Towards a Comparable Cross-Sector Risk Analysis: RAMCAP Revisited

  • Richard White
  • Aaron Burkhart
  • Terrance Boult
  • Edward Chow
Conference paper

DOI: 10.1007/978-3-319-48737-3_13

Volume 485 of the book series IFIP Advances in Information and Communication Technology (IFIPAICT)
Cite this paper as:
White R., Burkhart A., Boult T., Chow E. (2016) Towards a Comparable Cross-Sector Risk Analysis: RAMCAP Revisited. In: Rice M., Shenoi S. (eds) Critical Infrastructure Protection X. ICCIP 2016. IFIP Advances in Information and Communication Technology, vol 485. Springer, Cham

Abstract

The search for a uniform risk analysis approach for critical infrastructures has prompted a reexamination of the Risk Analysis and Management for Critical Asset Protection (RAMCAP) methodology to see if it can accommodate emerging threats from climate change, aging infrastructure and cyber attacks. This chapter examines the challenges involved in taking a site-specific formulation and turning it into a general model capable of analyzing performance under a full range of simulated conditions. The AWWA J100-10 standard provides the blueprint for a basic RAMCAP model that calculates risk as an attenuation of consequences via probability estimates of vulnerability, threat, resilience and countermeasures. The RAMCAP model was subjected to varying scenario loads in deterministic simulations that examined all hypothetical conditions and probabilistic simulations that examined likely conditions. RAMCAP performance was measured by the average net benefit and represented by the distribution of component values. Contrary to expectations, RAMCAP performance did not improve as the number of scenarios increased in the simulations. The methods and results of this study may hold implications for other critical infrastructure risk methodologies that are based on consequence, threat and vulnerability.

Keywords

Lifeline infrastructures Risk analysis RAMCAP methodology 

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Copyright information

© IFIP International Federation for Information Processing 2016

Authors and Affiliations

  • Richard White
    • 1
  • Aaron Burkhart
    • 2
    • 3
  • Terrance Boult
    • 2
  • Edward Chow
    • 2
  1. 1.Security EngineeringUniversity of Colorado Colorado SpringsColorado SpringsUSA
  2. 2.Computer ScienceUniversity of Colorado Colorado SpringsColorado SpringsUSA
  3. 3.Software EngineerLockheed Martin in Colorado SpringsColorado SpringsUSA