Download PDFOpen PDF in browserImprovement of Guideline for Infrastructure SecurityEasyChair Preprint no. 131278 pages•Date: April 29, 2024AbstractThe information security of critical infrastructure is very important because it is connected to the safety and lives of the people, and a successful cyber-attack can cause catastrophic damage. According to Korean laws, all infrastructures were required to confirm the implementation of infrastructure security plans at least once a year. However, the guideline for checking the implementation of infrastructure security plans has problems such as not being suitable for infrastructures that use special systems. This study aims to identify the problems in the structure, check items, and scoring of the guideline, and seek solutions through defining principles and interviewing with infrastructure operators and security experts. The results of this study can be used to efficiently conduct security vulnerability checks and implementation checks of critical infrastructure, and the improved guideline was expected to contribute to the improvement of security levels. Keyphrases: Analytic Hierarchy Process, Criteria for checking compliance, Critical IT infrastructure security, Security countermeasure
|
