Critical infrastructure security modelling and RESCI-MONITOR: A risk based critical infrastructure model

Critical infrastructure (CI) services are consumed by the society constantly and we expect them to be available 24 hours a day. A common definition is that CIs are so vital to our society that a disruption or destruction would have a severe impact on the social well-being and the economy on a national and an international level. CI sectors include, amongst others, the electricity, telecommunication, air traffic and transport sectors. CIs can be mutually dependent on each other and a failure in one infrastructure can cascade to another interdependent infrastructure to cause service disruptions. Methods to better assess and monitor CIs and their interdependencies in order to predict possible risks have to be developed. In this work we present a CI modelling approach called CI security modelling and RESCI-MONITOR, a tool that allows implementing a CI security model. The CI security model allows to monitor CI services and its associated dependencies in real-time by evaluating the current risk in CI services. The multi-agent based support tool RESCI-MONITOR is able to receive real-time measurements from the infrastructure, transform them into risk parameters and evaluate them in combination with the current risk in dependent infrastructure services.