America looks to solar as power costs soar

25% Tariff on Canadian Imports threatens New York energy markets, disrupting hydroelectric power and natural gas supply chains, raising electricity prices, increasing gas costs, and intensifying trade tensions, policy uncertainty, and cross-border logistics risks.

Key Points

A U.S. policy imposing 25% duties on Canadian goods, risking higher New York electricity and natural gas costs.

✅ Hydroelectric and gas imports face costlier cross-border flows

✅ Higher utility bills for NY households and businesses

✅ Supply chain volatility and policy uncertainty increase

President Donald Trump announced the imposition of a 25% tariff on all imports from Canada, citing concerns over drug trafficking and illegal immigration. This decision has raised significant concerns among experts and residents in New York, who warn that the tariff could lead to increased electricity and gas prices in the state.

Impact on New York's Energy Sector

New York relies heavily on energy imports from Canada, particularly electricity and natural gas. Canada is a major supplier of hydroelectric power to the northeastern United States, including New York, with its electricity exports at risk amid trade tensions. The imposition of a 25% tariff on Canadian goods could disrupt this supply chain, leading to higher energy costs for consumers and businesses in New York. Justin Wilcox, an energy analyst, stated, "If the tariff is implemented, it could lead to increased costs for electricity and gas, affecting both consumers and businesses."

Potential Economic Consequences

The increased energy costs could have broader economic implications for New York, and some experts advise against cutting Quebec's exports to avoid exacerbating market volatility. Higher electricity and gas prices may lead to increased operational costs for businesses, potentially resulting in higher prices for goods and services, while tariff threats have boosted support for Canadian energy projects that could reshape regional supply. This could exacerbate the cost-of-living challenges faced by residents and strain the state's economy.

Political and Diplomatic Reactions

The tariff has also sparked political and diplomatic reactions, including threats to cut U.S. electricity exports from Ontario that raised tensions. New York Governor Kathy Hochul expressed concern over the potential economic impact, stating, "We are closely monitoring the situation and are prepared to take necessary actions to protect New York's economy." Additionally, Canadian officials have expressed their disapproval of the tariff, and Ontario Premier Doug Ford's Washington meeting underscored ongoing discussions, emphasizing the importance of the trade relationship between the two countries.

Historical Context

This development is part of a broader pattern of trade tensions between the United States and its neighbors. In 2018, the U.S. imposed tariffs on Canadian steel and aluminum, leading to retaliatory measures from Canada. The current situation underscores the ongoing challenges in international trade relations, where a recent tariff threat delayed Quebec's green energy bill and highlighted the potential domestic impacts of such policies.

The imposition of a 25% tariff on Canadian imports by President Trump has raised significant concerns in New York regarding potential increases in electricity and gas prices. Experts warn that this could lead to higher costs for consumers and businesses, with broader economic implications for the state. As the situation develops, it will be crucial to monitor the responses from both state and federal officials, as well as how Canadians support tariffs on energy and minerals may influence policy, and the potential for diplomatic negotiations to address these trade tensions.

Related News

• Electricity Forum News

• Energy Policy News

Tunisia Smart Grid Project advances with an AFD loan as STEG deploys smart meters in Sfax, upgrades grid infrastructure, boosts energy efficiency, curbs losses, and integrates renewable energy through digitalization and advanced communication systems.

Key Points

A national program funded by an AFD $131.7M loan to modernize STEG, deploy smart meters, and integrate renewable energy.

✅ 430,000 smart meters in Sfax during phase one

✅ 20-year AFD loan with 7-year grace period

✅ Cuts losses, improves efficiency, enables renewables

The Tunisian parliament has approved taking a $131.7 million loan from the French Development Agency for the implementation of a smart grid project.

Parliament passed legislation regarding the 400 million dinar ($131.7 million) loan plus a grant of $1.1 million.

The loan, to be repaid over 20 years with a grace period of up to 7 years, is part of the Tunisian government’s efforts to establish a strategy of energy switching aimed at reducing costs and enhancing operational efficiency.

The move to the smart grid had been postponed after the Tunisian Company of Electricity and Gas (STEG) announced in March 2017 that implementation of the first phase of the project would begin in early 2018 and cover the entire country by 2023.

STEG was to have received funding some time ago. Last year at the Africa Smart Grid Summit in Tunis, the company said it would initiate an international tender during the first quarter of 2019 to start the project.

The French funding is to be allocated to implementation of the first phase only, which will involve development of control and communication stations and the improvement of infrastructure, where regulatory outcomes such as the Hydro One T&D rates decision can influence investment planning in comparable markets.

It includes installation of 430,000 “intelligent” metres over three years in Sfax governorate in southern Tunisia. The second phase of the project is planned to extend the programme to the rest of the country.

Smart metres to be installed in homes and businesses in Sfax account for about 10% of the total number of metres to be deployed in Tunisia.

At the beginning of 2017, the Industrial Company of Metallic Articles (SIAM), a Tunisian industrial electrical equipment and machinery company, signed an agreement with Huawei for the Chinese company to supply smart electricity metres. The value of the deal was not disclosed.

The smart grid is designed to reduce power waste, reduce the number of unpaid bills, prevent consumer fraud such as power theft in India across distribution networks, improve the ecosystem and increase competitiveness in the electricity sector.

Experts said the main difference between the traditional and smart grids is the adoption of advanced infrastructure for measuring electricity consumption and for communication between the power plant and consumers. The data exchange allows power plants to coordinate electricity production with actual demand.

STEG previously indicated that it had implemented measures to ensure the transition to the smart grid, especially since digitalisation is playing an important role in the energy sector.

The project, which translates Tunisia’s energy plans in the form of a partnership between the public and private sectors, aims at reaching 30% of the country’s electricity need from renewable sources by 2025, even as entities like the TVA face climate goals scrutiny that can affect electricity rates in other markets.

The development of the smart grid will allow STEG to monitor consumption patterns, detect abuses and remotely monitor the grid’s power supply, at a time when regulators have questioned UK network profits to spur efficiency, underscoring the value of transparency.

“The smart grid will change the face of the energy system towards the use of renewable energies,” said Tunisian Industry Minister Slim Feriani. At the forum on alternative energies, he pointed out that energy sector digitisation requires investments in technology and a change in the consumption mentality, as new entrants consider roles like Tesla electricity retailer plans in advanced markets.

Official data indicate that Tunisia’s energy deficit accounts for one-third of the country’s annual trade deficit, which reached record levels of more than $6 billion last year.

STEG, whose debts have reached $329 million over the past eight years, a situation resembling Manitoba Hydro debt pressures in Canada, has not disclosed when and how funding would be secured for the completion of the second phase. The company insists it is working to prevent further losses and to collect its unpaid bills.

STEG CEO Moncef Harrabi, earlier this year, said: “The current situation of the company has forced us to take immediate action to reduce the worsening of the crisis and stop the financial bleeding caused by losses.”

He said the company had repeatedly asked the government to pay subsidy instalments due to the company and to enact binding decisions to force government institutions and departments to pay electricity bills, while elsewhere measures like Thailand power bill cuts have been used to support consumers.

The Tunisian government has yet to disburse the subsidy instalments due STEG for 2018 and 2019, which amount to $658 million. STEG also imports natural gas from Algeria for its power plants at a cost of $1.1 billion a year.

Related News

• Electricity Forum News

• T&D Business News

Alberta Utility Rate Rider will add a modest fee to electricity bills and natural gas charges as the AUC recovers outstanding debt from the COVID-19 deferral program via AESO and the Balancing Pool.

Key Points

A temporary surcharge on Alberta power and gas bills to recover unpaid COVID-19 deferral debt, administered by the AUC.

✅ Applies per kWh and per GJ based on consumption

✅ Recovers unpaid balances from 2020-21 bill deferrals

✅ Collected via AESO and the Balancing Pool under AUC oversight

The province says Alberta ratepayers should expect to see an extra fee on their utility bills in the coming months.

That fee is meant to recover the outstanding debt owed to gas and electricity providers resulting from last year's three-month utility deferral program offered to struggling Albertans during the pandemic.

The provincial government announced the utility deferral program in March 2020 then formalized it with legislation, alongside a consumer price cap on power bills that shaped later policy decisions.

The program allowed residential, farm and small commercial customers who used less than 250,000 kilowatt hours of electricity per year — or consumed less than 2,500 gigajoules per year — to postpone their bills amid the COVID-19 pandemic.

According to the province, 350,000 customers, or approximately 13 per cent of the natural gas and electricity consumer base, took advantage of the program.

Customers had a year to repay providers what they owed. That deadline ended June 18, 2021.

The Alberta Utilities Commission (AUC), which regulates the utilities sector and natural gas and electricity markets and oversees a rate of last resort framework, said the vast majority of consumers have squared up.

But for those who didn't, provincial legislation dictates that Alberta ratepayers must cover any unpaid debt. The legislation exempts Medicine Hat utility customers for electricity and gas co-operative customers for gas.

"When the program was announced, it was very clear that it was a deferral program and that the monies would need to be paid back," said Geoff Scotton, a spokesperson with the Alberta Utilities Commission.

"Now we're in the situation where the providers, in good faith, who enabled those payment deferrals, need to be made whole. That's really the goal here."

Amount to be determined
Margeaux Maron, a spokesperson for Associate Minister of Natural Gas and Electricity Dale Nally, said based on early estimates, $13 to $16 million of $92 million in deferred payments remain outstanding.

As a result, the province expects the average Albertan will end up paying, unlike jurisdictions offering a lump-sum credit, a fraction of a dollar extra per monthly gas and electricity bill over a handful of months.

Scotton said at this point, there are too many unknown factors to know the exact size of the rate rider. However, he said he expects it to be modest.

Scotton said affected parties first have until the end of this week to notify the AUC exactly how much they are still owed.

Those parties include the Alberta Electric System Operator and the Balancing Pool, who essentially acted as bankers with respect to the distribution and transmission of the utilities to customers who deferred their payments.

Regulated service providers may also seek reimbursement on administrative and carrying costs, even as issues like a BC Hydro fund surplus spark debate elsewhere.

Then, Scotton said, once the outstanding amounts are known, the AUC will hold a public proceeding, similar to a Nova Scotia rate case, to determine the amount and the duration of the rate rider to be applied to each natural gas and electricity bill.

The amount will be based on consumption: per kilowatt hour for electricity and per gigajoule for natural gas.

That means larger businesses will end up paying more than the average Albertan.

Scotton said the AUC will expedite the hearing process and it expects to have a decision by the end of the summer.

Rate rider a 'surprise'
Joel MacDonald with Energyrates.ca — an organization which compares energy rates across the country — said it's not the amount of the rate rider that bothers him, but the fact that the repayment process wasn't made clear at the onset of the program.

"It came to us as a bit of a surprise," MacDonald said.

He said what was sold as a deferral program seems more like an electricity rebate program, or an "ability to pay" program.

"As opposed to the retailers looking into collection methods, anything that wasn't paid is basically just being forced upon all Alberta consumers," MacDonald said.

The expectation set out in the deferral legislation and regulations state utility providers such as Enmax and Epcor are expected to use reasonable efforts to try to collect the unpaid balances. It must then detail those reasonable efforts to the AUC.

A spokesperson for Enmax said it first works with its customers to find manageable payment arrangements and connects them with support services if they are unable to pay.

Then, if payment can't be arranged, it said it will work with a collection agency, which may even result in disconnection of service.

The spokesperson said only after all efforts have failed would Enmax seek reimbursement through this program.

Use tax revenues?
MacDonald also questioned why a government program isn't being paid for through general tax revenues.

He compared the utility deferral program to a mortgage subsidy program.

"Imagine that [Canada Mortgage And Housing Corporation] said, 'Hey, we had to give mortgage deferrals and some of these people never paid back their deferrals, so we're going to add an extra $300 to everyone's mortgage,'" he said.

"You'd expect that to come off of some sort of general taxation — not being assigned to other people's mortgages, right?"

In response, Maron said due to the current fiscal challenges facing the government — and the expected minimal costs to consumers, and even as a consumer price cap on electricity remains in place — it was determined that a rate rider would be an appropriate mechanism to repay bad debt associated with the program.

Scotton said rate riders aren't unusual — they're used to fine-tune rates for a set period of time.

He said under normal circumstances, regulated service providers can apply to the AUC to impose a rate rider to recover unexpected costs. And in some instances, they can provide a credit.

But in this situation, he said the debt is aggregated and, in turn, being collected more broadly.

Related News

• Electricity Forum News

• Energy Policy News

US Power Grid Cyberattacks target utilities and nuclear plants, probing SCADA, ICS, and business networks at sites like Wolf Creek; suspected Russian actors, malware, and spear-phishing trigger DHS and FBI alerts on critical infrastructure resilience.

Key Points

Intrusions on energy networks probing ICS and SCADA, seeking persistence and elevating risks to critical infrastructure.

✅ Wolf Creek nuclear plant targeted; no operational systems breached

✅ Attackers leveraged stolen credentials, malware, and spear-phishing

✅ DHS and FBI issued alerts; utilities enhance cyber resilience

Hackers working for a foreign government recently breached at least a dozen US power plants, including the Wolf Creek nuclear facility in Kansas, according to current and former US officials, sparking concerns the attackers were searching for vulnerabilities in the electrical grid.

The rivals could be positioning themselves to eventually disrupt the nation’s power supply, warned the officials, who noted that a general alert, prompting a renewed focus on protecting the U.S. power grid, was distributed to utilities a week ago. Adding to those concerns, hackers recently infiltrated an unidentified company that makes control systems for equipment used in the power industry, an attack that officials believe may be related.

The chief suspect is Russia, according to three people familiar with the continuing effort to eject the hackers from the computer networks. One of those networks belongs to an ageing nuclear generating facility known as Wolf Creek -- owned by Westar Energy Inc, Great Plains Energy Inc, and Kansas Electric Power Cooperative Inc -- on a lake shore near Burlington, Kansas.

The possibility of a Russia connection is particularly worrying, former and current official s say, because Russian hackers have previously taken down parts of the electrical grid in Ukraine and appear to be testing increasingly advanced tools, including cyber weapons to disrupt power grids, to disrupt power supplies.

The hacks come as international tensions have flared over US intelligence agencies’ conclusion that Russia tried to influence the 2016 presidential election, and amid U.S. government condemnation of Russian power-grid hacking in recent advisories. The US, which has several continuing investigations into Russia’s activities, is known to possess digital weapons capable of disrupting the electricity grids of rival nations.

“We don’t pay attention to such anonymous fakes,” Kremlin spokesman Dmitry Peskov said, in response to a request to comment on alleged Russian involvement.

It was unclear whether President Donald Trump was planning to address the cyber attacks at his meeting on Friday with Russian President Vladimir Putin. In an earlier speech in Warsaw, Trump called out Russia’s “destabilising activities” and urged the country to join “the community of responsible nations.”

The Department of Homeland Security and Federal Bureau of Investigation said they are aware of a potential intrusion in the energy sector. The alert issued to utilities cited activities by hackers since May.

“There is no indication of a threat to public safety, as any potential impact appears to be limited to administrative and business networks,” the government agencies said in a joint statement.

The Department of Energy also said the impact appears limited to administrative and business networks and said it was working with utilities and grid operators to enhance security and resilience.

“Regardless of whether malicious actors attempt to exploit business networks or operational systems, we take any reports of malicious cyber activity potentially targeting our nation’s energy infrastructure seriously and respond accordingly,” the department said in an emailed statement.

Representatives of the National Security Council, the Director of National Intelligence and the Nuclear Regulatory Commission declined to comment. While Bloomberg News was waiting for responses from the government, the New York Times reported that hacks were targeting nuclear power stations.

The North American Electric Reliability Corp, a nonprofit that works to ensure the reliability of the continent’s power system, said it was aware of the incident and was exchanging information with the industry through a secure portal.

“At this time, there has been no bulk power system impact in North America,” the corporation said in an emailed statement.

In addition, the operational controls at Wolf Creek were not pierced, according to government officials, even as attackers accessed utility control rooms elsewhere in the U.S., according to separate reports. “There was absolutely no operational impact to Wolf Creek,” Jenny Hageman, a spokeswoman for the nuclear plant, said in a statement to Bloomberg News.

“The reason that is true is because the operational computer systems are completely separate from the corporate network.”

Determining who is behind an attack can be tricky. Government officials look at the sophistication of the tools, among other key markers, when gauging whether a foreign government is sponsoring cyber activities.

Several private security firms, including Symantec researchers, are studying data on the attacks, but none has linked the work to a particular hacking team or country.

“We don’t tie this to any known group at this point,” said Sean McBride, a lead analyst for FireEye Inc, a global cyber security firm. “It’s not to say it’s not related, but we don’t have the evidence at this point.”

US intelligence officials have long been concerned about the security of the country’s electrical grid. The recent attack, striking almost simultaneously at multiple locations, is testing the government’s ability to coordinate an effective response among several private utilities, state and local officials, and industry regulators.

Specialised teams from Homeland Security and the FBI have been scrambled to help extricate the hackers from the power stations, in some cases without informing local and state officials. Meanwhile, the US National Security Agency is working to confirm the identity of the hackers, who are said to be using computer servers in Germany, Italy, Malaysia and Turkey to cover their tracks.

Many of the power plants are conventional, but the targeting of a nuclear facility adds to the pressure. While the core of a nuclear generator is heavily protected, a sudden shutdown of the turbine can trigger safety systems. These safety devices are designed to disperse excess heat while the nuclear reaction is halted, but the safety systems themselves may be vulnerable to attack.

Homeland Security and the FBI sent out a general warning about the cyber attack to utilities and related parties on June 28, though it contained few details or the number of plants affected. The government said it was most concerned about the “persistence” of the attacks on choke points of the US power supply. That language suggests hackers are trying to establish backdoors on the plants’ systems for later use, according to a former senior DHS official who asked not to be identified.

Those backdoors can be used to insert software specifically designed to penetrate a facility’s operational controls and disrupt critical systems, according to Galina Antova, co-founder of Claroty, a New York firm that specialises in securing industrial control systems.

“We’re moving to a point where a major attack like this is very, very possible,” Antova said. “Once you’re into the control systems -- and you can get into the control systems by hacking into the plant’s regular computer network -- then the basic security mechanisms you’d expect are simply not there.”

The situation is a little different at nuclear facilities. Backup power supplies and other safeguards at nuclear sites are meant to ensure that “you can’t really cause a nuclear plant to melt down just by taking out the secondary systems that are connected to the grid,” Edwin Lyman, a nuclear expert with the Union of Concerned Scientists, said in a phone interview.

The operating systems at nuclear plants also tend to be legacy controls built decades ago and don’t have digital control systems that can be exploited by hackers. Wolf Creek, for example, began operations in 1985. “They’re relatively impervious to that kind of attack,” Lyman said.

The alert sent out last week inadvertently identified Wolf Creek as one of the victims of the attack. An analysis of one of the tools used by the hackers had the stolen credentials of a plant employee, a senior engineer. A US official acknowledged the error was not caught until after the alert was distributed.

According to a security researcher who has seen the report, the malware that activated the engineer’s username and password was designed to be used once the hackers were already inside the plant’s computer systems.

The tool tries to connect to non-public computers, and may have been intended to identify systems related to Wolf Creek’s generation plant, a part of the facility typically more modern than the nuclear reactor control room, according to a security expert who asked to note be identified because the alert is not public.

Even if there is no indication that the hackers gained access to those control systems, the design of the malware suggests they may have at least been looking for ways to do so, the expert said.

Stan Luke, the mayor of Burlington, the largest community near Wolf Creek, which is surrounded by corn fields and cattle pastures, said he learned about a cyber threat at the plant only recently, and then only through golfing buddies.

With a population of just 2,700, Burlington boasts a community pool with three water slides and a high school football stadium that would be the envy of any junior college. Luke said those amenities lead back to the tax dollars poured into the community by Wolf Creek, Coffey County’s largest employer with some 1,000 workers, 600 of whom live in the county.

E&E News first reported on digital attacks targeting US nuclear plants, adding it was code-named Nuclear 17. A senior US official told Bloomberg that there was a bigger breach of conventional plants, which could affect multiple regions.

Industry experts and US officials say the attack is being taken seriously, in part because of recent events in Ukraine. Antova said that the Ukrainian power grid has been disrupted at least twice, first in 2015, and then in a more automated attack last year, suggesting the hackers are testing methods.

Scott Aaronson, executive director for security and business continuity at the Edison Electric Institute, an industry trade group, said utilities, grid operators and federal officials were already dissecting the attack on Ukraine’s electric sector to apply lessons in North America before the US government issued the latest warning to “energy and critical manufacturing sectors”. The current threat is unrelated to recently publicised ransomware incidents or the CrashOverride malware, Mr Aaronson said in an emailed statement.

Neither attack in Ukraine caused long-term damage. But with each escalation, the hackers may be gauging the world’s willingness to push back.

“If you think about a typical war, some of the acts that have been taken against critical infrastructure in Ukraine and even in the US, those would be considered crossing red lines,” Antova said.

Related News

• Electricity Forum News

• Grid Technologies News

Wind Turbine Cancer Claim debunked: Iowa Republican senators back wind energy as fact-checks and DOE research find no link between turbine noise and cancer, limited effects on property values, and manageable wildlife impacts.

Key Points

Claims that turbine noise causes cancer, dismissed by studies and officials as unsupported by evidence.

✅ Grassley and Ernst call the claim idiotic and ridiculous

✅ DOE studies find no cancer link; property impacts limited

✅ Wildlife impacts mitigated; climate change poses larger risks

President Donald Trump may not be a fan of wind turbines, as shown by his pledge to scrap offshore wind projects earlier, suggesting that the noise they produce may cause cancer, but Iowa's Republican senators are big fans of wind energy.

Sen. Chuck Grassley called Trump's cancer claim "idiotic." On Thursday, Sen. Joni Ernst called the statement "ridiculous."

"I would say it's ridiculous. It's ridiculous," Ernst said, according to WHO-TV.

She likened the claim that wind turbine noise causes cancer to the idea that church bells do the same.

"I have church bells that ring all the time across from my office here in D.C. and I know that noise doesn't give me cancer, otherwise I'd have 'church bell cancer,'" Ernst said, adding that she is "thrilled" to have wind energy generation in Iowa, which aligns with a quarter-million wind jobs forecast nationwide. "I don't know what the president is drawing from."

Trump has a history of degrading wind energy and wind turbines that dates back long before his Tuesday claim that turbines harm property values and cause cancer, and often overlooks Texas grid constraints that can force turbines offline at times.

Not only are wind farms disgusting looking, but even worse they are bad for people's health.

"Not only are wind farms disgusting looking, but even worse, they are bad for people's health," Trump tweeted back in 2012.

Repeated fact-checks have found no scientific evidence to support the claim that wind turbines and the noise they make can cause cancer. The White House has reportedly provided no evidence to support Trump's cancer claim when asked this week

"It just seems like every time you turn around there's another thing the president is saying -- wind power causes cancer, I associate myself with the remarks of Chairman Grassley -- it's an 'idiotic' statement," Pelosi said in her weekly news conference on Thursday.

The president made his latest claim about wind turbines in a speech on Tuesday at a Republican spring dinner, as the industry continued recovering from the COVID-19 crisis that hit solar and wind energy.

"If you have a windmill anywhere near your house, congratulations, your house just went down 75 percent in value -- and they say the noise causes cancer," Trump said Tuesday, swinging his arm in a circle and making a cranking sound to imitate the noise of windmill blades. "And of course it's like a graveyard for birds. If you love birds, you never want to walk under a windmill. It’s a sad, sad sight."

Wind turbines are not, in fact, proven to have widespread negative impacts on property values, according to the Department of Energy's Office of Scientific and Technical Information in the largest study done so far in the U.S., even as some warn that a solar ITC extension could be devastating for the wind market, and there is no peer-reviewed data to back up the claim that the noise causes cancer.

I am considered a world-class expert in tourism. When you say, 'Where is the expert and where is the evidence?' I say: I am the evidence.

It's true wildlife is affected by wind turbines -- particularly birds and bats, with research showing whooping cranes avoid turbines when selecting stopover sites. One study estimated between 140,000 and 328,000 birds are killed annually by collisions with turbines across the U.S. The U.S. Energy Information Administration estimated, however, that other human-related impacts also contribute to declines in population.

The wind industry works with biologists to find solutions to the impact of turbines on wildlife, and the Department of Energy awards grants each year to researchers addressing the issue, even as the sector faced pandemic investment risks in 2020. But, overall, scientists warn that climate change itself is a bigger threat to bird populations than wind turbines, according to the National Audobon Society.

Speaker Nancy Pelosi: "It just seems like every time you turn around, there's another thing. The president is saying wind power causes cancer. I associate myself with the remarks of Chairman Grassley; It's an 'idiotic' statement"

Related News

• Electricity Forum News

• Renewable Energy News

Canadian Industrial IoT Cybersecurity Standards aim to unify device security for utilities, smart grids, SCADA, and OT systems, aligning with NERC CIP, enabling certification, trust marks, compliance testing, and safer energy sector deployments.

Key Points

National standards to secure industrial IoT for utilities and grids, enabling certification and NERC CIP alignment.

✅ Aligns with NERC CIP and NIST frameworks for energy sector security

✅ Defines certification, testing tools, and a trusted device repository

✅ Enhances OT, SCADA, and smart grid resilience against cyber threats

The Canadian energy sector has been buying Internet-connected sensors for monitoring a range of activities in generating plants, distribution networks facing harsh weather risks and home smart meters for several years. However, so far industrial IoT device makers have been creating their own security standards for devices, leaving energy producers and utilities at their mercy.

The industry hopes to change that by creating national cybersecurity standards for industrial IoT devices, with the goal of improving its ability to predict, prevent, respond to and recover from cyber threats, such as emerging ransomware attacks across the grid.

To help, the federal government today announced an $818,000 grant support a CIO Strategy Council project oversee the setting of standards.

In an interview council executive director Keith Jansa said the money will help a three-year effort that will include holding a set of cross-country meetings with industry, government, academics and interest groups to create the standards, tools to be able to test devices against the standards and the development of product repository of IoT safe devices companies can consult before making purchases.

“The challenge is there are a number of these devices that will be coming online over the next few years,” Jansa said. “IoT devices are designed for convenience and not for security, so how do you ensure that a technology an electricity utility secures is in fact safeguarded against cyber threats? Currently, there is no associated trust mark or certification that gives confidence associated with these devices.”

He also said the council will work with the North American Electric Reliability Corporation (NERC), which sets North American-wide utility safety procedural standards and informs efforts on protecting the power grid across jurisdictions. The industrial IoT standards will be product standards.

According to Robert Wong, vice-president and CIO of Toronto Hydro, all the big provincial utilities are subject to adhering to NERC CIP standards which have requirements for both cyber and physical security. Ontario is different from most provinces in that it has local distribution companies — like Toronto Hydro — which buy electricity in bulk and resell it to customers.  These LDCs don’t own or operate critical infrastructure and therefore don’t have to follow the NERC CIP standards.

Regional reforms, such as regulatory changes in Atlantic Canada, aim to bring greener power options to the grid.

Electricity is considered around the world as one of a country’s critical national infrastructure. Threats to the grid can be used for ransom or by a country for political pressure. Ukraine had its power network knocked offline in 2015 and 2016 by what were believed to be Russian-linked attackers operating against utilities.

All the big provincial utilities operate “critical infrastructure” and are subject to adhering to NERC CIP (critical infrastructure protection) standards, which have requirements for both cyber and physical security, as similar compromises at U.S. electric utilities have highlighted recently.  There are audited on a regular basis for compliance and can face hefty fines if they fail to meet the requirements.  The LDCs in Ontario don’t own or operate “critical infrastructure” and therefore are not required to adopt NERC CIP standards (at least for now).

The CIO Strategy Council is a forum for chief information officers that is helping set standards in a number of areas. In January it announced a partnership with the Internet Society’s Canada Chapter to create standards of practice for IoT security for consumer devices. As part of the federal government’s updated national cybersecurity strategy it is also developing a national cybersecurity standard for small and medium-sized businesses. That strategy would allow SMBs to advertise to customers that they meet minimum security requirements.

“The security of Canadians and our critical infrastructure is paramount,” federal minister of natural resources Seamus O’Regan said in a statement with today’s announcement. “Cyber attacks are becoming more common and dangerous. That’s why we are supporting this innovative project to protect the Canadian electricity sector.”

The announcement was welcomed by Robert Wong, Toronto Hydro’s vice-president and CIO. “Any additional investment towards strengthening the safeguards against cyberattacks to Canada’s critical infrastructure is definitely good news.  From the perspective of the electricity sector, the convergence of IT and OT (operational technology) has been happening for some time now as the traditional electricity grid has been transforming into a Smart Grid with the introduction of smart meters, SCADA systems, electronic sensors and monitors, smart relays, intelligent automated switching capabilities, distributed energy resources, and storage technologies (batteries, flywheels, compressed air, etc.).

“In my experience, many OT device and system manufacturers and vendors are still lagging the traditional IT vendors in incorporating Security by Design philosophies and effective security features into their products.  This, in turn, creates greater risks and challenges for utilities to protecting their critical infrastructures and ensuring a reliable supply of electricity to its customers.”

The Ontario Energy Board, which regulates the industry in the province, has led an initiative for all utilities to adopt the National Institute of Standards and Technology (NIST) Cybersecurity Framework, along with the ES-C2M2 maturity and Privacy By Design models, he noted.  Toronto Hydro has been managing its cybersecurity practice in adherence to these standards, as the city addresses growing electricity needs as well, he said.

“Other jurisdictions, such as Israel, have invested heavily on a national level in developing its cybersecurity capabilities and are seen as global leaders.  I am confident that given the availability of talent, capabilities and resources in Canada (especially around the GTA) if we get strong support and leadership at a federal level we can also emerge as a leader in this area as well.”

Related News

• Electricity Forum News

• Grid Technologies News