Abstract
Data privacy in the smart grid is an important requirement for consumers. Central to the data privacy issue is the handling of energy-usage data, in particular, data retention, aggregation and anonymization. Government and industry groups have formulated various policies in this area, mostly based on fair information practice principles. This paper argues that the current policy-level work is insufficient – scientific work is needed to fully develop and implement privacy policies. A research agenda is proposed that balances the advantages of fine-grained energy-usage data with the associated privacy risks. For comparison purposes, the paper describes analogous policies and implementations related to telecommunications, web search and medical data.
Chapter PDF
Similar content being viewed by others
Keywords
References
Advanced Security Acceleration Project for the Smart Grid (ASAP-SG), Security Profile for Advanced Metering Infrastructure, EnerNex Corporation, Knoxville, Tennessee, 2009.
Advanced Security Acceleration Project for the Smart Grid (ASAP-SG), Security Profile for Third Party Data Access, EnerNex Corporation, Knoxville, Tennessee, 2011.
D. Bergman, D. Jin, J. Juen, N. Tanaka, C. Gunter and A. Wright, Distributed non-intrusive load monitoring, Proceedings of the IEEE Power Engineering Society Conference on Innovative Smart Grid Technologies, 2011.
California Public Utilities Commission, Decision Adopting Rules to Protect the Privacy and Security of the Electricity Usage Data of the Customers of Pacific Gas and Electric Company, Southern California Edison Company and San Diego Gas and Electric Company, Rulemaking 08-12-009, Sacramento, California, 2011.
A. Cavoukian, Data Mining: Staking a Claim on Your Privacy, Office of the Information and Privacy Commissioner of Ontario, Ontario, Canada, 1998.
EnerNex Corporation, Illinois Statewide Smart Grid Collaborative: Collaborative Report, Knoxville, Tennessee ( www.ilgridplan.org/Shared%20Documents/ISSGC%20Collaborative%20Report.pdf , 2010.
Federal Communications Commission, Report and Order and Further Notice of Proposed Rulemaking, FCC 07-22, Washington, DC, 2007.
Federal Trade Commission, Fair Information Practice Principles, Washington, DC, 2012.
Federal Trade Commission, Protecting Consumer Privacy in an Era of Rapid Change, FTC Report, Washington, DC, 2012.
P. Golle and K. Partridge, On the anonymity of home/work location pairs, Proceedings of the Seventh International Conference on Pervasive Computing, pp. 390–397, 2009.
G. Hart, Nonintrusive appliance load monitoring, Proceedings of the IEEE, vol. 80(12), pp. 1870–1891, 1992.
Hewlett-Packard, HIPAA goes hitech, Palo Alto, California ( http://h20195.www2.hp.com/v2/GetPDF.aspx/4AA1-4056ENW.pdf ), 2010.
D. Kawamoto and E. Mills, AOL apologizes for release of user search data, CNET, August 7, 2006.
V. Kopytoff, Yahoo! will keep search queries for 18 months, New York Times, April 18, 2011.
D. Kravets, Which telecoms store your data the longest? Secret memo tells all, Wired, September 28, 2011.
J. Krumm, Inference attacks on location tracks, Proceedings of the Fifth International Conference on Pervasive Computing, pp. 127–143, 2007.
F. Li, B. Luo and P. Liu, Secure information aggregation for smart grids using homomorphic encryption, Proceedings of the First IEEE International Conference on Smart Grid Communications, pp. 327–332, 2010.
S. Lichtenberg, Smart Grid Data: Must There Be Conflict Between Energy Management and Consumer Privacy? National Regulatory Research Institute, Silver Spring, Maryland, 2010.
J. Mayer and A. Narayanan, Do Not Track, Universal Web Tracking Opt Out, Center for Internet and Society, Stanford Law School, Stanford, California ( donnottrack.us ).
A. Narayanan and V. Shmatikov, Robust de-anonymization of large sparse datasets, Proceedings of the IEEE Symposium on Security and Privacy, pp. 111–125, 2008.
National Association of Regulatory Utility Commissioners, Resolution on Smart Grid Principles, Washington, DC ( www.naruc.org/smartgrid ), 2011.
National Science and Technology Council, A Policy Framework for the 21st Century Grid: Enabling Our Secure Energy Future, Executive Office of the President, Washington, DC, 2011.
Oklahoma State Legislature, House Bill 1079, Oklahoma City, Oklahoma, 2011.
A. Prudenzi, A neuron nets based procedure for identifying domestic appliances pattern-of-use from energy recordings at meter panel, Proceedings of the IEEE Power Engineering Society Winter Meeting, vol. 2, pp. 941–946, 2002.
Public Utility Commission of Texas, Electric Substantive Rules – Chapter 25, Austin, Texas 2007.
Public Utility Commission of the State of Colorado, Proposed Rules Relating to Smart Grid Data Privacy for Electric Utilities, Decision No. R11-0922, Denver, Colorado, 2011.
J. Saltzer and M. Schroeder, The protection of information computer systems, Proceedings of the IEEE, vol. 63(9), pp. 1278–1308, 1975.
E. Shi, T. Chan, E. Rieffel, R. Chow and D. Song, Privacy-preserving aggregation of time-series data, Proceedings of the Network and Distributed System Security Symposium, 2011.
Smart Grid Interoperability Panel – Cyber Security Working Group, Guidelines for Smart Grid Cyber Security: Vol. 2, Privacy and the Smart Grid, NISTIR 7628, National Institute of Standards and Technology, Gaithersburg, Maryland, 2010.
G. Taban and V. Gligor, Privacy-preserving integrity-assured data aggregation in sensor networks, Proceedings of the International Conference on Computational Science and Engineering, vol. 3, pp. 168–175, 2009.
United States Congress, Health Insurance Portability and Accountability Act of 1996, Public Law 104-191, 104th Congress, Washington, DC, 1996.
United States Congress, Genetic Information Nondiscrimination Act of 2008, H.R. 493, 110th Congress, Washington, DC, 2008.
U.S. Department of Commerce, Commercial Data Privacy and Innovation in the Internet Economy: A Dynamic Policy Framework, Internet Policy Task Force Green Paper, Washington, DC, 2010.
U.S. Department of Energy, Data Access and Privacy Issues Related to Smart Grid Technologies, Washington, DC, 2010.
R. Varela, NAESB is developing smart grid data privacy standards, American Public Power Association, Washington, DC, March 2, 2011.
T. Zeller, An inconveniently easy headline: Gore’s electric bills spark debate, New York Times, February 28, 2007.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2013 IFIP International Federation for Information Processing
About this paper
Cite this paper
Chow, R., Cardenas, A., De Cristofaro, E. (2013). Data Handling in the Smart Grid: Do We Know Enough?. In: Butts, J., Shenoi, S. (eds) Critical Infrastructure Protection VII. ICCIP 2013. IFIP Advances in Information and Communication Technology, vol 417. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-45330-4_2
Download citation
DOI: https://doi.org/10.1007/978-3-642-45330-4_2
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-45329-8
Online ISBN: 978-3-642-45330-4
eBook Packages: Computer ScienceComputer Science (R0)