Criticality Analysis for Network Utilities Asset Management

The proposed work describes the main part of asset criticality analysis for Distribution Network Services Providers (DNSP), also known as Network Utilities, the severity-value factors definition. The methodology is based on the risk-based evaluation of assets, considering potential impacts of their failures on network value. Thus, it provides the capability to take maintenance management decision in terms of value and risk, considering the whole network under unique and homogeneous criteria. A hierarchy of assets ranked according to with value and risk will come out of this process, which represents a fundamental result serving as input of the subsequent steps of the asset management process. Specific attention is paid to network utilities issues, characterizing assets in these companies, and the services that they provide. In addition to this, high requirements established by the Service Level Agreements (SLA), that are characteristics of network services contracts, make this methodology especially suitable in this application. In order to illustrate method applicability, an example extracted from a real electrical network use case is included.Unión Europea 64573

Diseño e implementación de un proceso de criticidad basada en el riesgo para la gestión de activos de utilidades de red

The prioritization of critical assets and foundations of the criticality of infrastructures is required for basic framework security. Nevertheless, criticality examination isn’t yet institutionalized. This paper studied the connection between criticality and risk. A basic risk assessment management model is proposed and looks at criticality analysis.   For network utility asset management, a process of risk-based critically is designed and implemented. The result of performance is shown through the performance curve.La priorización de los activos críticos y los fundamentos de la criticidad de las infraestructuras es necesaria para la seguridad del marco básico. Sin embargo, el examen de la criticidad aún no está institucionalizado. En este documento se estudia la conexión entre la criticidad y el riesgo. Se propone un modelo básico de gestión de la evaluación de riesgos y se examina el análisis de la criticidad.   Para la gestión de los activos de las empresas de servicios públicos de red, se diseña y aplica un proceso de criticidad basado en el riesgo. El resultado del rendimiento se muestra a través de la curva de rendimiento

STOP-IT: strategic, tactical, operational protection of water infrastructure against cyberphysical threats

Water supply and sanitation infrastructures are essential for our welfare, but vulnerable to several attack types facilitated by the ever-changing landscapes of the digital world. A cyber-attack on critical infrastructures could for example evolve along these threat vectors: chemical/biological contamination, physical or communications disruption between the network and the supervisory SCADA. Although conceptual and technological solutions to security and resilience are available, further work is required to bring them together in a risk management framework, strengthen the capacities of water utilities to systematically protect their systems, determine gaps in security technologies and improve risk management approaches. In particular, robust adaptable/flexible solutions for prevention, detection and mitigation of consequences in case of failure due to physical and cyber threats, their combination and cascading effects (from attacks to other critical infrastructure, i.e. energy) are still missing. There is (i) an urgent need to efficiently tackle cyber-physical security threats, (ii) an existing risk management gap in utilities’ practices and (iii) an un-tapped technology market potential for strategic, tactical and operational protection solutions for water infrastructure: how the H2020 STOP-IT project aims to bridge these gaps is presented in this paper.Postprint (published version