Cyber and Physical Security Analysis of GSI and Noventum Application for IoT Communications
- Sandia National Laboratories (SNL-NM), Albuquerque, NM (United States)
We present our findings of the red team exercise conducted on the device and application developed by Guardian Sensors, Inc. (GSI) and Noventum. The app is used for situational awareness and control of photovoltaics (PV) and microgrid energy systems. The assessments performed are practical case scenarios that assess the risks and vulnerabilities posed by the app through targeted activities that could be engaged by an adversary. The assessment team’s results and recommendations are provided to inform on and mitigate the identified weaknesses to improve secure user authentication, connections, and communications. The recommendations in this report are not intended to be a security panacea but will add the desired defense-in-depth layer to securing communication of such interconnected systems.
- Research Organization:
- Sandia National Laboratories (SNL-NM), Albuquerque, NM (United States)
- Sponsoring Organization:
- USDOE National Nuclear Security Administration (NNSA); New Mexico Small Business Assistance (NMSBA)
- DOE Contract Number:
- NA0003525
- OSTI ID:
- 2004898
- Report Number(s):
- SAND--2022-10384; 715114
- Country of Publication:
- United States
- Language:
- English
Similar Records
Roadmap for photovoltaic cyber security
Microgrid Cyber Security Reference Architecture (V.1.0)