최근 주요기반시설은 기존의 폐쇄적인 환경에서 개방적인 환경으로 변화하고, 사이버공간으로 범위가 확장되면서 사이버위협의 새로운 대상이 되고 있다. 또한 정보통신기술의 발전으로 주요기반시설 간의 상호의존성이 증가하고 있다. 그러나 기존 연구는 동향조사 및 보호정책 논의 수준에 머물러, 정책의 효율적 추진을 위한 현황 진단 및 적절성 판단 등의 연구는 별도로 진행되고 있지 않다.
이에 본 연구는 기존에 국가별 사이버보안 수준을 측정하는 국제지표 3가지를 비교·분석하여 주요기반시설의 보호수준을 측정하기 위한 새로운 지표를 개발하고, 해당 지표를 통하여 미국과 일본, 영국, 독일, 노르웨이로 대표되는 주요국과 한국의 현재 주요기반시설의 보호수준을 측정한다. 이를 통하여 미래 사이버공간에서 한국의 영향력을 확대하고 국가 간 신뢰를 구축할 근거자료가 되기를 기대한다.

Recently, the critical infrastructure is changing from the existing closed environment to an open environment, and it is becoming a new target of cyber-threats by expanding into cyberspace. In addition, due to the development of information and communications technology(ICT), the interdependence among critical infrastructure is increasing. Previous studies ranged from trend investigation and policy discussions to protection, but separate studies on the diagnosis of the current status and appropriateness judgment for efficient policy implementation were not performed.
Therefore, this study compares and analyzes three international indicators that measure the level of cyber security in each country in order to build a new index to measure the level of cyber security of critical infrastructure in the USA, Japan, UK, Germany, Norway, and Korea. It is hoped that this study will serve as a basis for expanding Korean influence and building trust among countries in future cyberspace.

• 요약
• ABSTRACT
• Ⅰ. 서론
• Ⅱ. 선행연구
• Ⅲ. 국제지표 비교·분석 및 주요국 선정
• Ⅳ. 주요기반시설 사이버보안 역량 수준 비교·분석
• Ⅴ. 결론
• References

1 배효빈, "주요정보통신기반시설에 대한 사이버 위협을 예방하기 위한 맞춤형 보호체계 구축" 보안공학연구지원센터 10 (10): 643-654, 2013

2 최명길, "제어시스템 보안성 평가 방법에 관한 연구" 한국정보보호학회 23 (23): 287-298, 2013

3 김도연, "산업제어시스템의 사이버보안을 위한 취약점 분석" 한국전자통신학회 9 (9): 137-142, 2014

4 배선하, "국가 사이버보안 역량 평가를 위한 평가항목 연구" 한국정보보호학회 25 (25): 1293-1314, 2015

5 I-news, "Urgency of social infrastructure security management"

6 Hyun-ju Lee, "The Study On Security Enhancement of National Control System For Critical Infrastructure-Focusing On Comparison About Policy Of Major Countries And Domestic-" Graduate School of Sangmyung University 2016

7 Journal of Kosca, "Serious situation of safety management on critica l infrastructure ... 97 of the Board of Audit"

8 Positive Technologies, "SCADA Safety in Numbers"

9 UP KRITIS, "Public-Private Partnership for Critical Infrastructure Protection" 2014

10 Infracritical, "Project SHINE Finding Report" 2014

11 ENISA, "Norway Country Report" 2010

12 Federal Republic of Germany, "National Strategy for Critical Infrastructure Protection" 2009

13 DHS, "NIPP 2013: Partnering for Critical Infrastructure Security and Resilience" 2013

14 ITU and ABI Research, "Global Cybersecurity Index & Cyberwellness Profiles"

15 NIST, "Framework for Improving Critical Infrastructure Cybersecurity"

16 BSA, "EU Cybersecurity Dashboard"

17 ITU, "Cybersecurity Index of Indices"

18 Norwegian Ministries, "Cyber Security Strategy for Norway"

19 ASPI, "Cyber Maturity in the Asia-Pacific Region"

20 ASPI, "Cyber Maturity in the Asia-Pacific Region"

21 ASPI, "Cyber Maturity in the Asia-Pacific Region"

22 Stefan Brem, "Critical Infrastructure Protection from a National Perspective" 191-, 2015

23 Akcaraz, Cristina, "Critical Infrastructure Protection : Requirements and Challenges for the 21st Century" 8 : 2015

24 Cavelty, Myriam Dunn, "Critical Infrastructure Protection" Springer Berlin Heidelberg 15-38, 2012

25 CTO, "Critical Information Infrastructure Protection(CIIP)Emerging Challenges for Developing Countries" 2015

26 Kil-hwan Im, "Control system security vulnerabilities and countermeasures" Graduate School of Korea University 2011

27 National Law Information Center, "Act on the Protection of Information and Communications Infrastructure"

28 BSA, "APAC Cybersecurity Dashboard"

29 Korea Internet & Security Agency(KISA), "A Study on the Infrastructure Protection Law System in the United States, UK and Germany" 2010

30 Sang-hyun Jang, "A Study on the Critical Infrastructure Information Security Level Assessment Improvements" Graduate School of Dongguk University 2015

31 Dong-Yeon Park, "A Study on Improvement of Evaluation Criteria of Managerial · Physical Vulnerability Analysis" Graduate School of Korea University 2014

32 Hyang-mi, Park, "A Study on Developing International Level Measure Index for Strengthening Cybersecurity Capability of Critical Infrastructure" Graduate School of Sangmyung University 2017

33 Cho-rom Ham, "A Proposal on Improvement of the Countermeasures to Protect Critical Information Infrastructure" Graduate School of SoonChunhyang University 2016

34 Do-seok Han, "A Comparative Study on Domestic Act on the Protection of Information and Communications Infrastructure and Japanese Cyber Security Basic Law" 25 (25): 44-51, 2015

35 Korea Internet & Security Agency(KISA), "2016 National Information Protection White Paper"

36 Korea Internet & Security Agency(KISA), "2015 National Information Protection White Paper"

37 Korea Internet & Security Agency(KISA), "2014 National Information Protection White Paper"