Title :
Situational awareness and information collection from critical infrastructure
Author :
Timonen, Jussi ; Puuska, Samir ; Lääperi, Lauri ; Vankka, Jouko ; Rummukainen, Lauri
Author_Institution :
Dept. of Mil. Technol., Finnish Defence Forces, Helsinki, Finland
Abstract :
Critical infrastructure (CI) is a complex part of society consisting of multiple sectors. Although these sectors are usually administered independently, they are functionally interconnected and interdependent. This paper presents a concept and a system that is able to provide the common operating picture (COP) of critical infrastructure (CI). The goal is to provide support for decision making on different management layers. The developed Situational Awareness of Critical Infrastructure and Networks (SACIN) framework implements key features of the system and is used to evaluate the concept. The architecture for the SACIN framework combines an agent-based brokered architecture and Joint Directors of Laboratories (JDL) data fusion model. In the SACIN context, agent software produces events from the source systems and is maintained by the source system expert. The expert plays an important role, as he or she is the specialist in understanding the source system. He or she determines the meaningful events from the system with provided guidelines. The brokered architecture provides scalable platform to allow a large number of software agents and multiple analysis components to collaborate, in accordance with the JDL model. A modular and scalable user interface is provided through a web application and is usable for all SACIN participants. One of the main incentives for actors to provide data to the SACIN is the resultant access to the created COP.The proposed concept provides improved situational awareness by modeling the complex dependency network within CI. The current state of the infrastructure can be determined by combining and analyzing event streams. Future states can be proactively determined by modeling dependencies between actors. Additionally, it is possible to evaluate the impact of an event by simulating different scenarios according to real-world and hypothetical use cases. As a result, understanding of CI and the ability to react to anomalies is improved am- ngst the decision makers.
Keywords :
Internet; critical infrastructures; decision making; sensor fusion; software agents; software architecture; user interfaces; CI; COP; JDL model; SACIN framework; Web application; agent-based brokered architecture; common operating picture; complex dependency network; decision making; event stream analysis; information collection; joint directors of laboratories data fusion model; management layers; modular user interface; multiple analysis components; scalable user interface; situational awareness of critical infrastructure and network framework; software agent; source system expert; Computer architecture; Data integration; Data models; Decision making; Military computing; Taxonomy; User interfaces; Common Operating Picture; Critical Infrastructure; JDL data fusion model; Situational Awareness;
Conference_Titel :
Cyber Conflict (CyCon 2014), 2014 6th International Conference On
Conference_Location :
Tallinn
Print_ISBN :
978-9949-9544-0-7
DOI :
10.1109/CYCON.2014.6916401
