Identification of National Critical Infrastructures : DSO comply with European Council Directive 2008/114/EC

• Autorzy: Pestana M. , Messias R.
• Języki publikacji: EN

Abstrakty

EN

The subject addressed in the paper is about the identification of National Critical Infrastructures (NCI). The focus is the result of the responsibilities of EDP Distribuição, the Portuguese mainland Electrical Distribution System Operator (DSO) serving over 6 million customers in a regulated business with clearly defined tasks, to comply with the transposition to the Portuguese legislation of the European Council Directive 2008/114/EC. Having EDP Distribuição under their responsibility several assets and systems which are essential for the maintenance of vital societal functions, health, safety, security, economic and social well-being of people, the ones considered national critical were selected, from a set of more than 400 main premises. Has been identified their major threats and vulnerabilities, which resulted in emergency response procedures named “Operator Security Plan”.

Słowa kluczowe

EN

critical infrastructure; threats; vulnerabilities

• Wydawca: Polskie Towarzystwo Bezpieczeństwa i Niezawodności
• Czasopismo: Journal of Polish Safety and Reliability Association
• Rocznik: 2015
• Tom: Vol. 6, No. 3
• Strony: 109--114
• Opis fizyczny: Bibliogr. 9 poz., tab., wykr.

Twórcy

autor

Pestana M.

• EDP Distribuição (EDP Group), Lisbon, Portugal

autor

Messias R.

• EDP Distribuição (EDP Group), Lisbon, Portugal

Bibliografia

• [1] Almeida, A. (2011). A Multi-criteria Methodology for the Identification e Ranking of Critical Infrastructures.
• [2] Commission Staff Working Document on a new approach to the European Program for Critical Infrastructure protection Making European Critical Infrastructures more secure, SWD (2013) 318 final.
• [3] Council directive 2008/114/EC of 8 December 2008 on the identification and designation of European critical infrastructures and the assessment of the need to improve their protection, Official Journal of the European Union, L345/75.
• [4] Decree-law no. º 62/2011 of 9 May 2011. Daily Republic n. º89, Series I, 2011-05-09.
• [5] International standard, “Societal security - Business continuity management systems - Guidance”, ISO 22313:2012 (E), First edition 2012-12-15.
• [6] International standard, “Societal security - Business continuity management systems - Requirements”, ISO 22301:2012 (E), Corrected edition 2012-06-15.
• [7] ISO 27001/ISO 22301 Knowledge base: http://www.infosecpedia.info/threatsvulnerabilities.
• [8] Rossella M. (2014). Methodologies for the identification of Critical Information Infrastructure assets and services. European Union Agency for Network and Information Security.
• [9] Rinaldi, S.M., Peerenboom, J.P., Kelly, T.K. (2001). Identifying, Understanding and Analyzing Critical Infrastructure Interdependencies. IEEE Control Systems Magazine