Interdependencies between Critical Infrastructures: Analyzing the Risk of Cascading Effects

Kotzanikolaou, Panayiotis; Theoharidou, Marianthi; Gritzalis, Dimitris

doi:10.1007/978-3-642-41476-3_9

Cited by 31 publications

(20 citation statements)

References 18 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The multi-risk dependency analysis method (Stergiopoulos et al, 2016a;Kotzanikolaou et al, 2013aKotzanikolaou et al, , 2013bKotzanikolaou et al, , 2013c) is a network-based modelling technique that takes advantage of the results of organisation-level RAs carried out by owners and operators of enterprises. Directed graphs are used to visualise the relationships (dependencies) between assets arising from the business processes that manage them in order to assess the risk of n th -order dependencies.…”

Section: Multi-risk Asset Dependency Analysis Methodologymentioning

confidence: 99%

“…Other methodologies focus on the risk derived from CI dependencies (Stergiopoulos et al, 2016a;Kotzanikolaou et al, 2013aKotzanikolaou et al, , 2013bKotzanikolaou et al, , 2013cAlpcan and Bambos, 2009) and their potential cascading effects. Most methodologies and tools are usually entity-specific and oriented towards providing assessment reports and countermeasures on specific parts of an IT system; either assets or business processes alone.…”

Section: Motivationmentioning

confidence: 99%

“…Two fundamental building blocks are used in the proposed methodology, extracted from previous research (Stergiopoulos et al, 2016a;Kotzanikolaou et al, 2013aKotzanikolaou et al, , 2013bKotzanikolaou et al, , 2013c and redefined to suit our RA needs: 1 the subjacent multi-risk dependency analysis methodology for cascading failures 2 the fuzzy modelling approach applied for the time-based analysis of dependencies.…”

Section: Building Blocksmentioning

confidence: 99%

“…This paper utilises a graph-based risk analysis methodology previously proposed for analysing cross-infrastructure dependency failures (Stergiopoulos et al, 2016a;Kotzanikolaou et al, 2013aKotzanikolaou et al, , 2013bKotzanikolaou et al, , 2013c and applies it to a process-based RA. The proposed methodology can dynamically assess the evolution of cascading failures over time between assets involved in an infrastructure's business processes.…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

A process-based dependency risk analysis methodology for critical infrastructures

Stergiopoulos

Kouktzoglou

Theocharidou

et al. 2017

IJCIS

Self Cite

View full text Add to dashboard Cite

This paper applies research in dependency modelling to a process-based risk assessment methodology suitable for critical infrastructures. The proposed methodology dynamically assesses the evolution of cascading failures over time between assets involved in a business process of an infrastructure. This approach can be applied by a CI operator/owner to explore how a failure in a single component (asset) affects the other assets and relevant business processes. It could also be applied in an analysis that includes multiple CI operators in the same supply chain to explore the dependencies between their assets and explore how these affect the provision of key societal services. The paper presents a proof-of-concept tool, based on business-process risk assessment and graph modelling, and a realistic case example of a rail scheduling process. The approach allows risk assessors and decision makers to analyse and identify critical dependency chains and it can reveal underestimated risks due to dependencies.Keywords: risk assessment; business process; asset; dependency; cascading failures; risk chains; likelihood; impact; critical infrastructure. A process-based dependency risk analysis methodology 185Reference to this paper should be made as follows: Stergiopoulos, G., Kouktzoglou, V., Theocharidou, M. and Gritzalis, D. (2017) 'A process-based dependency risk analysis methodology for critical infrastructures', Int.

show abstract

Section: Multi-risk Asset Dependency Analysis Methodologymentioning

confidence: 99%

Section: Motivationmentioning

confidence: 99%

Section: Building Blocksmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

A process-based dependency risk analysis methodology for critical infrastructures

Stergiopoulos

Kouktzoglou

Theocharidou

et al. 2017

IJCIS

Self Cite

View full text Add to dashboard Cite

show abstract

“…Moreover, a single incident can cause cascading effects [9] on other critical infrastructures due to dependencies among them [10]. More specifically, ITS mainly suffer from ICT threats.…”

Section: Introductionmentioning

confidence: 99%

Access Control Issues in Utilizing Fog Computing for Transport Infrastructure

Salonikias

Mavridis

Gritzalis

2016

Lecture Notes in Computer Science

Self Cite

View full text Add to dashboard Cite

Abstract. The integration of the information and communication technologies of cloud computing, Software Defined Networking (SDN) and Internet of Things (IoT) into traditional transportation infrastructures enables the evolution of Intelligent Transportation Systems (ITS). Moreover, the specific requirements for realtime applications and service provision near to consumers introduce the utilization of fog computing as an extension of cloud. However, such a movement affects security aspects and poses new access control challenges. In this paper, we study the operational characteristics of a proposed ITS paradigm utilizing fog computing and identify corresponding access control issues. To address these issues in such a versatile and highly distributed environment, we present the key pointers of an attribute-based access control scheme suitable for fog computing. This paper aims to set a basis for further work in refining, verifying and validating the proposed solution.

show abstract

Creating a Cross-Domain Simulation Framework for Risk Analyses of Cities

Schauer

Raß

2020

IFIP Advances in Information and Communication Technology

View full text Add to dashboard Cite

Cities and their agglomerations are home to a large number of critical infrastructures that provide essential services in a geographically narrow space and are thus physically and logically dependent on one another. This results in a sensitive network of organizations and connections in which incidents within one infrastructure can have an impact on the entire system. Thus, a detailed risk analysis with a strong focus on the interaction of these networks and on potential cascading effects for the population represents a central aspect for the protection of these critical supply infrastructures. In this article, we want to show a general approach on how to create a cross-domain simulation model, which can describe the major critical infrastructure networks within a large city up to a certain level of abstraction. In contrast to existing solutions, this approach focuses mainly on the dynamic relationships between networks and integrates mathematical models from stochastics for a realistic representation. The central output is a framework that supports a detailed assessment of the effects of threats both on individual critical infrastructures and on possible cascading effects within the entire network of critical supply infrastructures.

show abstract

Interdependencies between Critical Infrastructures: Analyzing the Risk of Cascading Effects

Cited by 31 publications

References 18 publications

A process-based dependency risk analysis methodology for critical infrastructures

A process-based dependency risk analysis methodology for critical infrastructures

Access Control Issues in Utilizing Fog Computing for Transport Infrastructure

Creating a Cross-Domain Simulation Framework for Risk Analyses of Cities

Contact Info

Product

Resources

About