MIMIC Project Methodology Meeting16 December 2011, Kotka

Attributes of Security

R. Aps

University of Tartu, Estonian Marine Institute, Tallinn, Estonia

Security

• freedom from danger, risk, etc.; safety

• something that secures or makes safe; protection; defense

• precautions taken to guard against crime, attack, sabotage, espionage, etc.

Dictionary.com

Intruders:

malicious entities (humans and other systems) that attempt to exceed any authority they might have and alter service or halt it, alter the system’s functionality or performance, or to access confidential information

SmartResponse Web concept• Resource network for maritime

transport safety/security threats response

• Principal move from Web Decision Support Systems (WebDSS) to Decision Support Web Services (DSWS)

• SmartResponse Web aims to integrate outputs from: 1) Seatrack Web (user-friendly system for forecasts, backtracking and presentation of spreading of oil, chemicals and substances in water), 2) Seatrack Web Response Module (booms), 3) OILRISK Web ecological risk assessment module, 4) ship grounding and collision risk assessment module, 5) security risk assessment module

• The objective of SmartResponse Web is to maximize the utility of existing and available safety/security threat response resources and minimize the response time to mitigate the effects of one or several incidents at sea

Important to remember that the SmartResponse Web and its security related module are to be developed not only for Finland, Sweden and Estonia – the product is planned to be of universal use based on the different Web Map Servises or other type Web Services available

MIMIC unified definition for security is the absence of unauthorized access to, or handling of, system state

What is the MIMIC system?

• MIMIC system – the system of Baltic Sea maritime traffic?

• What are the elements of the MIMIC system, how they are interconnected?

• What are the responsibility levels of the Baltic Sea maritime traffic management incl. safety and security issues

How the STATE of the Baltic Sea maritime traffic system is defined and what does it mean

“absence of unauthorized access to, or handling of, system state” ?

List of security threats• Each threat should be

characterized by the mandatory attributes: coordinates, time, character etc

• If threat is associated with the moving vessel then some attributes (e.g. coordinates and time) are dynamic

• SmartResponse Web prototype will be open for the authorized use by the end of January 2012

• List of the threats with attributes will be developed from the very beginning as a set of the corresponding security related map layers

Security related scenarios will then be developed, analyzed and documented using the SmartResponse Web resources

Thus, final WP3 required MIMIC product – security maps will be under gradual development from the very beginning

Next actions:• MIMIC hands-on workshop on

the SmartResponse Web prototype introduction for all interested Project Partners (end of January – beginning of February 2012)

• Dates and venue? 6.01.2012 in Helsinki

Calendar of MIMIC meetings in 2012?

For what meetings and on what conditions our associated partners incl. those from Russia will be invited?

MIMIC Meetings with the stakeholder participation?

Acknowledgment

Estonian Partner is supported by the Estonian target financing program SF0180104s08, Estonian Science Foundation Grant No 7609, and by Central Baltic INTERREG IVA Programme 2007-2013 Project MIMIC “Minimizing risks of maritime oil transport by holostic safety strategies”

Thank you for your attention!