Approved work: Security of UK technology infrastructure
This POSTnote will outline what UK technology infrastructure is, potential impacts of disruptions, risks, options for mitigating risks and relevant policy.
The Government has identified ‘cyber’ as one of six Tier 1 threats to UK national security. This POSTnote focuses on the cyber security of the UK’s critical national infrastructure, describing measures to improve cyber security and challenges in implementing them. It also reviews the new National Cyber Security Strategy, along with international policy and legislation.
Cyber Security of UK Infrastructure (397 KB , PDF)
The recent ‘WannaCry’ ransomware attack affected organisations around the world, including over 60 NHS trusts, some of whom cancelled operations and clinical appointments. In 2015, the Ukraine suffered the first confirmed instance of a disruptive cyber-attack on an electricity network, which caused a power outage that affected 225,000 customers. The UK Government says that foreign states or state-sponsored groups regularly attempt to penetrate UK networks, targeting in particular the defence, finance, energy, telecommunications and government sectors.
This note focuses on critical national infrastructure, the majority of which is privately owned. Many sector-specific regulators cover aspects of cyber security, with varying enforcement powers and responsibilities, but much of the Government’s support to private operators consists of optional information sharing, guidance and assessment. The Government aims to better understand the state of cyber security across UK critical infrastructure, and is currently reviewing regulation to ensure it has the measures in place to intervene where necessary.
Key Points
Acknowledgments
POSTnotes are based on literature reviews and interviews with a range of stakeholders. They are externally peer reviewed. POST would like to thank the following interviewees and peer reviewers for kindly giving up their time during the preparation of this briefing:
Cyber Security of UK Infrastructure (397 KB , PDF)
This POSTnote will outline what UK technology infrastructure is, potential impacts of disruptions, risks, options for mitigating risks and relevant policy.
This POSTnote will outline the challenges and opportunities for spatial planning and climate change across national, regional and local decision-making levels.
This POSTnote will outline the energy system application of AI and Machine Learning. It will also consider the data, cybersecurity and ethical challenges that will need to be considered for application in the UK to enhance energy security.