Protection of infrastructures of
crucial importance
Andrei A. Chapchaev
General Director of Infotecs Company
Chief of the ADE information security committee
Security and Trust for Deployment of the Information and Telecommunication Systems
International Conference, Moscow, Russia, 29 March 2005
State infrastructure is of crucial importance if it’s failure
might cause:
o Instability of state financial and bank systems
o Great economic damage to a large number of state and private
companies
o Breakdown of providing cities and towns with vital necessary
products
o Catastrophes and crashes with heavy consequences
o Deathes and casualties
o Damage of enviroment
o Annihilation of natural resources
o Nonprevention of terror attacks
o Stoppage of economic processes which must never stop
Security and Trust for Deployment of the Information and Telecommunication Systems
International Conference, Moscow, Russia, 29 March 2005
Two eras: before computer and after computer
Internet
BC – before computer
AC – after computer
Security and Trust for Deployment of the Information and Telecommunication Systems
International Conference, Moscow, Russia, 29 March 2005
Public health
One of the most important sectors, determins the leves of present social
stability as well as the level of future economic achievements
Medical center
Medical center
Internet
Medical center Database
T
POS
T
POS
Hospital
Hospital
T
P OS
T
PO S
Clinic
Clinic
Hospital
T
PO S
Hospital Database
Hospital
Patient
Family doctor
Family doctor
Hospital Database
Hospital
Hospital Database
Hospital
Clinic
Patient
Family doctor
Security and Trust for Deployment of the Information and Telecommunication Systems
International Conference, Moscow, Russia, 29 March 2005
Patient
Public health
Vulnerability in front of information threats
No information connection
Hospital
Medical Center
heart
0
Security and Trust for Deployment of the Information and Telecommunication Systems
International Conference, Moscow, Russia, 29 March 2005
Railways
This sector determines the scale state goods turnover and in influences the efficiency of
the whole state economy. Is the cheapest mean of mass passanger turnover, providing
freedom of movement for population
Ticket
Ticket cards
Ticket
Ticket cards
Security and Trust for Deployment of the Information and Telecommunication Systems
International Conference, Moscow, Russia, 29 March 2005
Railways
vulnerability in front of information threats
Railway train operation
system malfunction !!!
Ticket
Transport cards
No tickets!!!
Railway ticket warrant
system malfunction !!!
Security and Trust for Deployment of the Information and Telecommunication Systems
International Conference, Moscow, Russia, 29 March 2005
Enviromental and meteorological services
Telegraph terminal
connection
Internet terminal
connection
Meteorology & scientific
centers
Internet
Telegraph terminal
connection
Tsunami danger zone
Internet terminal
connection
Security and Trust for Deployment of the Information and Telecommunication Systems
International Conference, Moscow, Russia, 29 March 2005
Satellite
connection
Enviromental and meteorological services
vulnerability in front of information threats
o Breakdown of system functionality
o Inaccessibility of critical data
o Impossibility to get trustworthy data
o Interpetation errors (a new type of information threat typical for expert systems
“human being – automatic information system”, including subjectivity in making
decisions)
Security and Trust for Deployment of the Information and Telecommunication Systems
International Conference, Moscow, Russia, 29 March 2005
Conclusions
The process of wide deploiment of modern information
technologies into crucial economic sectors, increasing use of
“real time” systems, determines role of both national and
international bodies.
National bodies
International bodies
(National governments, miniseries etc.)
(ITU-T, ISO, IETF etc.)
Determination of requiments to
information security of concrete
systems of crucial importance,
directive issuing and law enforcement
to exclude treats to personality,
business, state.
Further development of ITU-T
recommendations, especially
recomendation X.805. Special
attention should be given to
information security to distributed
applications and their integration with
decision making systems.
Security and Trust for Deployment of the Information and Telecommunication Systems
International Conference, Moscow, Russia, 29 March 2005
Andrei A. Chapchaev
Infotecs
General director
Phone: + 7 095 737-52-46
E-mail: chapchaev@infotecs.ru
Security and Trust for Deployment of the Information and Telecommunication Systems
International Conference, Moscow, Russia, 29 March 2005