Control Centers to ESPs Environment - #9

This environment encompasses the requirements for communications between utility control centers and Energy Service Providers (ESPs) or “aggregators”.

Typical Applications: Real-time pricing negotiations, aggregated customer metering and settlements. May provide data later used for market operations.

Characteristics: A business-to-business environment, therefore having very strict requirements for security, a contractual level of timeliness and record-keeping. ESPs are a volatile business environment, so the data may need to be reconfigured on a monthly basis. Any metering data is usually aggregated and sent in infrequent “batches”, so it does not carry data at high volumes or speeds.

Similar Environments: Technologically very similar to other business-to-business environments, but connections and associations change frequently.

Definition: This environment is defined by the following requirements:

Communication and Information Requirements that Define this Environment

Configuration Requirements

Support peer to peer interactions
Support interactions across widely distributed sites
Support the frequent change of configuration and/or location of end devices or sites

Quality of Service Requirements

Provide medium speed messaging on the order of 10 seconds
Support contractual timeliness (data must be available at a specific time or within a specific window of time)
Support medium availability of information flows of 99.0+ (~3.5 days)

Security Requirements

Provide Identity Establishment Service (you are who you say you are)
Provide Authorization Service for Access Control (resolving a policy-based access control decision to ensure authorized entities have appropriate access rights and authorized access is not denied)
Provide Information Integrity Service (data has not been subject to unauthorized changes or these unauthorized changes are detected)
Provide Confidentiality Service (only authorized access to information, protection against eavesdropping)
Provide Inter-Domain Security Service (support security requirements across organizational boundaries)
Provide Non-repudiation Service (cannot deny that interaction took place)
Provide Security Assurance Service (determine the level of security provided by another environment)
Provide Audit Service (responsible for producing records, which track security relevant events)
Provide Security Policy Service (concerned with the management of security policies)
Provide Path and Routing Quality of Security (being able to determine a secure communication path)
Provide Firewall Transversal
Provide User Profile and User Management (combination of several other security services)
Provide Security Protocol mapping (the ability to convert from one protocol to another)
Provide Security Discovery (the ability to determine what security services are available for use)

Network and System Management Requirements

Provide Network Management (management of media, transport, and communication nodes)
Support extensive data validation procedures

Data Management Requirements

Support timely access to data by multiple different users
Support management of data whose types can vary significantly in different implementations
Support specific standardized or de facto object models of data
Provide discovery service (discovering available services and their characteristics)
Provide conversion and protocol mapping
Support the management of data across organizational boundaries