Why defining and securing systemically important critical infrastructure is so vital

(Credit: Unsplash)

This article is brought to you thanks to the collaboration of The European Sting with the World Economic Forum.

Author: Alexander Klimburg, Head, Centre for Cybersecurity, Member of the Executive committee, World Economic Forum, Akshay Joshi, Head of Industry and Partnerships, Centre for Cybersecurity, World Economic Forum & Filipe Beato, Lead, Centre for Cybersecurity, World Economic Forum


  • Critical infrastructure protection is vital to keep essential services running and often relies on public-private cooperation models.
  • But while failure of critical infrastructure is often considered a worst-case scenario, there is often a question over who pays for its security.
  • Identifying ‘systemically important critical infrastructure’ could help open up new cooperation models and unlock new funding mechanisms.

Government efforts to engage in critical infrastructure protection are hardly new. In the United States, the first efforts were codified all the way back in 1998 in the Presidential Decision Directive 63, which reads:

Critical infrastructures are those physical and cyber-based systems essential to the minimum operations of the economy and government. They include, but are not limited to, telecommunications, energy, banking and finance, transportation, water systems and emergency services, both governmental and private.

This mission seems clear: to set up comprehensive public-private cooperation models that help assure the provision of essential services to the government, the economy and the public.

In the US, the governmental programmes in this regard have led to a huge increase in cybersecurity spending just in the entities directly affected – over $105 billion in 2021 alone, according to one estimate.

Challenges of critical infrastructure protection

However, despite well over two decades of experience, getting critical infrastructure protection right still seems to be a challenge. The recent Colonial Pipeline attack paralysed the gas supply on the east coast of the US. Similar impacts were witnessed as a result of the Amsterdam-Rotterdam-Antwerp attack in February 2022, and the Florida water plant incident in February 2021.

While full-scale outages in the electricity sector have yet been relatively contained, for instance the 2015 power grid hack in Ukraine, several cyber powers have reportedly prepositioned malware in each other`s power grids.

It is far from clear if critical infrastructure protection programmes would be sufficient in dealing with the effects of such a worst-case act – one that could even rise to the level of an actual cyberwar if committed by states.

The wide-scale and prolonged failure of critical infrastructure is sometimes considered the worst-case outcome of a political conflict – exactly what we would do as a society if the power fails for days, let alone weeks, is a matter of widespread speculation.

Cyberattack on critical infrastructure ‘prime fear’

But the concern is not only one of overexcited journalists or filmmakers. For the Global Cybersecurity Outlook 2022 report, the World Economic Forum surveyed 120 senior cyber leaders to understand their concerns, both for their enterprises but also for themselves personally. When asked what they worried about personally, infrastructure breakdown due to a cyberattack emerged as the number one concern, substantially ahead of identity theft.

Over the last 20 years, virtually all Organisation for Economic Co-operation and Development governments have experimented with various carrots and sticks to increase private sector collaboration.

What is the World Economic Forum doing on cybersecurity?

The World Economic Forum’s Centre for Cybersecurity is leading the global response to address systemic cybersecurity challenges and improve digital trust. The centre is an independent and impartial platform committed to fostering international dialogues and collaboration on cybersecurity in the public and private sectors.

Since its launch, the centre has driven impact throughout the cybersecurity ecosystem:

Contact us for more information on how to get involved.

More recent discussion in Europe and the US has concentrated on the “sticks” – in particular, new legal requirements by governments that operators of critical infrastructure must report serious breaches in their networks.

These regulations – like the EU Cybersecurity Act and the very recent US Cyber Incident reporting for Critical Infrastructure act of 2022 – were seen as relatively low-cost options and were supposed to incentivize private companies to invest more in security.

But it didn’t answer the question that is really on many critical infrastructure operators’ minds – more security and operational resilience would be great, but who was going to pay for it?

Who pays for critical infrastructure protection?

A significant challenge of critical infrastructure protection programmes is simply that the societal needs are not the same as many industry needs. For instance, the emergency services in many countries depend on the same mobile phone infrastructure as everyone else.

Cellular base stations are critical, but only few have standby generators in case of a wide scale power blackout, and only for a day or two at most. The government can (and sometimes does) force these companies to build more redundancy into these networks, but overall telecom companies work under tight profit margins making investors wary of any additional burdens.

And while government might also just purchase, subsidize or otherwise reward the purchase of such equipment, there may remain a legal question: if such subsidies were to apply to all critical infrastructures – and in the US these are likely to be many thousands of companies – would it not represent a major anti-competitive act, especially where being “critical” was hardly an exceptional situation anymore?

Defining systemically important critical infrastructure

The solution to this conundrum is an entire new type of critical infrastructure, which potentially may even result in an entire new type of corporation: the “systemically important critical infrastructure”.

The concept of systemically important critical infrastructure was floated in the US Cyberspace Solarium Commission’s 2020 report as “the entities, responsible for the most important critical systems and assets in the US, that would be granted special assistance from the federal government as well as assume increased responsibility for additional security and information security requirements that are vital to their unique status and importance”.

In other words, it encompasses only the “critical of the critical” enterprises – those like power and telecoms that are needed to make the others run.

In the US there is a clear move to adopting the concept wholesale, and the legislation pushed forward might represent the start of a very new idea of critical infrastructure. However, the exact deliberations of what may constitute systemically important critical infrastructure and how it can be enacted are still very much at the start.

Rethinking regulation models to ensure resilience

In addition to collaboration between governments and critical infrastructure organizations, there is a need to establish improved cost-sharing models and co-regulatory models that ensure resilience of the basic underpinnings of daily life.

A new legal category of ‘systemically important’ infrastructure may provide government with the ability to unlock new funding mechanisms that were previously unavailable. This is clearly needed for some infrastructure, whereas as mentioned previously, the sums needed to ensure business continuity and disaster recovery at the level that society may need clearly exceeds the budgets the operators can spend on this.

What is the World Economic Forum doing on infrastructure?

Infrastructure is one of the least technologically transformed sectors in the entire economy, with crucial components like construction ranking second to last in digitization according to industry rankings. Technologically-enabled infrastructure has the potential to change the way we plan, design, finance, build and operate our infrastructure systems and, more importantly, help achieve broader goals around sustainability, social cohesion and inclusive economic growth.

The World Economic Forum’s Infrastructure 4.0 initiative, supported by the Global Infrastructure Hub, is working to improve the adoption of emerging infrastructure technologies across asset and system lifecycles.

By creating recommendations for decision-makers and providing best-practice case study examples to the Global Infrastructure Hub’s G20 Infratech Use Case library, this initiative aims to refocus the infrastructure development conversation around how infrastructure as a tool to provide better outcomes in people’s lives and technology’s role in enabling this people-first future.

Beyond even capital expenditure-related measures, it could even include operational expenditure-related issues – such as the costs associated with maintaining sufficiently large cybersecurity organizations and similarly to deal with the threats at hand. The concept opens the door for creative thinking.

The new concept of systemically important critical infrastructure organizations may be the best way to cut the Gordian knot that has bedevilled public-private cooperation in critical infrastructure for decades: how to properly share the cost burden of modern societies’ reliance on certain life-essential industries. Getting this right will be a huge step in the Fourth Industrial Revolution.


Discover more from The European Sting - Critical News & Insights on European Politics, Economy, Foreign Affairs, Business & Technology - europeansting.com

Subscribe to get the latest posts sent to your email.

Interesting reads

This article is brought to you in association with the European Commission.

Commission seeks feedback on commitments offered by Sanofi over possible anticompetitive conduct regarding the promotion of a flu vaccine for vulnerable patients

This article is brought to you in association with the European Commission. The European Commission invites comments on commitments offered by Sanofi to address competition concerns regarding a communication campaign that has possibly disparaged the only rival flu vaccine recommended for vulnerable patients with risk factors. The Commission’s investigation Sanofi, headquartered in France, is a multinational […]
This article is published in association with United Nations.

US-Iran war: Renewed attacks in Strait of Hormuz prompts another global energy alert

This article is published in association with United Nations. Renewed attacks on shipping in the Strait of Hormuz unsettled energy markets on Wednesday and prompted calls from the UN maritime agency, IMO, for “maximum restraint and de-escalation”. Amid reports that three merchant vessels were hit along with Iranian targets, IMO Secretary-General Arsenio Dominguez condemned “reckless attacks” […]
This article is published in association with United Nations.

When AI hurts people, who’s to blame? Global experts grapple with accountability

This article is published in association with United Nations. Who is legally responsible when Artificial Intelligence causes harm? The issue took centre stage on Tuesday – day two of the first ever UN summit on AI governance, where leading experts warned of mounting evidence of human rights violations linked to the revolutionary technology. “Across 11 Global […]
UN News Humanitarian conditions in the Gaza Strip remain dire, with families in urgent need of shelter, healthcare and food.

Occupied Palestinian Territory: Aid restrictions in Gaza, ‘senseless’ infant deaths in the West Bank

This article is published in association with United Nations. Ongoing restrictions and closures of border crossings continue to hamper delivery of critical supplies into the Gaza Strip, amid mounting concern for children there and in the West Bank, the United Nations said on Monday.  UN teams in Gaza continued to collect food and fuel from the Kerem […]
About the author Sadia Khalid is a Scientist-Physician (MBBS, MD) at Tallinn University of Technology. She is driven by a commitment to advance public health and scientific understanding. With research interests spanning molecular medicine, infectious diseases, bacteriology, hepatology, and gastroenterology, she aims to contribute meaningful, evidence-based insights that support health, safety, and community awareness.

Heat, Flood, Fire: The Climate Crisis and the Body

This article was exclusively written for The European Sting by Ms. Sadia Khalid, a Scientist-Physician (MBBS, MD) at Tallinn University of Technologye. She is affiliated with the International Federation of Medical Students Associations (IFMSA), cordial partner of The Sting. The opinions expressed in this piece belong strictly to the writer and do not necessarily reflect IFMSA’s view on […]
UN Ukraine The aftermath of a Russian missile and drone attack on Kyiv in May 2026.

Civilian dangers multiply as drones transform Ukraine’s battlefield

This article is published in association with United Nations. As drones reshape the battlefield in Ukraine, they are also creating new and increasingly complex dangers for civilians, threatening recovery efforts, agriculture and global food security long after the fighting ends. “The battlespace has become a lot deeper, a lot wider and a lot more lethal,” Paul […]
© WHO/PAHO PAHO has mobilised emergency health supplies from its Strategic Reserve in Panama following the earthquakes that struck the country on 24 June.

Venezuela’s earthquake-hit hospitals pushed to the brink as disease risk grows

This article is published in association with United Nations. A week after earthquakes tore through northern Venezuela, hospitals in La Guaira are buckling under the weight of the disaster – and the risk of disease outbreaks in shelters is rising fast. An assessment by the UN-backed Pan American Health Organization (PAHO) found that all eight health […]
Venezuela earthquake disaster: needs ‘skyrocketing’, say relief agencies

Venezuela earthquake disaster: needs ‘skyrocketing’, say relief agencies

This article is published in association with United Nations. In Venezuela, a rescue operation in La Guaira has succeeded in getting a toddler out alive from under the rubble, six days since the double-earthquake disaster. The miraculous story of the three-year-old’s rescue in the worst-hit northern region came as tens of thousands of people remained without […]
© WFP/Maxime Le Lijour Much of Gaza will need rebuilding after the war with Israel.

Despite record $100 million shortfall, Palestine relief agency still ‘a critical platform’ for Gaza recovery

This article is published in association with United Nations. The UN agency serving 5.9 million Palestine refugees, UNRWA, continues to strive to deliver on its mandate while facing an unprecedented $100 million budget shortfall, a gap it hopes to narrow during Tuesday’s pledging conference at UN Headquarters. Operating primarily on voluntary donations since its inception in the […]
© UNOCHA Sloviansk in eastern Ukraine has been regularly attacked with aerial bombs and drones.

UN details humanitarian toll of strikes on Ukrainian power industry

This article is published in association with United Nations. Missile and drone attacks killed at least a dozen civilians in Russia and Ukraine over the weekend as both countries continue to launch long-range drone strikes. Tweet URL Ukrainian authorities reported eight civilians killed and 35 others wounded in Russian attacks on the city of Dnipro on […]
Photo credit: Luis Garcia The UN System is present in La Guaira, the region most severely affected by the devastating twin earthquakes that struck Venezuela.

Venezuela earthquakes leave 680,000 children in need of assistance: UNICEF

This article is published in association with United Nations. Some 680,000 children are among the 1.8 million people in need of humanitarian assistance following the earthquakes that struck Venezuela on 24 June, the UN child rights agency UNICEF reported on Sunday as rescue efforts continue. Damage to hospitals, schools, and water systems is exacerbating the situation for affected families, […]
This article is published in association with United Nations.

Europe heatwave breaks records as UN agencies ramp up health warnings

This article is published in association with United Nations. Climate and Environment As a record-breaking heatwave grips large parts of Europe, the World Meteorological Organization (WMO), national weather services and partners are mobilising heat-health action plans for millions of people facing dangerous temperatures.  The extreme heat is also impacting economic activities, infrastructure, agriculture and ecosystems, the UN weather […]
© Unsplash/Angus Gray Ship transits through the Strait of Hormuz have dropped by over 90 per cent since the crisis escalated in late February 2026.

Stranded Hormuz seafarers begin mass evacuation operation

This article is published in association with United Nations. As the UN International Maritime Organization (IMO) released more details of its plan to evacuate more than 11,000 seafarers stranded in the Strait of Hormuz, one mariner caught up in the emergency has described the ever-present fear of coming under attack. “You don’t know when the war […]
© Unsplash/Angus Gray Ship transits through the Strait of Hormuz have dropped by over 90 per cent since the crisis escalated in late February 2026.

World News in Brief: UN launches Hormuz evacuation plan, UNICEF youth champion killed in Gaza, Lebanon ceasefire ‘largely holding’

This article is published in association with United Nations. The International Maritime Organization (IMO) will begin implementing an evacuation plan for more than 11,000 seafarers stranded in the Strait of Hormuz, the UN agency announced on Tuesday. The development follows months of hardship and distress for thousands of innocent seafarers and comes on the heels of […]
© Unsplash/Michu Đăng Quang The emissions from electricity or gasoline that power air conditioners contribute to global warming. "It's time to come clean" and do more to promote renewable energy, the UN Secretary-General told the London Climate Action Week.

Climate crisis: UN chief lays out solutions blueprint for clean energy transition

This article is published in association with United Nations. As a deadly heatwave continued to grip Europe on Tuesday, UN Secretary-General António Guterres issued an impassioned appeal for more ambitious global action on climate change caused by fossil fuels, to prevent irreversible damage. In a major keynote speech at London Climate Action Week, the UN chief […]

Libya’s political process regains momentum, but window for action is narrowing, UN envoy warns

This article is published in association with United Nations. Libya has been mired in political dysfunction since the collapse of Muammar Gaddafi’s regime in 2011, which shattered State institutions and triggered recurring struggles over legitimacy and power.  The country’s current stalemate pits the UN-recognised Government of National Unity in the capital Tripoli against eastern-based authorities backed […]
© UNICEF Chad hosts refugees from conflicts in neighbouring Sudan, the Central African Republic and Cameroon.

World Refugee Day: UN calls for renewed commitment and solidarity

This article is published in association with United Nations. The UN High Commissioner for Refugees has called on the international community to strengthen support for the nearly 42 million people worldwide who have fled their home countries to escape conflict, violence or persecution. Barham Salih highlighted the contributions refugees make to their host communities as workers, students, neighbours, […]
© WFP/Htet Oo Linn Families in Myanmar have been hit hard by rising prices, with the most vulnerable struggling to meet their daily needs.

US makes $1 billion contribution to UN child rights and food agencies

This article is published in association with United Nations. Two United Nations agencies have together welcomed more than $1 billion in assistance from the United States to support their operations targeting millions of children and hungry families in more than 40 countries. This week the US State Department announced a more than $800 million contribution to the […]
© UNICEF/Oleksii Filippov A bouquet of flowers and soft toys placed near the site of a missile strike, left in memory of the children killed in the early morning attack in Kyiv, Ukraine, on 24 April 2025.

‘Darkest chapter’: Record child violations in 2025, with national forces leading the way

This article is published in association with United Nations. For the first time, soldiers and Government forces were responsible for more grave violations against children in armed conflict than non-State armed groups – and 2025 set a grim new record for the total number of child victims.  The findings come in the annual UN report on Children and Armed […]

Why don't you drop your comment here?

Go back up

Discover more from The European Sting - Critical News & Insights on European Politics, Economy, Foreign Affairs, Business & Technology - europeansting.com

Subscribe now to keep reading and get access to the full archive.

Continue reading

Discover more from The European Sting - Critical News & Insights on European Politics, Economy, Foreign Affairs, Business & Technology - europeansting.com

Subscribe now to keep reading and get access to the full archive.

Continue reading

The European Sting – Critical News & Insights on European Politics, Economy, Foreign Affairs, Business & Technology – europeansting.com