the designated corporatized owner was singled out to be the Main Role Base Access Controller for all the SYNC RBAC Gateways. This system would set Roles as defined by the Workflow Policy agreed by all Microgrid assets Owners.
Operations on SYNC2000 Gateway were invoked based on permissions. The permission to read or write can be revoked or allowed by the centralized Administrative Access Controller in real-time
Irrespective of the protocols supported by the downstream Microgrid asset controllers, the interfacing SYNC2000 at the operational boundary of each Microgrid segment talked to each other on the DNP SAv5 protocol.
Micro-Grid Controllers of anyone Grid can now issue a read/control command to one or more Microgrid resources within another zone (as per Resource Operational levels assigned real-time) through the SYNC2000 Gateways at the boundary of each security zone
.
Key Benefits:
Webinar Link:ย Webinar on the complete Solution
October 30, 2024
With many countries pursuing their carbon neutral goals, policies are framed to boost the usage of Electric Vehicles. This may give some tough times for power utilities in terms of…
Know MoreJuly 31, 2024
The energy landscape is rapidly evolving, with distributed energy resources (DERs) like solar panels, wind turbines, and energy storage systems becoming increasingly prevalent. These resources offer immense potential for a…
Know MoreJuly 1, 2024
As cities gear up to seamlessly integrate smart meters into their existing infrastructure, implementation agencies often complain about the inability to test mass command execution use cases or mass alarm…
Know More