Comment Mysterious "Aurora" attack not so mysterious. (Score 1) 50
There's nothing mysterious about this. The problem is that if someone gets control of circuit breakers for large rotating equipment, they may be able to disconnect it, let it get out of sync, and reconnect it. This causes huge stresses on motor and generator windings and may damage larger equipment. This is a classic problem in AC electrical systems. A more technical analysis of the Aurora vulnerability is here.
The attack involves taking over control of a power breaker in the transmission system, one that isn't protected by a device that checks for an in-phase condition. Breakers that are intended to be used during synchronization (such as the ones nearest generators) have such protections, but not all breakers do.
Protective relaying in power systems is complicated, because big transient events occur now and then. A lightning strike is a normal event in transmission systems. The system can tolerate many disruptive events, and you don't want to shut everything down and go to full blackout because the fault detection is overly sensitive. A big inductive load joining the grid looks much like an Aurora attack for the first few cycle or two.
There's a problem with someone reprogramming the setpoints on protective relays. This is the classic "let's make it remotely updatable" problem. It's so much easier today to make things remotely updatable than to send someone to adjust a setting. The Aurora attack requires some of this. There's a lot to be said for hard-wired limits that can't be updated remotely, such as "reclosing beyond 20 degrees of phase error is not allowed, no matter what parameters are downloaded."