Issue No. 06 - November/December (2008 vol. 6)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MSP.2008.158
Alysson Neves Bessani , University of Lisbon
Paulo Sousa , University of Lisbon
Miguel Correia , University of Lisbon
Nuno Ferreira Neves , University of Lisbon
Paulo Veríssimo , University of Lisbon
Critical infrastructures such as the power grid are essentially physical processes controlled by computers connected by networks. They're usually as vulnerable as any other interconnected computer system, but their failure has a high socioeconomic impact. The Critical Utility Infrastructural Resilience (Crutial) project designed an information switch (CIS) to protect these infrastructures. These devices help ensure that incoming and outgoing traffic satisfies the security policy of an infrastructure in face of cyberattacks. A CIS isn't a firewall, but a distributed protection device based on a sophisticated access control model. Furthermore, a CIS is intrusion-tolerant and self-healing, seeking perpetual unattended correct operation.
Critical infrastructures, security, power grid, intrusion tolerance, resilience
P. Veríssimo, A. N. Bessani, M. Correia, N. F. Neves and P. Sousa, "The Crutial Way of Critical Infrastructure Protection," in IEEE Security & Privacy, vol. 6, no. , pp. 44-51, 2008.