ABSTRACT
A defensive approach must be taken in system design, so that models of attackers and their strategies and tactics are established and tools for the collection of forensic data provided. Preventing or thwarting attacks can be costly and may incur losses through reduced system performance. The greater the success in limiting damage, the less damage there is to be repaired. Governments need to have sufficient understanding of their national infrastructures, including their interdependencies, so that they can determine both the efficiency and the effectiveness of the proposed defence. Infrastructure owners bear the main responsibility for reconstitution, but government authorities and thus public assets are likely to be involved in the generation of emergency capacity and in underwriting recovery. Beyond being able to recognise that an attack is under way, damage limitation implies linking system operation centres to higher level analysis centres for situation awareness and attack assessment. This also implies having pre-established response options at company, industry or national level.
