Protecting critical information infrastructure of government, transportation, and tourist facilities under sanctions pressure

Abstract

The article analyzes political and legal measures to counter threats to critical information infrastructure (CII). The authors explain the concept of CII in Russia and abroad, examine how its objects are covered, and discuss the steps Russia has taken to safeguard CII considering the principal risks to information security in 2017-2023. The sanctions regime places unique challenges in the area of CII protection. Sanctions pressure and other political challenges vastly facilitated the development of new security measures. The success of the protective policy is demonstrated by the increase in the proportion of domestically produced electronics purchased by state-owned businesses and government clients in 2023. The current risks related to foreign electronics being vulnerable to cyberattacks need to be addressed. In response to these challenges, new security systems are gradually being introduced for CII protection.