Skip to main content

Critical Infrastructure Protection: A Holistic Methodology for Greece

  • Conference paper
  • First Online:
Security of Industrial Control Systems and Cyber-Physical Systems (CyberICPS 2016)

Abstract

The protection of Critical Infrastructures (CI) is, by definition, of high importance for the welfare of citizens, due to direct threats (dictated by the current international political situation) and also due to their dependencies at international and European levels. Today, Greece remains one of the countries of the European Union, which has no comprehensive strategy to safeguard national CI, nor any process of developing such an integrated plan, except for some initiatives taken from the General Secretariat of Digital Policy. This paper aims to contribute to: (i) The creation of an inventory of all stakeholders, (legislative, supervisory or regulatory) involved in CI protection in Greece, (ii) the identification of potential national CI, as well as their interdependencies, (iii) the development of a structured identification based on impact assessment methodology for national CI, that takes into account internationally applied CI assessment methodologies, and (iv) provide a pilot implementation of the proposed methodology.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Similar content being viewed by others

Notes

  1. 1.

    All OLIKY project deliverables (in Greek) can be found at: http://www.dianeosis.org/2016/07/ideas_infrastractures_protection/.

References

  1. EU Commission: Communication from the Commission on a European Programme for Critical Infrastructure Protection COM (2006) 786 final (2006)

    Google Scholar 

  2. EU Commission: European Commission, staff working document on the review of the European Programme for Critical Infrastructure Protection (EPCIP), Brussels (2012)

    Google Scholar 

  3. EU Commission: European Commission, staff working document on a new approach to the European Programme for Critical Infrastructure Protection making European Critical Infrastructures more secure), Brussels, Belgium (2013)

    Google Scholar 

  4. EU Commission 149: European Commission. Protecting Europe from large scale cyber-attacks and disruptions: enhancing preparedness, security and resilience (2009)

    Google Scholar 

  5. EU Council: Council of the European Union, Non-Binding Guidelines for the application of the Directive on the identification and designation of European Critical Infrastructure and the assessment of the need to improve their protection, Brussels [14808/08] (2008b)

    Google Scholar 

  6. EU Council: Proposal for a COUNCIL DECISION on a Critical Infrastructure Warning Information Network (CIWIN). COM (2008) 676 final (2008c)

    Google Scholar 

  7. ENISA, Mattioli, R., Levy-Bencheton, C.: Methodologies for the identification of Critical Information Infrastructure assets and services. ENISA Report, December 2014 (2014)

    Google Scholar 

  8. Faily, S., Stergiopoulos, G., Katos, V., Gritzalis, D.: “Water, Water, Every Where”: nuances for a water industry critical infrastructure specification exemplar. In: Rome, E., Theocharidou, M., Wolthusen, S. (eds.) CRITIS 2015. LNCS, vol. 9578, pp. 243–246. Springer, Cham (2016). doi:10.1007/978-3-319-33331-1_20

    Google Scholar 

  9. FC: Federal council’s basic strategy for critical infrastructure protection, basis for the national critical infrastructure protection strategy. In: Confédération Swisse, 18 May 2009 (2009)

    Google Scholar 

  10. French Strategy: French national digital security strategy. French Republic (2015)

    Google Scholar 

  11. FRG: National Strategy for Critical Infrastructure Protection (CIP Strategy). Federal Ministry of the Interior, Federal Republic of Germany. Berlin, June 17 2009

    Google Scholar 

  12. Klaver, M., Luiijf, H., Nieuwenhuijsen, A.: RECIPE: Good practices manual for CIP policies, for policy makers in Europe (2011)

    Google Scholar 

  13. Kotzanikolaou, P., Theocharidou, M., Gritzalis, D.: Accessing n-order dependencies between critical infrastructures. Int. J. Crit. Infrastruct. Prot. 9(1–2), 93–110 (2013)

    Article  Google Scholar 

  14. Kotzanikolaou, P., Theoharidou, M., Gritzalis, D.: Cascading effects of common-cause failures in critical infrastructures. In: Butts, J., Shenoi, S. (eds.) ICCIP 2013. IAICT, vol. 417, pp. 171–182. Springer, Heidelberg (2013). doi:10.1007/978-3-642-45330-4_12

    Chapter  Google Scholar 

  15. Kotzanikolaou, P., Theoharidou, M., Gritzalis, D.: Interdependencies between critical infrastructures: analyzing the risk of cascading effects. In: Bologna, S., Hämmerli, B., Gritzalis, D., Wolthusen, S. (eds.) CRITIS 2011. LNCS, vol. 6983, pp. 104–115. Springer, Heidelberg (2013). doi:10.1007/978-3-642-41476-3_9

    Chapter  Google Scholar 

  16. Lebau-Marianna, D., Roger, E.: France – three decrees reinforced the safety obligations of Operators of Vital Importance, 8 July 2015

    Google Scholar 

  17. Livre Blanc: Défense et sécurité nationale, République Francaise (2013)

    Google Scholar 

  18. Luiijf, E., Burger, H., Klaver, M.: Critical infrastructure protection in the Netherlands: a quick-scan. In: EICAR Conference Best Paper Proceedings (Vol. 19). Denmark (2003)

    Google Scholar 

  19. MSB: A first step towards a national risk assessment. Swedish Civil Contingencies Agency-MSB, Sweden (2011). 2011

    Google Scholar 

  20. MSB: Action Plan for the Protection of Vital Societal Functions & Critical Infrastructure. Swedish Civil Contingencies Agency, Risk & Vulnerability Reduction Department (2014)

    Google Scholar 

  21. Renda, A., Hammerli, B. (2010). Protecting critical infrastructure in the EU. CEPS Task Force Report

    Google Scholar 

  22. Salonikias, S., Mavridis, I., Gritzalis, D.: Access control issues in utilizing fog computing for transport infrastructure. In: Rome, E., Theocharidou, M., Wolthusen, S. (eds.) CRITIS 2015. LNCS, vol. 9578, pp. 15–26. Springer, Cham (2016). doi:10.1007/978-3-319-33331-1_2

    Google Scholar 

  23. Stergiopoulos, G., Kotzanikolaou, P., Theocharidou, M., Gritzalis, D.: Risk mitigation strategies for critical infrastructures based on graph centrality analysis. Int. J. Crit. Infrastruct. Prot. 10, 34–44 (2015)

    Article  Google Scholar 

  24. Stergiopoulos, G., Kotzanikolaou, P., Theocharidou, M., Lykou, G., Gritzalis, D.: Time-base critical infrastructure dependency analysis for large-scale and cross-sectoral failures. Ιnt. J. Crit. Infrastruct. Prot. 12, 46–60 (2016)

    Article  Google Scholar 

  25. Theocharidou, M., Kandias, M., Gritzalis, D.: Securing transportation-critical infrastructures: trends and perspectives. In: Georgiadis, C.K., Jahankhani, H., Pimenidis, E., Bashroush, R., Al-Nemrat, A. (eds.) Global Security, Safety and Sustainability & e-Democracy. LNICST, vol. 99, pp. 171–178. Springer, Berlin, Heidelberg (2012). doi:10.1007/978-3-642-33448-1_24

    Chapter  Google Scholar 

  26. UK: Strategic Framework and Policy Statement on Improving the Resilience of Critical Infrastructure to Disruption from Natural Hazards (2010)

    Google Scholar 

Download references

Acknowledgments

This work was performed within the OLIKY project framework. OLIKY was coordinated by the INFOSEC Laboratory (Athens University of Economics & Business) and funded by diaNEOsis, a non-government and non-profit research and analysis organization, located in Greece. The opinions expressed herein are those of the authors.

Author information

Authors and Affiliations

Authors

Corresponding author

Correspondence to Dimitris Gritzalis .

Editor information

Editors and Affiliations

Rights and permissions

Reprints and permissions

Copyright information

© 2017 Springer International Publishing AG

About this paper

Cite this paper

Gritzalis, D., Stergiopoulos, G., Kotzanikolaou, P., Magkos, E., Lykou, G. (2017). Critical Infrastructure Protection: A Holistic Methodology for Greece. In: Cuppens-Boulahia, N., Lambrinoudakis, C., Cuppens, F., Katsikas, S. (eds) Security of Industrial Control Systems and Cyber-Physical Systems. CyberICPS 2016. Lecture Notes in Computer Science(), vol 10166. Springer, Cham. https://doi.org/10.1007/978-3-319-61437-3_2

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-61437-3_2

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-61436-6

  • Online ISBN: 978-3-319-61437-3

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics