SICIA Security Indicators for Critical Infrastructure Analysis

Date: 
01/01/2014 to 31/12/2017

In the SICIA project, a procedure is developed with which operators of critical infrastructures can determine the current state of IT security in their facilities.This type of assessment is already required in many industry-specific guidelines as a prerequisite for the continuous improvement of security-relevant IT processes. However, a concrete approach that allows differentiated evaluation even of complex infrastructures down to the device level is not yet available.
 In contrast to existing assessment methods, the analysis developed in the SICIA project dispenses with the consideration of hardly determinable, hardly quantifiable threats. Above all, the developed safety indicators consolidate technical parameters into numerical values ​​in order to make the actual IT security visible to operators.
 The comparison of the identified security indicators at the system and device level then allows the detection of vulnerabilities and a prioritization of improvement measures in complex infrastructures. A tool is being developed to support the assessment of potential improvement actions. This allows an automated determination of parameters, their compression and a simulation of the effects of potential improvement measures. Particularly effective measures become visible and can be selected by the operator.

Week: 
Tuesday, 11 December, 2018

News

Outcomes and key themes from ICT 2018 Session on Cybersecurity as key for a Digital Economy and Society

On 5 December 2018, the Digital Single Market of the European Commission sponsored a session on the topic of “Cybersecurity as key for a Digital Economy and Society”. The highly-popular session (over 90 attendees) took place on 5 December 2018 within the flagship ICT2018 Conference in Vienna, Austria.

Khalil Rouhana, Deputy Director General, EC – DG CNECT, kicked off the session with an overview of some of the most pressing issues of the day in cybersecurity: