- AustraliaEnglish
- BelgiumDutchFrench
- BrasilPortuguese
- CanadaEnglish
- Greater ChinaSimplified ChineseTraditional Chinese
- FranceFrench
- GermanyGerman
- GlobalEnglishFrenchSpanish
- GreeceGreek
- IndiaEnglish
- ItalyItalian
- JapanJapanese
- LuxembourgFrench
- MexicoSpanish
- Middle East & AfricaEnglish
- NetherlandsDutch
- PolandPolish
- PortugalPortuguese
- SpainSpanish
- South AmericaSpanish
- South AsiaEnglish
- South East AsiaEnglish
- SwedenSwedish
- TurkeyEnglish
- United KingdomEnglish
- United States of AmericaEnglish
SMA Cybersecurity
The digitalization of the energy transition offers major opportunities. Digital technology intelligently connects consumers, generators, and the smart grid. This makes it possible to balance grid fluctuations and efficiently control individual systems. Digitalization thus plays a key role in integrated energy planning and enables decentralized supply based on renewable energies.
At the same time, increasing connectivity brings risks. Without appropriate protection, any system can become an entry point for cyberattacks. The more connected the systems are, the larger the attack surface for cybercriminals to disrupt processes, steal data, or manipulate energy flows. Power supply networks are considered critical infrastructure—an attractive target; an attack can go far beyond isolated system outages and jeopardize overall grid stability.
Industry-leading cybersecurity
As a global technology leader in photovoltaics, SMA is keenly aware of these risks—and addresses them with a clear focus on data protection and cybersecurity. Its systems reliably protect against unauthorized access, data misuse, and cyberattacks—for maximum security today and in the future.
How SMA puts cybersecurity into practice:
Data hosting
GDPR-compliant and exclusively in the EU — all software developed by SMACertificates
Data processed via ISO 27001-certified cloud infrastructure in Europe and compliance with the European cybersecurity standard ETSI EN 303 645 for devices with wireless connectivity*Communication
Speedwire Encrypted Communication**Updates
Automatic, regularCompatibility
SMA Home Energy Solution & SMA Commercial Energy SolutionInterfaces
Limited to what is required
* The ETSI EN 303 645 standard defines security requirements for connected Internet-of-Things (IoT) devices used in homes and businesses.
** SEC can be enabled on every device in the SMA Home Energy Solution and the SMA Commercial Energy Solution—except the Sunny Tripower CORE2.
SMA products and services are regularly subjected to vulnerability testing by internal and external security experts. The findings from these tests are used to continuously improve products, initiate countermeasures, and proactively implement new procedures. Collaboration with independent security researchers is a key pillar of the ongoing enhancement of products and solutions and of raising public awareness of cybersecurity.
SMA has an established vulnerability handling process. To report a vulnerability, please follow the Responsible Disclosure policy.
SMA also contributes actively to the work of cybersecurity associations and national and international organizations close to the power grid, such as the VDE Forum Netztechnik/Netzbetrieb (VDE FNN), the SunSpec Alliance, and the Open Web Application Security Project (OWASP).
Get informed & protect now
Contact
For submissions, please use the form or the email address: Information-Security@sma.de