In February 2007, the UK's main centre for protecting electronic infrastructure, NISCC, was merged with units looking after physical infrastructure and personnel security to create the Centre for the Protection of National Infrastructure (CPNI). Personnel security is important for IT because many attacks are carried out by former employees or disgruntled employees with insider knowledge. The CPNI now provides integrated security advice to both public and private organisations that make up the national infrastructure. Its partners include the Security Service and CESG. It is co-located with NACTSO in the Security Service headquarters at Thames House.

 

Centre for the Protection of Critical National Infrastructure website

 

Peter Burnett, CPNI Corporate Strategy and Policy, 'ITSAFE Warning Service in the UK', German Presidency IT Security Conference, Berlin, 5 June 2007. 

Professor Angela Sasse, University College London, 'Understanding & Identifying the Insider Threat: CPNI - Personnel Security & Behavioural Assessment', presented at IA08. 

Fernando Gont,'Some insights about the recent TCP DoS (Denial of Service) vulnerabilities - A project carried out on behalf of UK CPNI' presented at HACK.LU 09 Conference, October 28-30, 2009. Luxembourg. 

 

 

Back to home page

GCHQ: The Uncensored Story of Britain's Most Secret Intelligence Agency