SECURITY SYSTEMS FOR CLASSIFIED FACILITIES: EXPERIENCE OF DEVELOPED COUNTRIES AND RECOMMENDATIONS FOR UZBEKISTAN
Keywords:
critical infrastructure; facility categorization; CIP; CER; national security; cyber-physical security; SCADA; IoT; risk-based management; resilience; strategic facilities; international experience; Uzbekistan.Abstract
This article examines the significance of protecting critical infrastructure facilities within the framework of national security and analyzes the experience of developed countries in classifying and safeguarding such facilities. The study provides an in-depth review of the United States Critical Infrastructure Protection (CIP) framework, the European Union’s Critical Entities Resilience (CER) Directive, as well as the practical approaches implemented in Japan, South Korea, China, and the Russian Federation. Particular attention is given to infrastructure categorization criteria, integration of cyber-physical security systems, public–private collaboration, risk-based management, SCADA/IoT-based monitoring technologies, and continuity planning during emergencies. Based on a comparative assessment, the article proposes a conceptual model for strengthening critical infrastructure protection in the Republic of Uzbekistan, taking into account necessary legal frameworks, technological development, risk profiling, and international cooperation. The results of the study hold scientific and practical value for shaping a comprehensive national policy aimed at ensuring the resilience and security of strategically important infrastructure.
Downloads
References
European Parliament and the Council. (2022). Directive (EU) 2022/2557 on the resilience of critical entities (CER Directive). Brussels: EU Publications.
U.S. Department of Homeland Security. (2021). National Infrastructure Protection Plan (NIPP): Partnering for Critical Infrastructure Security and Resilience. Washington, DC.
National Institute of Standards and Technology (NIST). (2018). Framework for Improving Critical Infrastructure Cybersecurity. Gaithersburg, MD.
International Organization for Standardization. (2018). ISO/IEC 27001: Information Security Management Systems Requirements.
Boin, A., & McConnell, A. (2019). Managing transboundary crises: The emergence of European crisis governance. Journal of European Public Policy, 26(2), 157–175.
Lewis, J. A. (2020). Critical Infrastructure Protection in the United States. Center for Strategic and International Studies (CSIS).
Correa, J., & Yusta, J. (2021). Critical infrastructure risk assessment: A review of current approaches. Reliability Engineering & System Safety, 210, 107–117.
Chang, S. E., & Shinozuka, M. (2018). Measuring improvements in the disaster resilience of communities. Earthquake Spectra, 34(4), 1937–1954.
Park, J., & Seung, H. (2020). Cyber–physical security challenges in South Korea’s critical infrastructure. Journal of Cybersecurity, 6(1), 1–16.
Ministry of Economy, Trade and Industry of Japan. (2020). Guidelines on Ensuring the Security of Critical Infrastructure. Tokyo.
Korea Internet & Security Agency (KISA). (2021). National Cybersecurity Strategy of the Republic of Korea. Seoul.
МВД РФ. (2017). О безопасности критически важных объектов и объектов повышенной опасности. Москва.
ФСБ РФ. (2020). Методические рекомендации по защите объектов критической информационной инфраструктуры. Москва.
Haimes, Y. Y. (2018). Risk Modeling of Interconnected Critical Infrastructure Systems. New York: Springer.
Dunn, M., & Wigert, I. (2019). International CI protection policies and best practices. NATO Cooperative Cyber Defence Centre.
