Identification of Critical information infrastructure is the first step in the process to secure and protect the availability of critical assets. Several Member States have launched different initiatives regarding this topic while others are starting now to develop their own approaches.
The definition of CII is taken from the Council Directive 2008/114/EC on the identification and designation of European Critical Infrastructures and the assessment of the need to improve their protection:‘’ICT systems that are Critical Infrastructures for themselves or that are essential for the operation of Critical Infrastructures (telecommunications, computers/software, Internet, satellites, etc.) “
ENISA published recently Stocktaking, Analysis and Recommendations on the protection of CIIs and Methodologies for the identification of Critical Information Infrastructure assets and services to help Member States securing the builiding blocks of the information society.