KIRAS Security Research

2011

SCUDO

ICT plays an essential part in increasingly complex production processes and service chains. Our work in SCUDO has three objectives: First, we will test an optimized simulation process tailored to Austrian companies. Second, we will derive recommendations from this simulation, and third – through these recommendations – we will test the generally accepted international standards with regard of their practicality in Austria

Background: ICT plays an essential part in increasingly complex production processes and service chains. Unfortunately, the technical availability is often taken for granted, risks and consequences of faults or complete failure for business and society are often underestimated. Even basic technologies are constantly affected by security issues.

Objectives: Our work in SCUDO has three objectives: First, we will test an optimized simulation process tailored to Austrian companies. Second, we will derive recommendations from this simulation, and third – through these recommendations – we will test the generally accepted international standards with regard of their practicality in Austria. To achieve these goals, the SCUDO project is based on the planning of multiple emergency training scenarios with our project partners and their subsequent implementation with partners in the critical infrastructure domain. These are included in the course of the project based on the Austrian Trust Circles from CERT.at.

Process: After the preparation of project fundamentals the following steps are planned: (1) First, scenarios are developed that serve as a basis for the exercises. (2) Thereafter, communication exercises will analyze the organizational processes, which occur in the context of the emergency scenario. (3) In conclusion, a full scale exercise based on the findings of step (1) and (2) will simulate a complex scenario with several partners. (4) Experiences of these steps will culminate in best current practices, lessons learnt and recommendations. This project will benefit from the inclusion of various major critical infrastructure suppliers, involving them at various stages throughout the whole project lifetime. Thus we will also incorporate inputs from a selection of already well-established initiatives like the KSÖ or the ATC.

Consortium lead:
·         Thales Austria GmbH

Project partner:
·         Infraprotect GmbH
·         nic.at Internet Verwaltungs- und Betriebsgesellschaft m. b. H.
·         REPUCO Unternehmensberatung GmbH
·         SBA Research GmbH
·         Universität Wien Arbeitsgruppe Rechtsinformatik
·         Zentraler Informatikdienst der Universität Wien (ZID)

Involved Ministries („Bedarfsträger“):

·         Bundeskanzleramt
·         Bundesministerium für Inneres (BM.I)
·         Bundesministerium für Landesverteidigung und Sport (BMLVS)

Contact:

Alexander Szönyi
Handelskai 92, A-1200 Vienna, Austria
Tel: +43 1 27711 0
Email: alexander.szoenyi@thalesgroup.com

print