Incident Information Sharing in the Danish Critical Infrastructure: Proposal of a Conceptual Centralised Framework
Authors
Moturi, Ievgeniia ; Christensen, Michael ; Dzupinova, Livia
Term
4. semester
Education
Publication year
2022
Submitted on
2022-06-01
Pages
210
Abstract
Dette speciale undersøger deling af hændelsesinformation i den danske kritiske infrastruktur og foreslår et konceptuelt, centraliseret rammeværk, der understøtter samarbejde både inden for sektorer og på tværs af sektorer. Vi sammenholder udfordringer beskrevet i relateret arbejde med praksisnære perspektiver indsamlet gennem kravarbejde: en gennemgang af den danske/EU-kontekst og state-of-the-art, et spørgeskema samt semistrukturerede interview med relevante interessenter. Inputtene omsættes til prioriterede krav ved hjælp af scenarier, use cases og MoSCoW-prioritering, efterfulgt af en anden runde med interessentfeedback. Resultatet er et sæt retningslinjer og et konceptuelt design for en central platform, hvor delingsgrupper giver brugerne anonymitet og muliggør frivillig, tilpasset deling ved siden af obligatorisk indrapportering. Specialet drøfter også overvejelser om identitets- og adgangsstyring, adgangskontrol, datahåndtering, privatliv, tillid og potentielle teknologier, der kan informere en fremtidig implementering. Samlet set giver arbejdet et praktisk udgangspunkt for at udvikle en betroet og koordineret kapacitet til hændelsesdeling på tværs af Danmarks kritiske infrastruktursektorer.
This thesis examines incident information sharing within Danish critical infrastructure and proposes a conceptual centralized framework to support collaboration both within and across sectors. We synthesize challenges identified in related work with real-world perspectives gathered through requirements activities: a review of the Danish/EU context and state of the art, an online questionnaire, and semi-structured interviews with relevant stakeholders. These inputs are translated into prioritized requirements using scenarios, use cases, and MoSCoW prioritization, followed by a second round of stakeholder feedback. The outcome is a set of guidelines and a conceptual design for a centralized information-sharing platform in which sharing groups provide user anonymity and enable customized voluntary sharing alongside mandatory reporting. The thesis also discusses considerations around identity and access management, access control, data handling, privacy, trust, and potential technologies to inform future implementation. Overall, the work provides a practical foundation for developing a trusted, coordinated incident-sharing capability across Danish critical infrastructure sectors.
[This summary has been generated with the help of AI directly from the project (PDF)]
Keywords
information Sharing ; Cyber Security ; Incidents ; Incident Management ; Critical Infrastructure ; NIS ; NIS2 ; ISO ; Nist ; IoC ; Awareness ; Interview ; MISP ; IAM ; Framework ; Sharing Platform
Documents