THE CROSS-BORDER CRITICAL INFORMATION INFRASTRUCTURE (CII) AND THE OPERATOR’S RESPONSIBILITIES. CASE STUDY
Abstract: Threats to our critical services nowadays are likely to emerge from the connected information
infrastructure, and also include critical services located outside national borders. These systems must be protected. This
article discusses the role of the operator of a critical service in securing our information systems, focusing on the legal obligations and responsibilities. It outlines the list of duties of critical infrastructure operators and points out the crossborder aspects, thus far little explored in the literature. It begins by discussing the risks attached to cross-border critical information infrastructure (CII). It then provides an overview on the duties which the operator has to comply with in order to keep the systems safe. The costs of securing these systems are also addressed. The article (case of study) firstly argues for the benefit of raising awareness among citizens of who safeguards our daily lives, and secondly, urges the main actors to look at the legal aspects before connecting to cross-border infrastructure. Finally, it provides stimulus for policymakers in the field of cyber security.
NATO Parliamentary Assembly, The Protection of Critical Infrastructures, doc. no. 162 CDS 07 E REV 1, para. 72, http:/www.nato-pa.
int/default.asp?SHORTCUT=1165, accessed 25 March 2017.
Estonian Cyber Security Strategy, https://www.mkm.ee/sites/default/files/cyber_security_strategy_2014- 2017_public_version.pdf, p.6, accessed 30 January 2017.
Cyberspace Protection Policy of the Republic of Poland, 2013, p.8, https://ccdcoe.org/strategiespolicies.html, accessed 30 January 2017.
German Telecommunications Act, ‘Telekommunikationsgesetz’
(TKG), 22 June 2004, last amended 19 February 2016, http://www.gesetzeim-internet.de/tkg_2004/BJNR119000004.html,
accessed 05th March 2017.
The EU Network and Information Security Directive (NIS) recently got approval by the EU
Council, approval by the European Parliament is expected in summer 2016 and will probably enter into force in August 2016, http://www.consilium.
The published articles are subject to copyright law. All rights are reserved to the “Carol I” National Defense University, regardless of whether all or part of the material are considered, especially the rights to translation, reprinting, re-use of illustrations, quotations, broadcasting through the media, reproduction on microfilms or any other way and storage in data banks. Any replicas without the associated fees are authorized provided the source is acknowledged.