1 / 12

Critical Infrastructure Protection

Critical Infrastructure Protection. Chuck Whitley EMS User’s Group June 9, 1999. PDD-63 (May 22, 1998):. President Clinton’s Goal

sanjiv
Download Presentation

Critical Infrastructure Protection

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Critical Infrastructure Protection Chuck Whitley EMS User’s Group June 9, 1999 1

  2. PDD-63 (May 22, 1998): President Clinton’s Goal “No later than the year 2000, the United States shall have achieved an initial operating capability and no later than (the year 2003) the United States shall have achieved and shall maintain the ability to protect our nation’s critical infrastructures from intentional acts that would significantly diminish the abilities of: • the Federal Government to perform essential national security missions and to ensure the general public health and safety; • state and local governments to maintain order and to deliver minimum essential public services; • the private sector to ensure the orderly functioning of the economy and the delivery of essential telecommunications, energy, financial and transportation services.” 2

  3. National Infrastructure Protection Center • PDD-63, May 22, 1998: • The NIPC will provide a national focal point for gathering information on threats to infrastructures • Its mission includes providing timely warnings of intentional threats and attacks, producing comprehensive analyses, and coordinating law enforcement investigation of and response to threats and attacks • The NIPC will support National Command Authority during a foreign-sponsored attack on U.S. interests 3

  4. Information Flow WATCH CENTER PRIVATE SECTOR ANALYSIS & WARNING COMPUTER INTRUSION INVESTIGATIONS ISACs FED GOV’T INTERAGENCY INVESTIGATION WARNINGS ALERTS ADVISORIES USG DECISION MAKERS 4

  5. NIPC Indications & Warnings Objective: It is the objective of the NIPC to develop a national-level system that provides timely, accurate, actionable warning of infrastructure threats and attacks. 5

  6. NIPC Approach to Achieve Objectives • Immediately develop a tactical warning system • Warn of threats and imminent attacks at the earliest possible time • Achieve in near term • Ultimately develop a strategic warning system • Seeks to identify as early as possible dynamic features of a situation that may affect US interests • Requires participation of Intelligence and Law Enforcement communities, other government agencies, and the private sector • Development will proceed in parallel to tactical system 6

  7. I&W Schedule Electric Power, Telecom initial Operations PDD-63 FOC PDD-63 IOC 1999 2000 2001 2002 2003 7

  8. Warnings “Indicators” I&W Concept Sector Lead Agencies Other Government Agencies Department of Defense NIPC Federal, State, & Local Law Enforcement Intelligence Community Infrastructure Owners & Operators 8

  9. When to Notify NIPC: General Guidelines • ASAP after an infrastructure • Has had significant capability degraded • Service disruption • Core capability degraded (e.g., management / control functions) • Has potential to suffer significant damage or degraded capability • If in doubt, err on the side of caution • Is subject to suspicious patterns of behavior or responses to control • Anomalous technical attributes, timing, locations, etc. 9

  10. Warning Outputs from NIPC • NIPC will disseminate three types of messages: • Initially, NIPC will disseminate these messages through existing communication channels Advisories will be issued as appropriate when new information on threats or vulnerability becomes available. Alerts will be issued when serious vulnerabilities or threats are uncovered that threaten infrastructure operations. Warnings will be issued when serious, confirmed vulnerabilities in one or more infrastructure sectors appear to be the focus of confirmed threat activity. 10

  11. Reporting Criteria (Strawman) • Critical electric power facilities • Control Centers • Power Pools • Control Areas (~ 150) • Regional/Secuirty Coordinators (~ 22) • Independent System Operators • Transmission Systems • HV Substations ( > 230 kV) • HV Lines ( > 230 kV) 11

  12. Reporting Criteria (Strawman) • Critical networks and systems • SCADA and Energy Management Systems • Networks and other systems used for generation and transmission control • Networks used for essential communications for system operation, control, and maintenance • NERCNet, including the InterRegional Secuirty Network (ISN) 12

More Related