• TREND MICRO
  • ABOUT
Search:
  • Latest Posts
  • Categories
    • Android
    • AWS
    • Azure
    • Cloud
    • Compliance
    • Critical Infrastructure
    • Cybercrime
    • Encryption
    • Financial Services
    • Government
    • Hacks
    • Healthcare
    • Internet of Everything
    • Malware
    • Microsoft
    • Mobile Security
    • Network
    • Privacy
    • Ransomware
    • Security
    • Social Media
    • Small Business
    • Targeted Attacks
    • Trend Spotlight
    • Virtualization
    • Vulnerabilities
    • Web Security
    • Zero Day Initiative
    • Industry News
  • Our Experts
    • Ed Cabrera
    • Rik Ferguson
    • Greg Young
    • Mark Nunnikhoven
    • Jon Clay
    • William “Bill” Malik
  • Research
Home   »   Industry News   »   Privacy & Policy   »   European privacy watchdog warns of smart meter risks

European privacy watchdog warns of smart meter risks

  • Posted on:July 5, 2012
  • Posted in:Privacy & Policy
  • Posted by:
    Trend Micro
0

Both developing nations and established powers have taken a keen interest in smart grid technology in recent years, viewing it as the most promising avenue for more responsible, efficient distribution of energy resources. But while few question the economic and financial benefits of smart grid strategies, security continues to be a lingering concern.

Industry and government experts have consistently warned of smart grid vulnerabilities that could be exploited by cybercriminals to the detriment of national security priorities. However, the latest wave of anxiety surrounds an issue that could have much more immediate implications for consumers. According to the office of the European Data Protection Supervisor (EDPS), the wealth of data collected via smart meters could pose serious risks to customer privacy.

Smart meters typically record end user energy consumption at intervals of at least once every hour. This data is then communicated back to the utility provider to track service quality and usage rates. Remote monitoring significantly reduces labor costs for the company and can provide the customer with various benefits. By gathering data in real time, utility providers can identify and respond to service outages faster and more predictably determine customer demand so that resources can be provisioned in the most sustainable and affordable manner possible.

But as utility providers open the door to greater visibility and high-level data analytics, there is some concern over where they may draw the line. Most notably, regulators believe smart meters could lead companies down a slippery slope toward making inferences on domestic activities.

"While the Europe-wide rollout of smart metering systems may bring significant benefits, it will also enable massive collection of personal data which can track what members of a household do within the privacy of their own homes, whether they are away on holiday or at work, if someone uses a specific medical device or a baby monitor, how they like to spend their free time and so on," EDPS officials suggested.

By assessing patterns and compiling customer profiles, regulators believe utilities could be tempted to commercialize this information through marketing, advertising or even price discrimination. But even if service providers decide to do nothing but sit on this information, any loopholes in data security best practices could put sensitive private records into cybercriminal hands.

In light of these concerns, assistant European Data Protection Supervisor Giovanni Buttarelli is wondering if more stringent regulation may be in order for smart meter projects throughout the region.

"The EDPS calls on the [European] Commission to assess whether further legislative action is necessary at the EU level to ensure adequate protection of personal data for the roll-out of smart metering systems and – in [the supervisor's] opinion – provides pragmatic recommendations for such legislative action," said Buttarelli.

The first recommendation made by the EDPS is for regulators to provide legal guidance to customers so that they will understand the full complement of data protection choices available to them. Among other things, customers may be able to decide the frequency with which their usage data is collected.

Additionally, the EDPS called for more transparent explanations of data retention policies and protocols employed by utility providers and suggested that EU regulators take a more proactive stance in standardizing the length of storage periods and facilitating proper disposal.

Finally, Buttarelli's team spoke to the critical need for privacy-enhancing technologies (PETs) throughout the region. The main aim of these mechanism will be to eliminate the need to export data from the household, thus reducing the likelihood of compromise while in transit. Additionally, more advanced data sampling and aggregation methods could be used to help providers derive the same insights from a lower volume of information gathered less frequently.

Data Security News from SimplySecurity.com by Trend Micro

Related posts:

  1. European regulators disagree on data protection directive
  2. European Data Protection Supervisor releases progress report
  3. IT pros concerned about smart grid security
  4. US could learn from European data privacy practices, critics say

Security Intelligence Blog

  • Our New Blog
  • How Unsecure gRPC Implementations Can Compromise APIs, Applications
  • XCSSET Mac Malware: Infects Xcode Projects, Performs UXSS Attack on Safari, Other Browsers, Leverages Zero-day Exploits

Featured Authors

Ed Cabrera (Chief Cybersecurity Officer)
Ed Cabrera (Chief Cybersecurity Officer)
  • Ransomware is Still a Blight on Business
Greg Young (Vice President for Cybersecurity)
Greg Young (Vice President for Cybersecurity)
  • Not Just Good Security Products, But a Good Partner
Jon Clay (Global Threat Communications)
Jon Clay (Global Threat Communications)
  • This Week in Security News: Ransomware Gang is Raking in Tens of Millions of Dollars and Microsoft Patch Tuesday Update Fixes 17 Critical Bugs
Mark Nunnikhoven (Vice President, Cloud Research)
Mark Nunnikhoven (Vice President, Cloud Research)
  • Twitter Hacked in Bitcoin Scam
Rik Ferguson (VP, Security Research)
Rik Ferguson (VP, Security Research)
  • The Sky Has Already Fallen (you just haven’t seen the alert yet)
William
William "Bill" Malik (CISA VP Infrastructure Strategies)
  • Black Hat Trip Report – Trend Micro

Follow Us

Trend Micro In The News

  • Trend Micro Goes Global to Find Entrepreneurs Set to Unlock the Smart Connected World
  • Winners of Trend Micro Global Capture the Flag Demonstrate Excellence in Cybersecurity
  • Companies Leveraging AWS Well-Architected Reviews Now Benefit from Security Innovations from Trend Micro
  • Trend Micro Announces World's First Cloud-Native File Storage Security
  • Digital Transformation is Growing but May Be Insecure for Many
  • Home and Home Office
  • |
  • For Business
  • |
  • Security Intelligence
  • |
  • About Trend Micro
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • Privacy Statement
  • Legal Policies
  • Copyright © 2017 Trend Micro Incorporated. All rights reserved.