Difference between revisions of "Critical Information Infrastructure Protection"
Jump to navigation
Jump to search
(→GFCE-MERIDIAN) |
|||
Line 16: | Line 16: | ||
==== [[Estonia]] ==== | ==== [[Estonia]] ==== | ||
{{definition|The purpose of the critical information infrastructure protection (CIIP) is to maintain a trouble-free functioning of the country's essential information and communication systems under ordinary circumstances and to ensure their continuity on a minimum level during critical situations. <ref> [https://www.ria.ee/CIIP/ Critical Information Infrastructure Protection Estonia]</ref>}}<br /><br /> | {{definition|The purpose of the critical information infrastructure protection (CIIP) is to maintain a trouble-free functioning of the country's essential information and communication systems under ordinary circumstances and to ensure their continuity on a minimum level during critical situations. <ref> [https://www.ria.ee/CIIP/ Critical Information Infrastructure Protection Estonia]</ref>}}<br /><br /> | ||
− | + | ==== [[Kosovo]] ==== | |
+ | {{definition|Critical Information Infrastructure Protection (CIIP): The programs and activities of infrastructure owners, operators, manufacturers, users, and regulatory authorities which aim at keeping the performance of critical information infrastructures in case of failures, attacks or accidents above a defined minimum level of services and aim at minimising the recovery time and damage. <ref>[http://www.kryeministri-ks.net/repository/docs/National_Cyber_Security_Strategy_and_Action_Plan_2016-2019_per_publikim_1202.pdf National Cyber Security Strategy and Action Plan 2016 – 2019 (2016)]</ref>}}CIIP should therefore be viewed as a cross-sector phenomenon rather than being limited to specific sectors. CIIP should be closely coordinated with Critical Infrastructure Protection from a holistic perspective. <br/><br/> | ||
==== [[Russian Federation]] ==== | ==== [[Russian Federation]] ==== | ||
{{definition|безопасность критической информационной инфраструктуры - состояние элементов критической информационной инфраструктуры и критической информационной инфраструктуры в целом, при котором проведение в отношении ее компьютерных атак не влечет за собой тяжких последствий. <br /><br />Critical information infrastructure ''security'' is the state of [[Critical Information Infrastructure|critical information infrastructure]] and critical information infrastructure as a whole, in which the holding in respect of its computer attacks do not entail grave consequence. <ref>[http://www.scrf.gov.ru/documents/6/113.html NATIONAL SECURITY OF RUSSIA - Information security (February 3, 2012, № 803)]</ref>}}<br /> | {{definition|безопасность критической информационной инфраструктуры - состояние элементов критической информационной инфраструктуры и критической информационной инфраструктуры в целом, при котором проведение в отношении ее компьютерных атак не влечет за собой тяжких последствий. <br /><br />Critical information infrastructure ''security'' is the state of [[Critical Information Infrastructure|critical information infrastructure]] and critical information infrastructure as a whole, in which the holding in respect of its computer attacks do not entail grave consequence. <ref>[http://www.scrf.gov.ru/documents/6/113.html NATIONAL SECURITY OF RUSSIA - Information security (February 3, 2012, № 803)]</ref>}}<br /> | ||
Line 36: | Line 37: | ||
* Test reference. --> | * Test reference. --> | ||
[[Category:Information]][[Category:Infrastructure]][[Category:Protection]] | [[Category:Information]][[Category:Infrastructure]][[Category:Protection]] | ||
− | {{#set:defined by=Czech Republic|defined by=Estonia|defined by=Russian Federation}} | + | {{#set:defined by=Czech Republic|defined by=Estonia|defined by=Kosovo|defined by=Russian Federation}} |
Revision as of 22:55, 2 December 2016
Contents
Definitions
European Definitions
Council Communication COM(2011)163 final
No definition provided[1].
Other International Definitions
GFCE-MERIDIAN
Critical Information Infrastructure Protection (CIIP) is defined as all activities aimed at ensuring the functionality, continuity and integrity of CII in order to deter, mitigate and neutralise a threat, risk or vulnerability or minimise the impact of an incident. [2]
National Definitions
Czech Republic
Critical Information Infrastructure Protection (CIIP) is a subset of CIP. CIIP focuses on the protection of systems and assets including components such as telecommunications, computers/software, Internet, satellites, fibre optics etc., and on interconnected computers and networks, and the services they provide. [3]
Estonia
The purpose of the critical information infrastructure protection (CIIP) is to maintain a trouble-free functioning of the country's essential information and communication systems under ordinary circumstances and to ensure their continuity on a minimum level during critical situations. [4]
Kosovo
Critical Information Infrastructure Protection (CIIP): The programs and activities of infrastructure owners, operators, manufacturers, users, and regulatory authorities which aim at keeping the performance of critical information infrastructures in case of failures, attacks or accidents above a defined minimum level of services and aim at minimising the recovery time and damage. [5]
CIIP should therefore be viewed as a cross-sector phenomenon rather than being limited to specific sectors. CIIP should be closely coordinated with Critical Infrastructure Protection from a holistic perspective.
Russian Federation
безопасность критической информационной инфраструктуры - состояние элементов критической информационной инфраструктуры и критической информационной инфраструктуры в целом, при котором проведение в отношении ее компьютерных атак не влечет за собой тяжких последствий.
Critical information infrastructure security is the state of critical information infrastructure and critical information infrastructure as a whole, in which the holding in respect of its computer attacks do not entail grave consequence. [6]
Critical information infrastructure security is the state of critical information infrastructure and critical information infrastructure as a whole, in which the holding in respect of its computer attacks do not entail grave consequence. [6]
See also
Notes
- ↑ COMMUNICATION FROM THE COMMISSION TO THE EUROPEAN PARLIAMENT, THE COUNCIL, THE EUROPEAN ECONOMIC AND SOCIAL COMMITTEE AND THE COMMITTEE OF THE REGIONS on Critical Information Infrastructure Protection ‘Achievements and next steps: towards global cyber-security’
- ↑ The GFCE-MERIDIAN Good Practice Guide on Critical Information Infrastructure Protection for governmental policy-makers, November 2016
- ↑ Act No. 181 of 23 July 2014 On Cyber Security and Change of Related Acts (Act on Cyber Security)
- ↑ Critical Information Infrastructure Protection Estonia
- ↑ National Cyber Security Strategy and Action Plan 2016 – 2019 (2016)
- ↑ NATIONAL SECURITY OF RUSSIA - Information security (February 3, 2012, № 803)