SlideShare ist ein Scribd-Unternehmen logo

L17 CS5032 critical infrastructure

Als PPTX, PDF herunterladen
Ian Sommerville
Ian Sommerville
1 von 26
Critical infrastructure Critical infrastructure, 2013 Slide 1
What is infrastructure • All modern societies and businesses are dependent upon an underlying infrastructure: power, water, waste disposal, the internet, transport networks, financial services, emergency services, hospitals etc. • This infrastructure is shared by all elements of business and society Critical infrastructure, 2013 Slide 2
Critical systems of systems • Why is this being covered in a computer science course on critical systems: – Our infrastructure is controlled and managed by a wide range of interacting, computer-based system – Businesses and essential services to citizens are completely dependent on our ‘digital infrastructure’ – Therefore, all of the systems involved in infrastructure management are critical systems • We cannot consider these critical systems in isolation but must also consider their interactions. We are therefore concerned with critical systems of systems Critical infrastructure, 2013 Slide 3
Public infrastructure • The national infrastructure comprises networks, systems, sites, facilities and businesses that deliver goods and services to citizens, and support our economy, environment and social well-being. • Includes systems and services such as transport, energy, computing, communications, finance, health care, etc. Critical infrastructure, 2013 Slide 4
Organisational infrastructure • Supply chain and external information systems on which an organisation depends • Digital infrastructure within the organisation (servers, networks, etc.) • Shared business services such as accounting and purchasing Critical infrastructure, 2013 Slide 5
Infrastructure characteristics Large Scale • Spread over large geographic areas • Regional/National/International – Complex • Many components • Many interdependencies (internal and external) – Reliance on standards • Heterogeneous parts rely on standards for interoperation • Standards are not always uniformly applied across an infrastructure – Long term • Modern and legacy components • Emerges and changes over the long term • We have to live with decisions made a long time ago Critical infrastructure, 2013 Slide 6
Digital infrastructure • Hardware and software systems and networks on which businesses and society depends – Fibre communication links – Mobile phone and data network – Data centres and servers – ISPs • Now, almost universally, other infrastructure components depend on the Critical infrastructure, 2013 digital infrastructure to deliver Slide 7 their services
Infrastructure ownership • Rarely one single owner and authority • Sub-systems and components are increasingly privatised – The theory is that privately operated infrastructure will be more efficient – However it is difficult to optimise an infrastructure when sections of it are run by self interested parties • Crosses national and Critical infrastructure, 2013 international boundaries Slide 8
Infrastructure funding • Infrastructure replacement is very expensive • We (and governments) are often reluctant to pay for infrastructure • Where monopolies exist they are able to over- charge. • However, competition where operational costs are low can lead to under- Critical infrastructure, 2013 charging (and no re- Slide 9
Critical infrastructure • Assets which are part of the national and organisational infrastructure whose availability is essential to the delivery of infrastructure services and whose unavailability has significant human, social and economic consequences. • Critical infrastructure includes – Structures – Networks – Systems – Organisations Critical infrastructure, 2013 Slide 10
Landline Phones Mobile Telecommunications Production Postal Services Processing Communications Import Broadcast Communications Distribution Food Retail Ambulance Fire and Rescue Electricity Emergency Services Marine Gas Payment, Clearing Police Oil and Settlement Energy Fuel Systems Public Finances Finance Markets and Central Government Exchanges Parliament Government Devolved Administrations Regional and Local Authorities Health Maritime Health and Social Care Aviation Transport Land (Road and rail) Potable water supply Water Dams Waste Water Critical infrastructure, 2013 Services Slide 11
Critical assets • Not all components of the national infrastructure are critical • Does not just depend on the type of facility but also on the number of people affected or other consequences of unavailability – London Heathrow airport is a critical asset – Dundee Airport is not a Critical infrastructure, 2013 critical asset Slide 12
Infrastructure dependencies • Infrastructure elements are often dependent on each other so that failure of one element may be caused by failure of some other element elsewhere Internet services delivered by an ISP depend on communication services from a telecomms company and power from an electricity company Critical infrastructure, 2013 Slide 13
Understanding dependencies • Functional: Reliance between components. • Informational: Data flow from one node aides decision making elsewhere. • Shared Control: Control is from the same system/location • Geospatial: Physical proximity • Purpose: A shared function or purpose • Policy/procedural: A change in policy or procedure at one place may have effects elsewhere. • Societal Interdependency: Changes to one component may have societal effects which lead to changes to others Critical infrastructure, 2013 Slide 14
Cascade failure • A failure in one area cascades to another infrastructure sector, causing failures and disruption, sometimes in quite unrelated areas • Failure of flood defences results in an electricity sub- station being flooded • Leads to a loss of power in the local area • An ISP in that area goes offline, leading to a loss of internet service to customers who may be anywhere in the country. Critical infrastructure, 2013 Slide 15
Mutual dependencies • Mutual dependencies cause major problems in the event of failure • Example – Communications systems depend on power – Power recovery depends on communications – Power failure that leads to loss of comms is difficult to recover from Critical infrastructure, 2013 Slide 16
Single point of failure • Several services share some facility so that failure at that facility leads to a loss of all of these services. • Examples – Power and communication cables http://www.flickr.com/photos/brizo_th in the same duct e_scot/3736542522/ – Transport, communicati on, power use the same bridge to cross a river Critical infrastructure, 2013 Slide 17
Protecting and assuring infrastructure A difficult problem – Infrastructure is rarely under individual control – Infrastructure is large scale • Assurance takes place through governance processes and risk management – Identify key components – Identify vulnerabilities – Identify threats – Construct risk models – Assess possible outcomes from loss – Make/request/lobby for necessary improvements – Make contingency plans Critical infrastructure, 2013 Slide 18
Infrastructure threats Critical infrastructure, 2013 Slide 19
Vulnerabilities • Lack of knowledge of infrastructure state and dependencies • Old, insecure systems used for infrastructure control • Capacity planning based on outdated assumptions • Geographically distributed infrastructure cannot be physically secured • Lack of coordinated infrastructure management • Physical location of some facilities (flood plain) Critical infrastructure, 2013 Slide 20
Infrastructure resilience Critical infrastructure, 2013 Slide 21
Resistance • Provide protection against anticipated events or attacks • Based on previous experience and assumptions • Changing world or external circumstances may mean that assumptions are invalid Critical infrastructure, 2013 Slide 22
Reliability • Infrastructure components should be designed to operate under a range of (anticipated) conditions not just ‘normal’ operating conditions • Components, as far as possible, should be designed for ‘soft’, incremental rather than catastrophic failure Critical infrastructure, 2013 Slide 23
Redundancy • The network or system as a whole should be designed so that there are backup installations and spare capacity available. • Computing support should be provided by different providers in different locations Critical infrastructure, 2013 Slide 24
Response and recovery • Respond to distruptive events quickly, limiting the damage as far as possible and ensuring public safety • Plan how to restore services as quickly as possible in the event of a loss of capability Critical infrastructure, 2013 Slide 25
Key points • Infrastructure is critical to business, security, health, society. • We are increasingly reliant on digital infrastructure. • Infrastructure is large scale, complex, has modern and legacy components, and many interdependencies. • Securing infrastructure is a hard problem • Hard to know what you have • Hard to assess vulnerabilities • Difficult to make improvements because infrastructure is Critical infrastructure, 2013 rarely under direct control of those it is critical to Slide 26

Empfohlen

Disaster Recovery Plan
Disaster Recovery PlanDisaster Recovery Plan
Disaster Recovery Plan
Indeevari Ramanayake
 
Disaster recovery solution
Disaster recovery solutionDisaster recovery solution
Disaster recovery solution
Anton An
 
Disaster Recovery Planning PowerPoint Presentation Slides
Disaster Recovery Planning PowerPoint Presentation SlidesDisaster Recovery Planning PowerPoint Presentation Slides
Disaster Recovery Planning PowerPoint Presentation Slides
SlideTeam
 
Critical Infrastructure Security by Subodh Belgi
Critical Infrastructure Security by Subodh BelgiCritical Infrastructure Security by Subodh Belgi
Critical Infrastructure Security by Subodh Belgi
ClubHack
 
Disaster Recovery Plan / Enterprise Continuity Plan
Disaster Recovery Plan / Enterprise Continuity PlanDisaster Recovery Plan / Enterprise Continuity Plan
Disaster Recovery Plan / Enterprise Continuity Plan
Marcelo Silva
 
Best Practices in Disaster Recovery Planning and Testing
Best Practices in Disaster Recovery Planning and TestingBest Practices in Disaster Recovery Planning and Testing
Best Practices in Disaster Recovery Planning and Testing
Axcient
 
Contingency Planning And Disaster Recovery Planning
Contingency Planning And Disaster Recovery PlanningContingency Planning And Disaster Recovery Planning
Contingency Planning And Disaster Recovery Planning
mmohamme1124
 
An Introduction to Disaster Recovery Planning
An Introduction to Disaster Recovery PlanningAn Introduction to Disaster Recovery Planning
An Introduction to Disaster Recovery Planning
NEBizRecovery
 

Empfohlen

Disaster Recovery Plan
Disaster Recovery PlanDisaster Recovery Plan
Disaster Recovery Plan
Indeevari Ramanayake
 
Disaster recovery solution
Disaster recovery solutionDisaster recovery solution
Disaster recovery solution
Anton An
 
Disaster Recovery Planning PowerPoint Presentation Slides
Disaster Recovery Planning PowerPoint Presentation SlidesDisaster Recovery Planning PowerPoint Presentation Slides
Disaster Recovery Planning PowerPoint Presentation Slides
SlideTeam
 
Critical Infrastructure Security by Subodh Belgi
Critical Infrastructure Security by Subodh BelgiCritical Infrastructure Security by Subodh Belgi
Critical Infrastructure Security by Subodh Belgi
ClubHack
 
Disaster Recovery Plan / Enterprise Continuity Plan
Disaster Recovery Plan / Enterprise Continuity PlanDisaster Recovery Plan / Enterprise Continuity Plan
Disaster Recovery Plan / Enterprise Continuity Plan
Marcelo Silva
 
Best Practices in Disaster Recovery Planning and Testing
Best Practices in Disaster Recovery Planning and TestingBest Practices in Disaster Recovery Planning and Testing
Best Practices in Disaster Recovery Planning and Testing
Axcient
 
Contingency Planning And Disaster Recovery Planning
Contingency Planning And Disaster Recovery PlanningContingency Planning And Disaster Recovery Planning
Contingency Planning And Disaster Recovery Planning
mmohamme1124
 
An Introduction to Disaster Recovery Planning
An Introduction to Disaster Recovery PlanningAn Introduction to Disaster Recovery Planning
An Introduction to Disaster Recovery Planning
NEBizRecovery
 
Data center disaster recovery.ppt
Data center disaster recovery.ppt Data center disaster recovery.ppt
Data center disaster recovery.ppt
omalreda
 
Disaster recovery plan sample 2
Disaster recovery plan sample 2Disaster recovery plan sample 2
Disaster recovery plan sample 2
AbenetAsmellash
 
Sendai framework for_disaster_risk_reduction_2015-2030
Sendai framework for_disaster_risk_reduction_2015-2030Sendai framework for_disaster_risk_reduction_2015-2030
Sendai framework for_disaster_risk_reduction_2015-2030
Cenando Bodanio
 
Critical national infrastructure
Critical national infrastructureCritical national infrastructure
Critical national infrastructure
sommerville-videos
 
Persönliche Verantwortung und Haftungsrisiken des CISO / IT-Sicherheitsbeauft...
Persönliche Verantwortung und Haftungsrisiken des CISO / IT-Sicherheitsbeauft...Persönliche Verantwortung und Haftungsrisiken des CISO / IT-Sicherheitsbeauft...
Persönliche Verantwortung und Haftungsrisiken des CISO / IT-Sicherheitsbeauft...
Stephan Schmidt
 
Critical infrastructure
Critical infrastructureCritical infrastructure
Critical infrastructure
Prof. David E. Alexander (UCL)
 
IT-Centric Disaster Recovery & Business Continuity
IT-Centric Disaster Recovery & Business ContinuityIT-Centric Disaster Recovery & Business Continuity
IT-Centric Disaster Recovery & Business Continuity
Steve Susina
 
Brochure forcepoint dlp_en
Brochure forcepoint dlp_enBrochure forcepoint dlp_en
Brochure forcepoint dlp_en
Seenee Permal, CISA, CISM
 
Disaster Recovery Plan
Disaster Recovery Plan Disaster Recovery Plan
Disaster Recovery Plan
Emilie Gray
 
Disaster Recovery Plan for IT
Disaster Recovery Plan for ITDisaster Recovery Plan for IT
Disaster Recovery Plan for IT
hhuihhui
 
Disaster Recovery Planning
Disaster Recovery PlanningDisaster Recovery Planning
Disaster Recovery Planning
John Wilson
 
Vulnerability analysis and experience of vulnerability in india
Vulnerability analysis and experience of vulnerability in indiaVulnerability analysis and experience of vulnerability in india
Vulnerability analysis and experience of vulnerability in india
Shubham Agrawal
 
Pertemuan 15 disaster recovery plan
Pertemuan 15 disaster recovery planPertemuan 15 disaster recovery plan
Pertemuan 15 disaster recovery plan
newbie2019
 
2015 2030 sendai framework for action on global disaster risk reduction actions
2015 2030 sendai framework for action on global disaster risk reduction actions2015 2030 sendai framework for action on global disaster risk reduction actions
2015 2030 sendai framework for action on global disaster risk reduction actions
Professor Eric K. Noji, M.D., MPH, DTMH(Lon), FRCP(UK)hon
 
What’s & Why’s of Business Continuity Planning (BCP)
What’s & Why’s of Business Continuity Planning (BCP) What’s & Why’s of Business Continuity Planning (BCP)
What’s & Why’s of Business Continuity Planning (BCP)
CBIZ, Inc.
 
Public Sector Cloud
Public Sector CloudPublic Sector Cloud
Public Sector Cloud
Simon Greig
 
Disaster recovery
Disaster recoveryDisaster recovery
Disaster recovery
Sameeu Imad
 
Disaster Risk Reduction
Disaster Risk ReductionDisaster Risk Reduction
Disaster Risk Reduction
Dr. Fayaz Ahmad Malla
 
Cyber Security Standards Compliance
Cyber Security Standards ComplianceCyber Security Standards Compliance
Cyber Security Standards Compliance
Dr. Prashant Vats
 
Information Technology Disaster Planning
Information Technology Disaster PlanningInformation Technology Disaster Planning
Information Technology Disaster Planning
guest340570
 
TSB_IoT_Presentations_27June2012
TSB_IoT_Presentations_27June2012TSB_IoT_Presentations_27June2012
TSB_IoT_Presentations_27June2012
100%Open
 
48 benot-long
48 benot-long48 benot-long
48 benot-long
KBIZEAU
 

Weitere ähnliche Inhalte

Was ist angesagt?

Disaster Recovery Plan for IT
Disaster Recovery Plan for ITDisaster Recovery Plan for IT
Disaster Recovery Plan for IT
hhuihhui
 
2015 2030 sendai framework for action on global disaster risk reduction actions
2015 2030 sendai framework for action on global disaster risk reduction actions2015 2030 sendai framework for action on global disaster risk reduction actions
2015 2030 sendai framework for action on global disaster risk reduction actions
Professor Eric K. Noji, M.D., MPH, DTMH(Lon), FRCP(UK)hon
 
Information Technology Disaster Planning
Information Technology Disaster PlanningInformation Technology Disaster Planning
Information Technology Disaster Planning
guest340570
 

Was ist angesagt? (20)

Data center disaster recovery.ppt
Data center disaster recovery.ppt Data center disaster recovery.ppt
Data center disaster recovery.ppt
 
Disaster recovery plan sample 2
Disaster recovery plan sample 2Disaster recovery plan sample 2
Disaster recovery plan sample 2
 
Sendai framework for_disaster_risk_reduction_2015-2030
Sendai framework for_disaster_risk_reduction_2015-2030Sendai framework for_disaster_risk_reduction_2015-2030
Sendai framework for_disaster_risk_reduction_2015-2030
 
Critical national infrastructure
Critical national infrastructureCritical national infrastructure
Critical national infrastructure
 
Persönliche Verantwortung und Haftungsrisiken des CISO / IT-Sicherheitsbeauft...
Persönliche Verantwortung und Haftungsrisiken des CISO / IT-Sicherheitsbeauft...Persönliche Verantwortung und Haftungsrisiken des CISO / IT-Sicherheitsbeauft...
Persönliche Verantwortung und Haftungsrisiken des CISO / IT-Sicherheitsbeauft...
 
Critical infrastructure
Critical infrastructureCritical infrastructure
Critical infrastructure
 
IT-Centric Disaster Recovery & Business Continuity
IT-Centric Disaster Recovery & Business ContinuityIT-Centric Disaster Recovery & Business Continuity
IT-Centric Disaster Recovery & Business Continuity
 
Brochure forcepoint dlp_en
Brochure forcepoint dlp_enBrochure forcepoint dlp_en
Brochure forcepoint dlp_en
 
Disaster Recovery Plan
Disaster Recovery Plan Disaster Recovery Plan
Disaster Recovery Plan
 
Disaster Recovery Plan for IT
Disaster Recovery Plan for ITDisaster Recovery Plan for IT
Disaster Recovery Plan for IT
 
Disaster Recovery Planning
Disaster Recovery PlanningDisaster Recovery Planning
Disaster Recovery Planning
 
Vulnerability analysis and experience of vulnerability in india
Vulnerability analysis and experience of vulnerability in indiaVulnerability analysis and experience of vulnerability in india
Vulnerability analysis and experience of vulnerability in india
 
Pertemuan 15 disaster recovery plan
Pertemuan 15 disaster recovery planPertemuan 15 disaster recovery plan
Pertemuan 15 disaster recovery plan
 
2015 2030 sendai framework for action on global disaster risk reduction actions
2015 2030 sendai framework for action on global disaster risk reduction actions2015 2030 sendai framework for action on global disaster risk reduction actions
2015 2030 sendai framework for action on global disaster risk reduction actions
 
What’s & Why’s of Business Continuity Planning (BCP)
What’s & Why’s of Business Continuity Planning (BCP) What’s & Why’s of Business Continuity Planning (BCP)
What’s & Why’s of Business Continuity Planning (BCP)
 
Public Sector Cloud
Public Sector CloudPublic Sector Cloud
Public Sector Cloud
 
Disaster recovery
Disaster recoveryDisaster recovery
Disaster recovery
 
Disaster Risk Reduction
Disaster Risk ReductionDisaster Risk Reduction
Disaster Risk Reduction
 
Cyber Security Standards Compliance
Cyber Security Standards ComplianceCyber Security Standards Compliance
Cyber Security Standards Compliance
 
Information Technology Disaster Planning
Information Technology Disaster PlanningInformation Technology Disaster Planning
Information Technology Disaster Planning
 

Ähnlich wie L17 CS5032 critical infrastructure

48 benot-long
48 benot-long48 benot-long
48 benot-long
KBIZEAU
 
M-Cloud Initiative: providing IT services for society
M-Cloud Initiative: providing IT services for societyM-Cloud Initiative: providing IT services for society
M-Cloud Initiative: providing IT services for society
USAID CEED II Project Moldova
 
Detroit A Smart City..... inspired by a "Community of Practice"
Detroit A Smart City..... inspired by a "Community of Practice"Detroit A Smart City..... inspired by a "Community of Practice"
Detroit A Smart City..... inspired by a "Community of Practice"
Charles "Chuck" Speicher Jr.
 
Dispelling the vapor around cloud computing - Drivers, barriers and considera...
Dispelling the vapor around cloud computing - Drivers, barriers and considera...Dispelling the vapor around cloud computing - Drivers, barriers and considera...
Dispelling the vapor around cloud computing - Drivers, barriers and considera...
IBM India Smarter Computing
 
IT-AAC Cloud Acquisition Roadmap
IT-AAC Cloud Acquisition RoadmapIT-AAC Cloud Acquisition Roadmap
IT-AAC Cloud Acquisition Roadmap
GovCloud Network
 
Enterprise information infrastructure
Enterprise information infrastructureEnterprise information infrastructure
Enterprise information infrastructure
Junaid Muzaffar
 
Impact of busines model elements on cloud computing adoption
Impact of busines model elements on cloud computing adoptionImpact of busines model elements on cloud computing adoption
Impact of busines model elements on cloud computing adoption
Andreja Pucihar
 
Socio-Economic Aware Design of Future Network Technology (Y.FNsocioeconomic)
Socio-Economic Aware Design of Future Network Technology (Y.FNsocioeconomic)Socio-Economic Aware Design of Future Network Technology (Y.FNsocioeconomic)
Socio-Economic Aware Design of Future Network Technology (Y.FNsocioeconomic)
ictseserv
 

Ähnlich wie L17 CS5032 critical infrastructure (20)

TSB_IoT_Presentations_27June2012
TSB_IoT_Presentations_27June2012TSB_IoT_Presentations_27June2012
TSB_IoT_Presentations_27June2012
 
48 benot-long
48 benot-long48 benot-long
48 benot-long
 
Stuart Wakefield Cloud Computing
Stuart Wakefield Cloud ComputingStuart Wakefield Cloud Computing
Stuart Wakefield Cloud Computing
 
M-Cloud Initiative: providing IT services for society
M-Cloud Initiative: providing IT services for societyM-Cloud Initiative: providing IT services for society
M-Cloud Initiative: providing IT services for society
 
Telecom Challenges and Electric Vehicles
Telecom Challenges and Electric VehiclesTelecom Challenges and Electric Vehicles
Telecom Challenges and Electric Vehicles
 
Detroit A Smart City..... inspired by a "Community of Practice"
Detroit A Smart City..... inspired by a "Community of Practice"Detroit A Smart City..... inspired by a "Community of Practice"
Detroit A Smart City..... inspired by a "Community of Practice"
 
Iia 2012 Spring Conference Philly V Final
Iia 2012 Spring Conference Philly V FinalIia 2012 Spring Conference Philly V Final
Iia 2012 Spring Conference Philly V Final
 
Dispelling the Vapour around Cloud
Dispelling the Vapour around Cloud Dispelling the Vapour around Cloud
Dispelling the Vapour around Cloud
 
Dispelling the vapor around cloud computing - Drivers, barriers and considera...
Dispelling the vapor around cloud computing - Drivers, barriers and considera...Dispelling the vapor around cloud computing - Drivers, barriers and considera...
Dispelling the vapor around cloud computing - Drivers, barriers and considera...
 
Dispelling The Vapor Around Cloud Computing –Network Management
Dispelling The Vapor Around Cloud Computing –Network ManagementDispelling The Vapor Around Cloud Computing –Network Management
Dispelling The Vapor Around Cloud Computing –Network Management
 
Dispelling The Vapor Around Cloud Computing
Dispelling The Vapor Around Cloud ComputingDispelling The Vapor Around Cloud Computing
Dispelling The Vapor Around Cloud Computing
 
Dispelling the vapor around cloud computing
Dispelling the vapor around cloud computingDispelling the vapor around cloud computing
Dispelling the vapor around cloud computing
 
IT-AAC Cloud Acquisition Roadmap
IT-AAC Cloud Acquisition RoadmapIT-AAC Cloud Acquisition Roadmap
IT-AAC Cloud Acquisition Roadmap
 
Get your house on order
Get your house on orderGet your house on order
Get your house on order
 
Afac device-security-july-7-2014v7-2
Afac device-security-july-7-2014v7-2Afac device-security-july-7-2014v7-2
Afac device-security-july-7-2014v7-2
 
Enterprise information infrastructure
Enterprise information infrastructureEnterprise information infrastructure
Enterprise information infrastructure
 
Impact of busines model elements on cloud computing adoption
Impact of busines model elements on cloud computing adoptionImpact of busines model elements on cloud computing adoption
Impact of busines model elements on cloud computing adoption
 
Shortsea prosesser kuehne_nagel_rod_franlin
Shortsea prosesser kuehne_nagel_rod_franlinShortsea prosesser kuehne_nagel_rod_franlin
Shortsea prosesser kuehne_nagel_rod_franlin
 
Socio-Economic Aware Design of Future Network Technology (Y.FNsocioeconomic)
Socio-Economic Aware Design of Future Network Technology (Y.FNsocioeconomic)Socio-Economic Aware Design of Future Network Technology (Y.FNsocioeconomic)
Socio-Economic Aware Design of Future Network Technology (Y.FNsocioeconomic)
 
ZK Research: Virtual Infrastructure Creates Communications Agility
ZK Research: Virtual Infrastructure Creates Communications AgilityZK Research: Virtual Infrastructure Creates Communications Agility
ZK Research: Virtual Infrastructure Creates Communications Agility
 

Mehr von Ian Sommerville

Security case buffer overflow
Security case buffer overflowSecurity case buffer overflow
Security case buffer overflow
Ian Sommerville
 
CS5032 Case study Ariane 5 launcher failure
CS5032 Case study Ariane 5 launcher failureCS5032 Case study Ariane 5 launcher failure
CS5032 Case study Ariane 5 launcher failure
Ian Sommerville
 
CS5032 Case study Kegworth air disaster
CS5032 Case study Kegworth air disasterCS5032 Case study Kegworth air disaster
CS5032 Case study Kegworth air disaster
Ian Sommerville
 
CS5032 L19 cybersecurity 1
CS5032 L19 cybersecurity 1CS5032 L19 cybersecurity 1
CS5032 L19 cybersecurity 1
Ian Sommerville
 
CS5032 L20 cybersecurity 2
CS5032 L20 cybersecurity 2CS5032 L20 cybersecurity 2
CS5032 L20 cybersecurity 2
Ian Sommerville
 
CS5032 Case study Maroochy water breach
CS5032 Case study Maroochy water breachCS5032 Case study Maroochy water breach
CS5032 Case study Maroochy water breach
Ian Sommerville
 
CS 5032 L18 Critical infrastructure 2: SCADA systems
CS 5032 L18 Critical infrastructure 2: SCADA systemsCS 5032 L18 Critical infrastructure 2: SCADA systems
CS 5032 L18 Critical infrastructure 2: SCADA systems
Ian Sommerville
 
CS5032 L9 security engineering 1 2013
CS5032 L9 security engineering 1 2013CS5032 L9 security engineering 1 2013
CS5032 L9 security engineering 1 2013
Ian Sommerville
 
CS5032 L10 security engineering 2 2013
CS5032 L10 security engineering 2 2013CS5032 L10 security engineering 2 2013
CS5032 L10 security engineering 2 2013
Ian Sommerville
 

Mehr von Ian Sommerville (20)

Ultra Large Scale Systems
Ultra Large Scale SystemsUltra Large Scale Systems
Ultra Large Scale Systems
 
Resp modellingintro
Resp modellingintroResp modellingintro
Resp modellingintro
 
Resilience and recovery
Resilience and recoveryResilience and recovery
Resilience and recovery
 
LSCITS-engineering
LSCITS-engineeringLSCITS-engineering
LSCITS-engineering
 
Requirements reality
Requirements realityRequirements reality
Requirements reality
 
Dependability requirements for LSCITS
Dependability requirements for LSCITSDependability requirements for LSCITS
Dependability requirements for LSCITS
 
Conceptual systems design
Conceptual systems designConceptual systems design
Conceptual systems design
 
Requirements Engineering for LSCITS
Requirements Engineering for LSCITSRequirements Engineering for LSCITS
Requirements Engineering for LSCITS
 
An introduction to LSCITS
An introduction to LSCITSAn introduction to LSCITS
An introduction to LSCITS
 
Internet worm-case-study
Internet worm-case-studyInternet worm-case-study
Internet worm-case-study
 
Designing software for a million users
Designing software for a million usersDesigning software for a million users
Designing software for a million users
 
Security case buffer overflow
Security case buffer overflowSecurity case buffer overflow
Security case buffer overflow
 
CS5032 Case study Ariane 5 launcher failure
CS5032 Case study Ariane 5 launcher failureCS5032 Case study Ariane 5 launcher failure
CS5032 Case study Ariane 5 launcher failure
 
CS5032 Case study Kegworth air disaster
CS5032 Case study Kegworth air disasterCS5032 Case study Kegworth air disaster
CS5032 Case study Kegworth air disaster
 
CS5032 L19 cybersecurity 1
CS5032 L19 cybersecurity 1CS5032 L19 cybersecurity 1
CS5032 L19 cybersecurity 1
 
CS5032 L20 cybersecurity 2
CS5032 L20 cybersecurity 2CS5032 L20 cybersecurity 2
CS5032 L20 cybersecurity 2
 
CS5032 Case study Maroochy water breach
CS5032 Case study Maroochy water breachCS5032 Case study Maroochy water breach
CS5032 Case study Maroochy water breach
 
CS 5032 L18 Critical infrastructure 2: SCADA systems
CS 5032 L18 Critical infrastructure 2: SCADA systemsCS 5032 L18 Critical infrastructure 2: SCADA systems
CS 5032 L18 Critical infrastructure 2: SCADA systems
 
CS5032 L9 security engineering 1 2013
CS5032 L9 security engineering 1 2013CS5032 L9 security engineering 1 2013
CS5032 L9 security engineering 1 2013
 
CS5032 L10 security engineering 2 2013
CS5032 L10 security engineering 2 2013CS5032 L10 security engineering 2 2013
CS5032 L10 security engineering 2 2013
 

L17 CS5032 critical infrastructure

  • 2. What is infrastructure • All modern societies and businesses are dependent upon an underlying infrastructure: power, water, waste disposal, the internet, transport networks, financial services, emergency services, hospitals etc. • This infrastructure is shared by all elements of business and society Critical infrastructure, 2013 Slide 2
  • 3. Critical systems of systems • Why is this being covered in a computer science course on critical systems: – Our infrastructure is controlled and managed by a wide range of interacting, computer-based system – Businesses and essential services to citizens are completely dependent on our ‘digital infrastructure’ – Therefore, all of the systems involved in infrastructure management are critical systems • We cannot consider these critical systems in isolation but must also consider their interactions. We are therefore concerned with critical systems of systems Critical infrastructure, 2013 Slide 3
  • 4. Public infrastructure • The national infrastructure comprises networks, systems, sites, facilities and businesses that deliver goods and services to citizens, and support our economy, environment and social well-being. • Includes systems and services such as transport, energy, computing, communications, finance, health care, etc. Critical infrastructure, 2013 Slide 4
  • 5. Organisational infrastructure • Supply chain and external information systems on which an organisation depends • Digital infrastructure within the organisation (servers, networks, etc.) • Shared business services such as accounting and purchasing Critical infrastructure, 2013 Slide 5
  • 6. Infrastructure characteristics Large Scale • Spread over large geographic areas • Regional/National/International – Complex • Many components • Many interdependencies (internal and external) – Reliance on standards • Heterogeneous parts rely on standards for interoperation • Standards are not always uniformly applied across an infrastructure – Long term • Modern and legacy components • Emerges and changes over the long term • We have to live with decisions made a long time ago Critical infrastructure, 2013 Slide 6
  • 7. Digital infrastructure • Hardware and software systems and networks on which businesses and society depends – Fibre communication links – Mobile phone and data network – Data centres and servers – ISPs • Now, almost universally, other infrastructure components depend on the Critical infrastructure, 2013 digital infrastructure to deliver Slide 7 their services
  • 8. Infrastructure ownership • Rarely one single owner and authority • Sub-systems and components are increasingly privatised – The theory is that privately operated infrastructure will be more efficient – However it is difficult to optimise an infrastructure when sections of it are run by self interested parties • Crosses national and Critical infrastructure, 2013 international boundaries Slide 8
  • 9. Infrastructure funding • Infrastructure replacement is very expensive • We (and governments) are often reluctant to pay for infrastructure • Where monopolies exist they are able to over- charge. • However, competition where operational costs are low can lead to under- Critical infrastructure, 2013 charging (and no re- Slide 9
  • 10. Critical infrastructure • Assets which are part of the national and organisational infrastructure whose availability is essential to the delivery of infrastructure services and whose unavailability has significant human, social and economic consequences. • Critical infrastructure includes – Structures – Networks – Systems – Organisations Critical infrastructure, 2013 Slide 10
  • 11. Landline Phones Mobile Telecommunications Production Postal Services Processing Communications Import Broadcast Communications Distribution Food Retail Ambulance Fire and Rescue Electricity Emergency Services Marine Gas Payment, Clearing Police Oil and Settlement Energy Fuel Systems Public Finances Finance Markets and Central Government Exchanges Parliament Government Devolved Administrations Regional and Local Authorities Health Maritime Health and Social Care Aviation Transport Land (Road and rail) Potable water supply Water Dams Waste Water Critical infrastructure, 2013 Services Slide 11
  • 12. Critical assets • Not all components of the national infrastructure are critical • Does not just depend on the type of facility but also on the number of people affected or other consequences of unavailability – London Heathrow airport is a critical asset – Dundee Airport is not a Critical infrastructure, 2013 critical asset Slide 12
  • 13. Infrastructure dependencies • Infrastructure elements are often dependent on each other so that failure of one element may be caused by failure of some other element elsewhere Internet services delivered by an ISP depend on communication services from a telecomms company and power from an electricity company Critical infrastructure, 2013 Slide 13
  • 14. Understanding dependencies • Functional: Reliance between components. • Informational: Data flow from one node aides decision making elsewhere. • Shared Control: Control is from the same system/location • Geospatial: Physical proximity • Purpose: A shared function or purpose • Policy/procedural: A change in policy or procedure at one place may have effects elsewhere. • Societal Interdependency: Changes to one component may have societal effects which lead to changes to others Critical infrastructure, 2013 Slide 14
  • 15. Cascade failure • A failure in one area cascades to another infrastructure sector, causing failures and disruption, sometimes in quite unrelated areas • Failure of flood defences results in an electricity sub- station being flooded • Leads to a loss of power in the local area • An ISP in that area goes offline, leading to a loss of internet service to customers who may be anywhere in the country. Critical infrastructure, 2013 Slide 15
  • 16. Mutual dependencies • Mutual dependencies cause major problems in the event of failure • Example – Communications systems depend on power – Power recovery depends on communications – Power failure that leads to loss of comms is difficult to recover from Critical infrastructure, 2013 Slide 16
  • 17. Single point of failure • Several services share some facility so that failure at that facility leads to a loss of all of these services. • Examples – Power and communication cables http://www.flickr.com/photos/brizo_th in the same duct e_scot/3736542522/ – Transport, communicati on, power use the same bridge to cross a river Critical infrastructure, 2013 Slide 17
  • 18. Protecting and assuring infrastructure A difficult problem – Infrastructure is rarely under individual control – Infrastructure is large scale • Assurance takes place through governance processes and risk management – Identify key components – Identify vulnerabilities – Identify threats – Construct risk models – Assess possible outcomes from loss – Make/request/lobby for necessary improvements – Make contingency plans Critical infrastructure, 2013 Slide 18
  • 20. Vulnerabilities • Lack of knowledge of infrastructure state and dependencies • Old, insecure systems used for infrastructure control • Capacity planning based on outdated assumptions • Geographically distributed infrastructure cannot be physically secured • Lack of coordinated infrastructure management • Physical location of some facilities (flood plain) Critical infrastructure, 2013 Slide 20
  • 22. Resistance • Provide protection against anticipated events or attacks • Based on previous experience and assumptions • Changing world or external circumstances may mean that assumptions are invalid Critical infrastructure, 2013 Slide 22
  • 23. Reliability • Infrastructure components should be designed to operate under a range of (anticipated) conditions not just ‘normal’ operating conditions • Components, as far as possible, should be designed for ‘soft’, incremental rather than catastrophic failure Critical infrastructure, 2013 Slide 23
  • 24. Redundancy • The network or system as a whole should be designed so that there are backup installations and spare capacity available. • Computing support should be provided by different providers in different locations Critical infrastructure, 2013 Slide 24
  • 25. Response and recovery • Respond to distruptive events quickly, limiting the damage as far as possible and ensuring public safety • Plan how to restore services as quickly as possible in the event of a loss of capability Critical infrastructure, 2013 Slide 25
  • 26. Key points • Infrastructure is critical to business, security, health, society. • We are increasingly reliant on digital infrastructure. • Infrastructure is large scale, complex, has modern and legacy components, and many interdependencies. • Securing infrastructure is a hard problem • Hard to know what you have • Hard to assess vulnerabilities • Difficult to make improvements because infrastructure is Critical infrastructure, 2013 rarely under direct control of those it is critical to Slide 26

Hinweis der Redaktion

  1. Need to think of examples for each of these for the lecture
  2. Maybe I need a slide on each of these.