Keywords: critical information infrastructures, CII, distributed systems, security, fault tolerance, intrusion tolerance, firewalls, access control, middleware, critical infrastructures, attacks
The CRUTIAL reference critical information infrastructure architecture: a blueprint
Critical infrastructures have evolved over the past decades to become largely computerised and interconnected all over the world. This generated the problem of achieving resilience of Critical Information Infrastructures (CII) against computer borne attacks and severe faults, similar to those observed in the internet. Governments and industry have been pushing an immense research effort in information and systems security, but we believe the complexity of the problem prevents it from being solved using classical security methods. This paper focuses on the computer systems behind electrical utility infrastructures. It proposes the blueprint of a distributed systems architecture that we believe may come to be useful as a reference for modern CII in general. The architecture is instantiated with a set of classes of techniques and algorithms, based on paradigms providing resilience to faults and attacks in an automatic way.