Making Networked Lighting Controls More Cyber-Secure
image credit: © Alessandro Terranova | Dreamstime.com
- Apr 28, 2020 4:15 pm GMTApr 28, 2020 4:30 pm GMT
- 987 views
This item is part of the Special Issue - 2020-04 - Cybersecurity, click here for more
Data breaches, ransomware, cyberattacks. These terms are peppering news reports and conversations more than ever, causing more than a little nail-biting. In fact, a 2018 Gallup poll revealed that Americans were more worried about cyberattacks than identity theft and home burglary. And perhaps for good reason. Accenture’s Ninth Annual Cost of Cybercrime Study found an 11 percent rise in security breaches between 2018 and 2019, and a 67 percent increase over the previous five years. A Center for Strategic and International Studies report estimated the annual worldwide cost of cybercrime at nearly $600 billion and singled out poorly-protected Internet of Things (IoT) devices as particularly problematic.
The commercial lighting world is not immune to these concerns. Keeping ahead of hackers was the theme of an interactive discussion session at the DesignLights Consortium’s (DLC) 2019 Stakeholder Meeting, where one participant commented that “we want to skate to where the puck is going, not where it is.”
To that end, the DLC’s Networked Lighting Control (NLC) Technical Requirements version NLC5, to be released in June 2020, will require that all products on the DLC’s Qualified Products List address cybersecurity. The result of several rounds of stakeholder comments over the past three years, the policy is part of the DLC’s overarching strategy to expand adoption of NLCs by increasing comfort with a technology capable of vastly increasing the energy efficiency of LED lighting projects while serving as a smart buildings gateway.
It’s the latter capability that puts NLCs into the realm of IoT. Installed in ceilings throughout commercial and industrial buildings, NLCs can be equipped with sensors that collect data useful for a variety of functions, from more efficient use of office space to increasing the comfort and safety of building occupants.
Making NLCs more resilient to malicious attacks is critical for building the customer trust necessary to expand adoption of the technology. As the Accenture report cited above notes, “By prioritizing technologies that improve cybersecurity protection, organizations can reduce the consequences of cybercrime and unlock future economic value as higher levels of trust encourage more business from customers.”
By requiring that NLCs be developed and operated with best cybersecurity practices, the DLC aims to motivate utilities to provide more support for the technology, which will, in turn, result in networked systems installed on more projects…leading to greater energy savings and increased building intelligence.
NLC5 establishes acceptable cybersecurity standards and services, and NLC systems will need to certify utilization of one or more of these standards or services within the next 18 months to remain on the DLC QPL for NLCs. In addition to cybersecurity, the DLC’s NLC5 revision continues to raise the bar for listed systems with a multi-year plan for interoperability.
Strengthening the value proposition of NLCs for utilities, building owners and end users by increasing their resilience to cyber tampering is a strategy that will accelerate adoption of this game-changing and, so far, under-utilized technology.