Security Level 2021220 Pave Smart Way for Smart

Security Level: 2021/2/20 Pave Smart Way for Smart Grid Huawei www. huawei. com HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential

Outline l Connect Internet of Things l Communication networks for Smart Grid l Further radio access network evolvement HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Page 2

“Single”架构支撑“无代”演进 X D S L F T T x Single Metro Single. RAN GSM/UMTS/HSPA / LTE … … Appn P S T N App 1 L T E … 400 G/ 1 T U M T S … 40 G/ 100 G G S M Single BSS Single OSS … Single Backbone … LTE/ LTE-A Single. Cloud GSM/ UMTS app PON/ NG-PON app ADSL / VDSL app FAN RAN IP+Optical Cloud Platform Single. FAN 全IP技术 ADSL/VDSL/PON/ Ng-PON … 多张垂直网络 Single 融合网络 产品平台 代代演进 支撑 100倍流量增长和未来十 年新兴技术 基于全IP的高智能平台，实现 新兴技术即插即用 HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Page 5

From connect people to connect things l 7 billion people vs 50 billion machines HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Page 7

M 2 M business classification M 2 M Vertical markets Horizontal markets Safety, logistic, Military, goverment, Smart Grid, ITS environment monitor Characteristics Networks Characteristics n wide coverage, depp n existing n specificat coverage penetration n large capacity infrastrcutre n defined capacity n upgrate capacity n glitch accepted n No glitch at all n stringent security n security HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Networks n private infrastrcuture

Future of smart grid Future power industry ecosystem 2020+… Weather forecast: Fine, strong wind More wind power generation Less power generation Solar power M. SANCHEZ, 2006, ‘Quelle: European Technology Platform Smart. Grids Hydropower Power consumption prediction Biology power Sea wind power Thermal power temporary shutting down Local control center Solar power equipment More green power generation More family solar generation Less expenditure for electric auto Power distribution Power user management Charge station Power reservation SMES Real-time and accurate information are smart grid foundation HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Page 9

Outline l Connect Internet of Things l Communication networks for Smart Grid l Further radio access network evolvement HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Page 10

What is Smart Grid? • Smart grids are characterized by a two-way flow of electricity and information and is capable of monitoring everything from power plants and customer preference to individual appliances HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Page 11

Communication networks for Smart Grid HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential

Huawei smart grid solution overview Power Plant Business user Subscriber Renewable energy Central control Generation Transmission Consumption Distribution OLT Huawei Solution OTN Ultra long distance transmission ONU Optical and IP network Router LTE BS ATO CPE ADO Smart meter AMI Solution Features 1. Strong smart grid communication structure: end to end real-time, high-speed and two-way communication solution, elevate dispatch efficiency, reduce manpower cost, enhance power grid security 2. Easy maintenance: unified network deployment and management reduce operating expense HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Page 13

Huawei’s value for power industry Elevate operations efficiency ØEnd to end real time grid status displaying facilitate power dispatch Reduce operations expense ØAccurate dispatch reduce power generation cost ØEnd to end integrated NM reduce network maintenance const Huawei solution Network smooth evolution ØEnd to end network capability smooth upgrade to face high bandwidth service challenge (video surveillance etc. ) Improve grid security ØReal time grid security surveillance and control End to end smart grid communication system vendor HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Page 14

Dispatch automation network requirements 1 plant transmission distribution 2 Super long distance transmission: the deployment of super high voltage power transmission sites are national wide and the distance between various sites is so long. Network smooth evolution: dispatch, management and surveillance information in same transmission network need higher bandwidth, network smooth evolution End to end synchronization : GPS solution cost is high and hardly be deployed in some scenarios End to end network high security, Qo. S, reliability : dispatch data network include power generation, transmission, transformer and distribution, end to end real-time, two-way data is necessary Easy network management : abundant sites but need unified deployment and operation HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Page 15

Dispatching data network topology NE 40 E National Dispatching Backbone Network NE 40 E National Dispatching Center NE 40 E Regional Dispatching Network NE 40 E Local Dispatching Network State Dispatching Center NE 40 E NE 20 E Local Dispatching Center Substation Power plant HUAWEI TECHNOLOGIES CO. , LTD. Substation Power plant Huawei Confidential Substation Page 16 Power plant

Service isolation by MPLS VPN PE PE Real-Time VPN Non Real-Time VPN PE p Identify the different services, and separate real-time services, data services and ordinary Internet access services and encapsulate the different services into the different VPN, thus implementing security isolation between different services p MPLS VPN can provide security protection to the leased line subscriber. HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Page 17

Security principle of Huawei Solution Cooperation Immunity 1. Desktop control 2. Application monitoring 3. In-depth sense In depth Defense Credible Guarantee 4. Integrated management 5. Cooperation between security systems 1. Centralized authentication 1. Security zone division 2. Unified authorization 2. Access control 3. Behavior audit 3. Defense against intrusion 4. Password protection 4. Security tunnel Information Security HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Page 18

End-to-End Qos guaranteed Power Plant server Transformer Substation Dispatch Center Service category Real-time services Service MPLS Exp Gold 5, 6 Sliver 1, 2, 3, 4 Bronze 0 EMS/SCADA AMR Voice None real-time None-real-time 1 services None-real-time 2 Data Class of Service Internet file transfer HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Qos（Quality of Service） on Demand Bandwidth strictly ensured; low delay; low jitter; no packet loss Bandwidth non-strictly ensured; low delay; low jitter, no packet loss No bandwidth ensured; high delay; high jitter, little packet loss Page 19

High reliability network VPN FRR BFD for VPN FRR PE BFD for LSP SP F CE r. O IGP Fast convergence/ IP FRR BF D fo IGP(OS PF, RIP, etc. ) Enhanced-VRRP Backup backup Link protected Route Fast Convergence and Fast Re-Routing p Smartlink: 50 ms p p STP/RSTP/MSTP: <1 second Enhanced. VRRP: 50 ms p IGP Fast Convergence: 200 ms p LDP FRR: 50 ms p MPLS VPN FRR: 200 ms p NSF: 0 ms p BFD: 50 ms smartlink HUAWEI TECHNOLOGIES CO. , LTD. PE MPLS VPN Master active PE P VRRP BFD for VRRP STP/RTSP /MSTP CE LDP FRR PE VRRP PE P Huawei Confidential Page 20

Recent progress of smart grid l “First Wave” (2007 – 2010 in North America, Europe) p Introduced Smart Meters, AMI, some Distributed Energy Resources (DERs, e. g. PV) at network edge p Promise of residential demand response, plug-in vehicle integration (but still in trials) p l No integration with utility operations (in particular, distribution SCADA) “Second Wave” (begins 2011, worldwide) p Extensible infrastructure for critical utility operations p Supporting high level of DER penetration and systems integration p Communications focus: high-reliability Field Area Network, M 2 M applications, more hierarchical/distributed control HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential

Smart Grid wireless solution Smart Grid RAN based on LTE Smart metering p TDD-LTE based p IEEE 802. 15. 4 PHY/MAC p 1. 8 GHz licensed bands p Zig. Bee Pro protocols p Support 30, 000 UE/cell p Zig. Bee Smart Energy Profile p Access density 512 times/sec p OTA feature support p High reliability(99. 99%) p Tablet based IHD p Ultra Low latency (12 ms) p Smart metering solution HUAWEI TECHNOLOGIES CO. , LTD. ü Gateway demo ü IHD demo Huawei Confidential Page 22

Traffic characteristics of Smart Grid AMI Uplink Packet length(bytes/event) • Downlink DA Uplink Downlink 2264. 36 25831. 3 148. 47 100. 34 Packet interval (/device/second) 4. 88 e-4 1. 509 e-5 0. 0514 Data rate ( bit/s） 8. 84 3. 12 761. 88 585. 3 AMI and DA are in the same network § including asset monitor and mobile workforces HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Page 23

Key issues for Smart Grid distribution automation l High density access of UE p 30, 000 meters to finish 2, 400 bytes in 180 s l 99. 99% reliability within 100 ms l Multiple priorities of data l Long coverage p l >20 years life time p l >25 km, -20 d. B additional loss Scalability Security HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Page 24

LTE based network for smart grid collector Power System Management Center ASN-GW BS Smart Metering BS EMS BS Collector/router Ethernet/RS 485 PLC Optical fiber IEDs Distribution Automation RF mesh LTE HUAWEI TECHNOLOGIES CO. , LTD. Smart Metering Huawei Confidential Page 25

Flexible networking for AMI and Distribution Sparse/low density residential area, industrial area LTE only Medium/high density residential, building RF Mesh/RS 485+LTE Collector/router CPE IED Collector + LTE CPE smart meter/IED + Wi. MAX module/CPE HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Page 26

E 2 E security system Storage Air Wiretapping （Data encryption） Illegal LTE terminal access （LTE terminal authentication） Server ● Border Protection Portal ● e. NB Backhaul Unauthorized using LTE network ASN-GW IP/MPLS （User authentication） e. NB The attack between legitimate terminal e. NB Security Transmission Radius attack （IPSec/VLAN/GRE） （IPSec Tunnel） （Sever IP Authentication filter） Meter Business Security Data encryption l Terminal authentication l User authentication l HUAWEI TECHNOLOGIES CO. , LTD. Network Security Equipment Security ACL filter/Flood protection l OM data encryption (SSL) l Physical isolation (VLAN) l Huawei Confidential VPN/IPSec l DHCP/PMIP message protection l Radius signaling protection l OS harden l Page 27

Guaranteed E 2 E reliability Reliable Equipment l 99. 999% system availability l Geographical ASN-GW redundancy IP/MPLS Network Meter BS ASN-GW Storage BS Reliable Wireless link l Data error correction l Data error check & retransmission l link adaptation Reliable Wired link l “Hot backup” link l Auto connection failure detection and alarming Server Backup l Database backup to ensure data security Multiple E 2 E Mechanisms to Ensure High Reliability HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Server Page 28

Huawei end-end smart grid solutions Finished projects Ongoing/scheduled projects Harbin Chang chun Yinchuan Tianjin Taiyuan Jinan Xining Lhasa Shen yang Beijing Hohhot Urumqi Xian Chengdu Chong qing Zhengz hou Wuhan Hefei Shanghai Chang sha Guiyang Kun ming Nanjing Nanning Nanch ang Hangz hou Fuzhou Guangzhou Haikou HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Page 29

SGCC integrated data network backbone l Background Ø l As SGCC’s Smart Grid program, the informational platform named SGBackground Ø ERP The is integrated data of the National Power Grid system carries services of the in integrative the key tonetwork manage the entire power services power production management areas, including the schedule and production and unified. management area and management information area (such as the office Ø In 2009, Huawei has helped SGCC to build the IDN (Integrated Data automation system, management information system, and distance education Network) system). backbone, covering 25 provinces, to take on SGCC integrated services. l Huawei Solution Ø The integrated data network adopted a 3 -layer architecture involving national, regional and provincial nodes. Huawei NE 40 E/NE 20 E routers were used to set up core, backbone and access layer, by MPLS technology. The entire network adopted a semi-full-mesh or full-mesh , to eliminate single-point failure on the backbone links. VPN Qo. S/H-Qo. S was deployed and the device and link reliability design was adopted, paving a way for new services such as video and voice services. Ø Ø l Benefits Ø Ø Ø The ERP system has been strongly supported by IDN, to provide unified and intelligent management platform for SGCC. Based on the uniform communication platform, and high quality video phone and video meeting services are applied by SGCC. The entire network has the N-1 protection, without single failure point, so that the security and reliability of power services are improved greatly. HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Dispatch Generation Transmission Substation Distribution Information Consume

Smart metering of British Gas • DECC (Department of Energy and Climate Change) will replace 50 million power and gas meter in UK. • BG is cooperating with VDF (WAN), Landis+Gyr (HAN), Trilliant (software), OSIsoft (hold meter data) • Per BG’s private standard, the WAN must support GPRS, DLMS and roaming SIM. HAN must comply with Zig. Bee and support OTA. • HAN include power meter, gas meter, power switch and in-home display. HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Page 31

Huawei’s device for BG • U 8220+Zig. Bee SD card • Android V 2. 2 • Mobile display and remote controller Mobile Display • IDEOS S 7+Zig. Bee SD card • Android V 2. 2 • In-home display and device controller In Home Display • Home gateway • Zig. Bee/Wi. Fi/3 G cellular，Linux 2. 6 Gateway HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Page 32

Smart Grid solution based on TDD-LTE • TDD-LTE network with 5 MHz bandwidth • 1000 field devices • 99. 99% reliability within 100 ms • VOIP support • Case Active users/sector/MHz Downlink 70 Uplink 67 Metering support AMI user number PRACH collision probability Access completion delay(min) Data transmission delay (min) End-to-end delay (min) 5000 0. 017558 6. 38 0. 71 7. 09 10000 0. 034701 12. 98 1. 42 14. 4 15000 0. 047728 19. 74 2. 13 21. 87 HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Page 33

Dalian DA experiment TDD network Client requirement p p p Dalian TDD DA network is an experiment network sponsored by State Grid The target is to provide a secure, reliable, accessible communication pipe for Dalian’s grid system. Requirement: practical, reliable, wide-coverage, accessible, mature industrial chain. Technique solution p p Build a network with 4 base stations and 39 terminal based on 4 G communication technologies. CG-Bras network provides a reliable DA network, which can also provide other applications such as smart metering and video surveillance. 4 G system Value p p The experiment network shows the high reliability and high security of 4 G network applied in smart grid. Low cost, quick, support multiple smart grid applications. Huawei is the first 4 G smart grid builder. State Grid set up the second experiment network plan based on the success in Dalian. HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential backhaul Page 34

Outline l Connect Internet of Things l Communication networks for Smart Grid l Further radio access network evolvement HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Page 35

Challenges for Smart Grid communications l Technology Obsolescence p l Fast innovation pace of ICT technologies Scalability of data and performance p How to handle the applications and services that’s not envisioned today? l Distributed energy p l How can Smart Grid accommodate distributed energy resources? Lack of Interoperable Standards p Complex system of sub-systems HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Page 36

Preliminary vision on M 2 M Incubation phase p A few small M 2 M applications in the existing network l Take-off phase p With more M 2 M device/traffic, there is a need to update/ optimize the network for M 2 M applications. l Explosion phase p M 2 M device/traffic becomes far Impact on H 2 H/H 2 M users l Re-design/engineer RAN Support M 2 M RAN Optimization Categories to mitigate impact M 2 M traffic carried transparently over legacy RAN Incubation phase beyond that of H 2 H p Explosion phase Take-off phase The network should be M 2 M object/traffic designed for M 2 M HUAWEI TECHNOLOGIES CO. , LTD. We are here now Huawei Confidential Page 37

Revisit vision on M 2 M Horizontal markets Human-human (H 2 H) network Vertical markets Machine-machine (M 2 M) network H 2 H M 2 M throughput Subscribers in 2020 Coverage Working Time Bandwidth range 7 B urban + rural busy hour Kbps~Mbp s nationwide 7*24 bps~Gbps 50 B HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential reliability, robustness

What kind of LTE technology is needed? Vertical player? Operator? Vender? l. Is throughput or capacity the only target? Optimal Tradeoff Oriented LTE HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential

Low cost l What will happen? Ø Capacity is greater than needed for Smart Grid Ø Ø More power consumption ü OPEX ü Ø Roaming, CN machines Low efficiency for small data ü l defined traffic load Signaling overhead Tradeoff towards capacity- power-cost HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential

Reliability and latency l l In LTE, reliability is achieved by HARQ and coding ü A HARQ will introduce 10 ms latency ü The longer Turbo coding books, the better or Resource vs reliability + latency Ø ITS and mobile health HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential ?

Key take away l An End-End Smart Grid communications system shall be standards-based to make sure interoperability. l The Huawei Smart Grid solution features end-end communication from the access of substations and power plants through transmission and distribution bearing, to distribution automation and AMI. l Huawei dedicates to the network improvements for Smart Grid communications HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Page 42

Thanks for listening ! HUAWEI TECHNOLOGIES CO. , LTD. Huawei Confidential Page 43