Critical infrastructure resilience: A Nordic model in the making?

Pursiainen, Christer

doi:10.1016/j.ijdrr.2017.08.006

Cited by 74 publications

(54 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…If this is true, seeing infrastructure management as part of the context of internal and external security, the prevention of terrorism and crisis management become increasingly distant. To counteract this, the Nordic countries, for example, have been striving to reinforce the principles of comprehensive security and a broader concept of security that interweave public administration, business, non-governmental organizations, and citizens to improve the resilience of society [64]. The role of such actors may be vital in exceptional situations; they may be essential for continuity even if they are not thought to be relevant when designing systems or managing them in normal situations.…”

Section: Disruption Requires An Innovative Search For Resources and Cmentioning

confidence: 99%

Critical Infrastructures: The Operational Environment in Cases of Severe Disruption

et al. 2019

View full text Add to dashboard Cite

The functioning and resilience of modern societies have become more and more dependent on critical infrastructures. Severe disturbance to critical infrastructure is likely to reveal chaotic operational conditions, in which infrastructure service providers, emergency services, police, municipalities, and other key stakeholders must act effectively to minimize damages and restore normal operations. This paper aims to better understand this kind of operational environment resulting from, for example, a terrorist attack. It emphasizes mutual interdependencies among key stakeholders in such situations. The empirical contribution is based on observations from a workshop, in which participants representing the critical services and infrastructures in Finland discussed in thematic groups. Two scenarios guided the workshop discussions; nationwide electricity grid disruption and presumably intentionally contaminated water supply in a city. The results indicate that more attention should be paid to the interdependencies between critical infrastructures, as well as to the latent vulnerabilities hidden inside the systems. Furthermore, producing security seems to require continuous interaction and creation of meanings between extremely different actors and logics. This implies a need for changes in thinking, particularly concerning the ability to define problems across conventional administrative structures, geographical boundaries and conferred powers.

show abstract

Section: Disruption Requires An Innovative Search For Resources and Cmentioning

confidence: 99%

Critical Infrastructures: The Operational Environment in Cases of Severe Disruption

et al. 2019

View full text Add to dashboard Cite

show abstract

“…In addition, cyber-threats and environmental threats interact in a way that increases the risks for CI. This is particularly true in the energy sector, especially in the European High North (EHN) areas, such as Norway, Sweden and Finland where there is a need to improve resilience (Pursiainen, 2018). Given the lack of treaties both at global and regional level regulating cyber-threats and cyber-attacks, especially to CI and under environmental threats, it is up to the national level, and more specifically to the private sector to manage cyber-threats.…”

Section: Relevance Of Critical Infrastructures Between Environmental mentioning

confidence: 99%

“…Adding regulation would force the private sector operating under cyber-security rules and exposed to the risk of cyber threat, to invest more resources in protection or resilience of the systems they own or operate. This would not be welcomed by many operators, especially of CI, because markets are externalizing CI risks at present, whereas state regulation would mean establishing "liability rules based on the notion that organization should internalize the costs of the risks they produce and that by internalizing them, they will make wise choices about the technologies they use" (Pursiainen, 2018). According to one author (Pursiainen, 2018), this would require a well-functioning tort liability legislation that would make it easy for the consumer, both public and private, to demand compensation for losses incurred by CI failures or enterprises heavily digitalized with vulnerable holes that could be exposed to cyber-threats.…”

mentioning

confidence: 99%

“…This would not be welcomed by many operators, especially of CI, because markets are externalizing CI risks at present, whereas state regulation would mean establishing "liability rules based on the notion that organization should internalize the costs of the risks they produce and that by internalizing them, they will make wise choices about the technologies they use" (Pursiainen, 2018). According to one author (Pursiainen, 2018), this would require a well-functioning tort liability legislation that would make it easy for the consumer, both public and private, to demand compensation for losses incurred by CI failures or enterprises heavily digitalized with vulnerable holes that could be exposed to cyber-threats. In the substance, lessons learned from the environmental liability system and applied to the cyber-security regime can force the industry to pay more attention to cybersecurity, to invest more and to make the cybersecurity regime effective and to use liability as an instrument to apply sustainable development not only in the environmental area but also in the cybersecurity regime facilitating the shift toward a sustainable cyber security.…”

mentioning

confidence: 99%

See 1 more Smart Citation

Climate Change, Environmental Threats and Cyber-Threats to Critical Infrastructures in Multi-Regulatory Sustainable Global Approach with Sweden as an Example

Cassotta¹,

Pettersson²

2019

BLR

View full text Add to dashboard Cite

This article explores and analyzes the nexus between climate change, environmental threats, and cyber-threats in a multi-regulatory contextual sustainable global approach with Sweden as an example. Research and collection of material have been conducted with the precise aim to draw a parallel between environmental regulations and the cyberspace and cybersecurity systems. Many aspects of the cyber-security system are not known and are highly fragmented. Selected points of the study of the Swedish cyber strategy are being developed in parallel to the environmental regime in order to better understand how to improve the effectiveness of the cyber complex regime from a contextual perspective. One way to better understand the cybersecurity system is to make an interdisciplinary study of how best to coordinate these systems, thus making both cyber law and policy more effective. This leads to bringing evidence on how to take inspiration from a regime system (environmental law or, more concretely, the environmental liability framework) and using it as source of inspiration to understand and shape the formation of another system in another area, namely cybersecurity. The method of this ongoing research consists of choosing and applying key aspects of environmental law (such as concepts and principles) and comparing them with comparable selected cybersecurity key aspects, which are selected because they present strong similarities with their "equivalent" focal points pertaining How to cite this paper: Cassotta, S., & Pettersson, M. (2019). Climate Change, Environmental Threats and Cyber-Threats to Critical Infrastructures in Multi-Regulatory Sustainable Global Approach with Sweden as

show abstract

“…This work focuses on situation (a) and proposes a methodology for continuous and multidimensional resilience assessment based on analysis of the functionalities of interconnected systems. Current resilience assessment approaches are oriented towards individual systems (Pursiainen, 2018), whether they be financial, healthcare or transport systems. These approaches are therefore inflexible (difficult to adapt to other domains), with fixed criteria that generally concern performance (other criteria that might be important in the assessment of resilience are overlooked) and not applicable in the context of interconnected systems.…”

Section: Introductionmentioning

confidence: 99%

Continuous and multidimensional assessment of resilience based on functionality analysis for interconnected systems

Kamissoko

Nastov²,

Bénaben

et al. 2018

Structure and Infrastructure Engineering

View full text Add to dashboard Cite

The increasing number of disruptions to critical infrastructure, like natural disasters, terrorist attacks or internal failure is today a major problem of society. Concern is even greater when considering the interconnected nature of critical infrastructure, which might lead to failure propagation, causing domino and cascade effects. To mitigate such outcomes, critical infrastructure must recover its capacity to function with regard to several criteria. Stakeholders must therefore analyse and improve the resilience of critical infrastructure before any disruption occurs, and base this analysis on different models so as to guarantee society's vital needs. Current resilience assessment methods are mainly oriented toward the context of a single system, thus narrowing their criteria metrics, limiting flexibility and adaptation to other contexts and overlooking the interconnected nature of systems. This article introduces a new tool-equipped approach that makes it possible to define a model to evaluate the functionalities of interconnected systems. The model is then used to assess the resilience of these systems based on simple and generic criteria that can be extended and adapted. Several assertions related to the concept of resilience and some resilience indicators are also introduced. A case study provides the validation performed by experts from several domains.

show abstract

Critical infrastructure resilience: A Nordic model in the making?

Cited by 74 publications

References 13 publications

Critical Infrastructures: The Operational Environment in Cases of Severe Disruption

Critical Infrastructures: The Operational Environment in Cases of Severe Disruption

Climate Change, Environmental Threats and Cyber-Threats to Critical Infrastructures in Multi-Regulatory Sustainable Global Approach with Sweden as an Example

Continuous and multidimensional assessment of resilience based on functionality analysis for interconnected systems

Contact Info

Product

Resources

About