Abstract
The protection of critical infrastructures at a national level is not a trivial task. In involves various steps such as the indentation, the prioritization and the protection of those infrastructures and services that are vital for the wellbeing of the society. Although some sectors, subsectors and services seem to be very important for all countries, others may differ in their significance based on the specific economic, environmental and social characteristics of each country. In this chapter we review existing methodologies and national strategies for critical infrastructure protection. We examine methodologies for identifying and assessing critical sectors and services, relying on top-down and bottom-up administrative approaches. We examine common practices that have been applied in various countries to identify critical infrastructures and to establish national protection plans. Finally, we describe a set of goals that are commonly found in different methodologies and best practices for critical infrastructure protection.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Notes
- 1.
UK under BREXIT process.
References
Austin Smith (2017) Presidential Policy Directive 21:Implementation: an interagency security committee white paper. Interagency Security Committee
BKK Annual Report (2015) 10–13. Germany: federal office of civil protection and disaster assistance (BKK)
Chris Boyer – AT&T (2017) Critical infrastructure partnership overview. AVP – global public policy. Retrieved from https://www.oecd.org/going-digital/digital-security-in-critical-infrastructure/digital-security-workshop-february-2018-%20Boyer.pdf
Council Directive 2008/114/EC (2008). Official J Eur Union 51: 75
Critical Infrastructure Security and Resilience – PPD-21 (2013) Washington DC. Retrieved from https://www.dhs.gov/sites/default/files/publications/PPD-21-Critical-Infrastructure-and-Resilience-508.pdf
EU Commission (2012) Review of the European Programme for Critical Infrastructure Protection (EPCIP)
EU Cybersecurity Dashboard: A Path to a Secure European Cyberspace (2015) BSA – the software alliance. Retrieved from http://cybersecurity.bsa.org/assets/PDFs/study_eucybersecurity_en.pdf
European Commission (2007) European programme for critical infrastructure protection. Off J
European Commission (2005) Green paper on a European programme for critical infrastructure protection, Brussels, COM, pp 576. Retrieved from https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX:52005DC0576
French National Digital Security Strategy (2015) Secrétariat général de la défense et de la sécurité nationale (SGDSN). Retrieved from https://www.enisa.europa.eu/topics/national-cyber-security-strategies/ncss-map/France_Cyber_Security_Strategy.pdf
Gritzalis D, Stergiopoulos G, Kotzanikolaou P, Magos E, Lykou G (2016) Critical infrastructure protection: a holistic methodology for Greece. Conference on security of industrial control and cyber physical systems (CyberICPS). Springer, 19–34
Klaver M (2011) Good practices manual for CIP policies, for policy makers in Europe. Brussels: RECIPE. Retrieved from http://www.oiip.ac.at/fileadmin/Unterlagen/Dateien/Publikationen/FINAL_RECIPE_manual.pdf
Kotzanikolaou P, Theoharidou M, Gritzalis D (2013) Assessing n-order dependencies between critical infrastructures. Int J Crit Infrastruct 9(1–2):93–110
Luiijf E, Burger H, Klaver M, Marieke H (2003) Critical infrastructure protection in the Netherlands: a Quick-scan. EICAR Denmark, Copenhagen
National Security Strategy and Strategic Defence and Security Review (2015) UK Government. Retrieved from https://assets.publishing.service.gov.uk/government/uploads/system/uploads/attachment_data/file/478933/52309_Cm_9161_NSS_SD_Review_web_only.pdf
National Strategy for CIP (2009) Federal Republic of Germany
Novotný P, Rostek P (2014) Perspective of cross-cutting criteria as a major instrument to determination of critical infrastructure in the Czech Republic. (Vol. 2). Research papers faculty of materials science and technology Slovak University of technology
Public Private Partnerships (PPP) – Cooperative models (2017) ENISA. Retrieved from ENISA: https://www.enisa.europa.eu/publications/public-private-partnerships-ppp-cooperative-models
Rossella M, Cédric L-B (2014) Methodologies for the identification of critical information infrastructure assets and services. Guidelines for charting electronic data communication networks, European union agency for network and information security. ENISA, Heraklion
Rossella M, Cédric L-B (2015) Methodologies for the identification of critical information infrastructure assets and services. ENISA. Brussels: European Union Agency for Network and Information Security (ENISA)
Strategic Framework and Policy Statement on Improving the Resilience of Critical Infrastructure to Disruption from Natural Hazards (2010) London: UK Cabinet Office. Retrieved from https://www.gov.uk/government/publications/strategic-framework-and-policy-statement-on-improving-the-resilience-of-critical-infrastructure-to-disruption-from-natural-hazards
The Critical Infrastructure Protection in France. (2017). Paris: Secrétariat général de la défense et de la sécurité nationale (SGDSN). Retrieved from Secrétariat général de la défense et de la sécurité nationale: http://www.sgdsn.gouv.fr/uploads/2017/03/plaquette-saiv-anglais.pdf
The French White Paper on defence and national security (2013) Paris: permanent representation of France to NATO
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2019 Springer Nature Switzerland AG
About this chapter
Cite this chapter
Petrakos, N., Kotzanikolaou, P. (2019). Methodologies and Strategies for Critical Infrastructure Protection. In: Gritzalis, D., Theocharidou, M., Stergiopoulos, G. (eds) Critical Infrastructure Security and Resilience. Advanced Sciences and Technologies for Security Applications. Springer, Cham. https://doi.org/10.1007/978-3-030-00024-0_2
Download citation
DOI: https://doi.org/10.1007/978-3-030-00024-0_2
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-00023-3
Online ISBN: 978-3-030-00024-0
eBook Packages: Computer ScienceComputer Science (R0)