Critical infrastructure

Critical infrastructure (or critical national infrastructure (CNI) in the UK) is a term used by governments to describe assets that
are essential for the functioning of a society and economy – the infrastructure. Most commonly associated with the term are facilities
for:

Shelter; Heating (e.g. natural gas, fuel oil, district heating);

Agriculture, food production and distribution;
Water supply (drinking water, waste water/sewage, stemming of surface water (e.g. dikes and sluices));
Public health (hospitals, ambulances);
Transportation systems (fuel supply, railway network, airports, harbours, inland shipping);
Security services (police, military).
Electricity generation, transmission and distribution; (e.g.natural gas, fuel oil, coal, nuclear power)

Renewable energy, which are naturally replenished on a human timescale, such as sunlight, wind, rain, tides,
waves, and geothermal heat.
Telecommunication; coordination for successful operations
Economic sector; Goods and services and financial services (banking, clearing);

Contents
Regional critical infrastructure protection programmes
European Union
Germany
United Kingdom
United States
National Infrastructure Protection Plan

See also
References
External links

Regional critical infrastructure protection programmes

European Union
The European Programme for Critical Infrastructure Protection (EPCIP) has been laid out in EU Directives by the Commission (EU
COM(2006) 786 final).

It has proposed a list of European critical infrastructures based upon inputs by its member states.

Each designated European Critical Infrastructures (ECI) will have to have an Operator Security Plan (OSP) covering the
identification of important assets, a risk analysis based on major threat scenarios and the vulnerability of each asset, and the
identification, selection and prioritisation of counter
-measures and procedures.

Germany
The German critical-infrastructure protection programme is coordinated by the Federal Ministry of the Interior. Some of its special
agencies like the German Federal Office for Information Security or the Federal Office of Civil Protection and Disaster Assistance
BBK deliver the respective content, e.g., aboutIT systems.[1]

United Kingdom
In the UK, the Centre for the Protection of National Infrastructure (CPNI) provides information, personnel and physical security
advice to the businesses and organizations which make up the UK's national infrastructure, helping to reduce its vulnerability to
terrorism and other threats.

It can call on resources from other government departments and agencies, including MI5, the Communications-Electronics Security
Group and other government departments responsible for national infrastructure sectors.

United States
The USA has had a wide-reaching critical infrastructure protection program in place since 1996. Its Patriot Act of 2001 defined
critical infrastructure as those "systems and assets, whether physical or virtual, so vital to the United States that the incapacity or
destruction of such systems and assets would have a debilitating impact on security, national economic security, national public
health or safety, or any combination of those matters."

In 2014 the NIST Cybersecurity Framework was published, and quickly became a popular set of guidelines, despite the significant
costs of full compliance.[2]

These have identified a number of critical infrastructures and responsible agencies:

1. Agriculture and food – Departments ofAgriculture and Health and Human Services
2. Water – Environmental Protection Agency
3. Public Health – Department of Health and Human Services
4. Emergency Services –Department of Homeland Security
5. Government – Department of Homeland Security
6. Defense Industrial Base– Department of Defense
7. Information and Telecommunications – Department of Commerce
8. Energy – Department of Energy
9. Transportation and Shipping – Department of Transportation
10. Banking and Finance – Department of the Treasury
11. Chemical Industry and Hazardous Materials – Department of Homeland Security
12. Post – Department of Homeland Security
13. National Monuments and icons - Department of the Interior
14. Critical manufacturing - Department of Homeland Security (14th sector announced March 3, 2008; recorded April 30,
2008)

National Infrastructure Protection Plan

The National Infrastructure Protection Plan (NIPP) defines critical infrastructure sector in the US. Presidential Policy Directive 21
(PPD-21),[3] issued in February 2013 entitled Critical Infrastructure Security and Resilience mandated an update to the NIPP. This
revision of the plan established the following 16 critical infrastructure sectors:

1. Chemical
2. Commercial facilities
3. Communications
4. Critical manufacturing
5. Dams
6. Defense industrial base
7. Emergency services
 8. Energy
9. Financial services
10. Food and agriculture
11. Government facilities
12. Healthcare and public health
13. Information technology
14. Nuclear reactors, materials, and waste
15. Transportation systems
16. Water and wastewater systems
National Monuments and Icons along with the postal and shipping sector were removed in 2013 update to the NIPP. The 2013
version of the NIPP has faced criticism for lacking viable risk measures.[4][5] The plan assigns the following agencies sector-specific
coordination responsibilities:

Department of Homeland Security

Chemical
Commercial facilities
Communications
Critical manufacturing
Dams
Emergency services
Government facilities (jointly with General Services Administration)
Information technology
Nuclear reactors, materials, and waste
Transportation systems (jointly with Department of Transportation)

Department of Defense

Defense industrial base

Department of Energy

Energy

Department of the Treasury

Financial services

Department of Agriculture

Food and agriculture

General Services Administration

Government facilities (jointly with Department of Homeland Security)

Department of Health and Human Services

Healthcare and Public Health

Department of Transportation

Transportation systems (jointly with Department of Homeland Security)

Environmental Protection Agency

Water and wastewater systems

See also
Infrastructure
Infrastructure security

References
1. Nationale Strategie zum Schutz Kritischer Infrastrukturen (KRITIS-Strategie)
(http://www.bmi.bund.de/cae/servlet/co
ntentblob/544770/publicationFile/27031/kritis.pdf)
2. "NIST Cybersecurity Framework Adoption Hampered By Costs, Survey Finds" (https://www.darkreading.com/attacks
-breaches/nist-cybersecurity-framework-adoption-hampered-by-costs-survey-finds/d/d-id/1324901)
. Dark Reading.
Retrieved August 2, 2016.
3. "Presidential Policy Directive -- Critical Infrastructure Security and Resilience"(https://obamawhitehouse.archives.go
v/the-press-office/2013/02/12/presidential-policy-directive-critical-infrastructure-security-and-resil)
. whitehouse.gov.
February 12, 2013. Retrieved March 12, 2019.
4. White, R. (February 13, 2014)."Towards a Unified Homeland Security Strategy: An Asset Vulnerability Model" (http
s://www.hsaj.org/articles/254). Homeland Security Affairs. Retrieved February 26, 2015.
5. Kahan, J (February 4, 2015)."Resilience Redux: Buzzword or Basis for Homeland Security"(https://www.hsaj.org/art
icles/1308). Homeland Security Affairs. Retrieved February 28, 2015.

External links
Infracritical: comparison of US and international definitions of infrastructure

Retrieved from "https://en.wikipedia.org/w/index.php?title=Critical_infrastructure&oldid=887359099

"

This page was last edited on 12 March 2019, at 04:05(UTC).

Text is available under theCreative Commons Attribution-ShareAlike License ; additional terms may apply. By using this
site, you agree to the Terms of Use and Privacy Policy. Wikipedia® is a registered trademark of theWikimedia
Foundation, Inc., a non-profit organization.