Professional Documents
Culture Documents
EU working group on
Information Infrastructure
Interdependencies and Vulnerabilities
Workshop on “Dependability in Information Society:
future scenarios and R&D challenges”
Toulouse, 13-14 December 2001
Marcelo Masera
Joint Research Centre - EC
Cybersecurity group
Institute for the Protection and the Security of the Citizen
Marcelo.Masera@jrc.it
Background
2
Motivation
Infrastructure A Information
Information
asset Z (t+d) Infrastructure
Infrastructure B
Functional / structural / behavioural
link
4
Information infrastructure
Sector
Value-added services specific
Generic end-user services
5
Infrastructure infrastructures?
7
Vulnerabilities & interdependencies
Remote Energy
Control
INTERNET
INTERNET
Info-gateway &
Intelligent
metering Always-on Cyber-
broadband attacks
Smart connection E-Shop
Home
8
Issues
¾ Issues:
– Governance of the Information Society, including security,
quality of service, …
– Explicit, shared approaches for expressing preferences and
negotiating the management risk
9
Some challenges
10
Vulnerabilities – business processes
Personal Data Information Business Process
Platform Infrastructure Interdependencies
Credit card/
smart cards Risk
Untrusted
Mobile Phone Banks Analysis
3rd Parties
/PDAs
Research
Home PC/ INTERNET/
Hospitals
INTERNET/ Web Bugs
Smart Home Portals/
Portals/ Public Insurance
ASPs
Intelligent Car ASPs Authorities Data
Employers Marketing
Commerce
Wearable Devices/
Caching Law
Ambient IT Click
Utilities Enforcement
Access control Billing Streams
Biometrics Logistics
Logging
Digital Health
Record
– Management of risks:
• Systemic risks
• Evidence of events
12
Concluding remarks
RM
13