Critical Infrastructure

While there is not a commonly accepted definition of critical infrastructure, all definitions emphasize the contributing role of a critical infrastructure to the society or the debilitating effect in the case of disruption. Another common characteristic is that they are complex in their structure, which makes the issue of [[dependency}dependencies]] an important topic.

Definitions

Official European Definition

An asset, system or part thereof located in Member States which is essential for the maintenance of vital societal functions, health, safety, security, economic or social well-being of people, and the disruption or destruction of which would have a significant impact in a Member State as a result of the failure to maintain those functions ^[1]

National Definitions

USA

Systems and assets, whether physical or virtual, so vital to the United States that the incapacity or destruction of such systems and assets would have a debilitating impact on security, national economic security, national public health or safety, or any combination of those matters. ^[2]

Germany

Critical infrastructures are organisations and facilities of major importance for society whose failure or impairment would cause a sustained shortage of supplies, significant disruptions to public order, safety and security or other dramatic consequences ^[3].

Standard Definition

ISO/IEC TR 27019:2013

Organizations and facilities that are essential for the functioning of society and the economy as a whole ^[4]. The standard notes that a failure or malfunction of such organizations and facilities would result in sustained supply shortfalls, make a significant impact on public security and have other wide ranging impacts.

Notes

Jump up ↑ Council Directive 2008/114/EC of 8 December 2008 on the identification and designation of European critical infrastructures and the assessment of the need to improve their protection.
Jump up ↑ §1016(e) of the USA Patriot Act of 2001 (42 U.S.C. §5195c(e))
Jump up ↑ Unpublished working glossary of UP KRITIS and BSI, 2014
Jump up ↑ ISO/IEC TR 27019:2013 Information technology -- Security techniques -- Information security management guidelines based on ISO/IEC 27002 for process control systems specific to the energy utility industry.

[1] Jump up ↑ Council Directive 2008/114/EC of 8 December 2008 on the identification and designation of European critical infrastructures and the assessment of the need to improve their protection.

[2] Jump up ↑ §1016(e) of the USA Patriot Act of 2001 (42 U.S.C. §5195c(e))

[3] Jump up ↑ Unpublished working glossary of UP KRITIS and BSI, 2014

[4] Jump up ↑ ISO/IEC TR 27019:2013 Information technology -- Security techniques -- Information security management guidelines based on ISO/IEC 27002 for process control systems specific to the energy utility industry.

[1]

[2]

[3]

[4]

Critical Infrastructure

Contents

Definitions

Official European Definition

National Definitions

USA

Germany

Standard Definition

ISO/IEC TR 27019:2013

See also

Notes

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Actions

Fraunhofer-Wiki-Farm

Tools