AlAbdulkarim, L.O. and Z. Lukszo: Integrating Information Security Requirements in Critical Infrastructures: Smart Metering Case, pp. 187-209. In: International Journal of Critical Infrastructures, Vol. 6, No. 2, 2010. [s.l.]: Inderscience, 2010. ISSN: (Print): 1475-3219.
In recent years, critical infrastructures have witnessed rapid developments in the way their services are being implemented and delivered to consumers; this was instigated by the adaptation of the latest technologies in Information Technology (IT). Despite the evident advantages of such transformation, this lead to the emergence of new challenges facing these infrastructures such as preserving the security of the information generated and maintained by the IT systems supporting the operation of these critical infrastructures. An example of such a case is smart metering in the energy sector. In this article, we present an analysis of information security threats and their consequences, emphasising the importance of incorporating information security as nonfunctional requirements in the early stages of system development rather than an afterthought of the system implementation and deployment. We also present a four dimensional information security assurance model for the smart metering system; this model provides guidelines to designers of IT systems supporting the operation of critical infrastructures.