Securing the future of customer energy resources through PKI

The coordination of consumer energy resources (CER) in Australia is critical to using our energy system more efficiently and keeping customer costs down.. Coordination requires communication with devices, and that communication needs to be secure. ENA and Synergy are teaming up to deliver a single public key infrastructure (PKI) technology for the energy sector to secure communications with CER. A request for tender is currently out for PKI service providers to deliver this service, and you can help by promoting the visibility of this.  

What is a PKI and why is it important? 

The shared language for utilities to communicate with CER devices is called the common smart inverter profile – Australia, or CSIP-AUS. PKI technology ensures the protection of the communication pathway between a utility, retailer or aggregator and a CER device. The device responds to the communication because it comes with a token, kind of like a digital passport, that helps it be recognised as a trusted device.  

A harmonised implementation of CSIP-AUS supported by a single PKI technology for the energy sector is important because it allows for interoperability of devices and those who communicate with them. In addition to promoting effective coordination of CER, interoperability has two main benefits:  

1. equipment manufacturers and installers have less hassle ensuring devices can be communicated with, regardless of location or the party wishing to communicate with the device; and 

1. give industry, government and system operators greater confidence that the largest generator in the NEM (rooftop solar) has good practice cybersecurity in place. 

Why are ENA and Synergy leading this work? 

The benefits outlined above underpin a single PKI for the energy sector being one of many items set out in the CER Roadmap, the main plan for the effective integration of CER into the energy system. The CER Roadmap identifies ENA and Synergy as the entities responsible for the delivery of this item.  

ENA and Synergy are jointly leading this work is because distribution networks in the east, and the government retailer (Synergy) in the west, have been tasked by governments with the responsibility to deliver the solar backstop mechanism. That is, the tool that AEMO will call upon as a last resort measure to boost demand on the power system to avoid the loss of critical system security services that keep the lights on.  

While ENA and Synergy are leading the way initially to ensure the timely delivery of backstop mechanisms, the CER Roadmap makes it clear that the technology is needed for the long term as other use cases scale and evolve, such as virtual power plants (VPPs) or smart EV charging.  

How will the national PKI for energy be delivered?  

The delivery of a single national PKI technology for the energy sector will be managed by a new entity, the National Energy Public Key Infrastructure (NEPKI). NEPKI will be a not-for-profit incorporated joint venture. Its founding members will be ENA and Synergy, and it will be capable of finding a long-term home once the governance and other arrangements for CER that are to be developed through the CER Roadmap eventually catch up. 

NEPKI will procure services from a PKI provider who will make those services available to users, initially the distribution businesses and Synergy. A few key aspects of NEPKI and the services it provides: 

• its purpose and objective will include procuring and managing PKI services on behalf of Australian users and promoting cyber security and interoperability  

• as a not-for-profit entity, NEPKI would only seek to recover its costs and the costs of the PKI provider’s service from its users, and  

• its governance arrangements will allow the efficient extension of PKI services to new users, with independent and broad industry representation on key governance bodies, such as the NEPKI board and advisory groups.  

The structure and substance of this work is being overseen by the Australian Department of Climate Change, Energy, the Environment and Water (DCCEEW) in its capacity as stewards of the CER Roadmap.  

The delivery of a single national PKI for the energy sector will require several regulatory approvals, such as ACCC authorisation. The proposed structure will need to be revisited if approvals are not forthcoming.  

What’s next for the PKI project? 

A broad consortium of industry participants is collaborating to develop the commercial delivery model and initial functional and technical specifications for the PKI services. This includes clear specification for the service to be able to be extended to new use cases and new users.  

While NEPKI has not yet been incorporated, ENA and Synergy have released a request for tender (on Tenders.net) for PKI providers to respond to. You can help the energy sector secure the best service by sharing this with your contacts in the cyber security industry. 

All running to plan, a single national PKI service for the energy sector will be available to users from mid-2025, bringing up one step closer to a secure, renewable and least cost future.