Data and securityCyber SecuritySmart Cities specification for data, information and asset security management launched

Smart Cities specification for data, information and asset security management launched

BSI, the business standards company, has launched a new Smart Cities specification for safeguarding data and information security in cities

BSI, the business standards company, has launched a new Smart Cities specification for safeguarding data and information security in cities. PAS 185 Smart Cities – Specification for establishing and implementing a security-minded approach lists requirements for creating a framework for the security-minded management of a city.

The PAS was commissioned by the Centre for the Protection of National Infrastructure (CPNI) – the government authority for protective security advice to the UK national infrastructure. PAS 185 outlines the potential security threats to a smart city that could affect the people who live and work there, as well as outlining appropriate responses to those threats.

The goal of a smart city is to join up sectors – such as utilities, transport, or health – across organisational boundaries into a whole-city approach for the day-to-day running of services. The Smart Cities ethos is that greater availability of data and information can improve existing assets, which include refuge facilities, transport infrastructure, and housing.

Data and information can then be used in conjunction with the integration of services and systems to improve service provision for current and future citizens. In addition, information acquired from outcome-based contracting can be used to improve the efficiency of newly built assets through a better understanding of whole-life performance of existing assets.

The framework in PAS 185 can be used to create appropriate and proportionate security measures to deter and/or disrupt hostile, malicious, fraudulent and criminal activities. Crucially, implementation of these measures will not prevent delivery of the city’s aims. Further, the PAS considers security holistically, looking at governance, personnel, physical, and technological security issues and solutions.

Aspects related to the environment of the smart city – including scale, organisational complexity, complex service delivery and ownership of smart city infrastructure – are covered in PAS 185. How an organisation or individual should respond to incidents, security breaches, and changing risk levels is also outlined in the specification.

Dan Palmer, Head of Market Development for Manufacturing at BSI, said: “Greater availability of data and information can transform the way our cities are run – helping public and private sector decision-makers to provide a better environment for citizens. But it is critically important that this data and information is handled responsibly, and doesn’t open up the city to cyber or other attacks. PAS 185 was created to provide a framework for the development of an overall security strategy for the handling, management and sharing of data.

“PAS 185 will help decision-makers in smart cities, as well as smart city data officers, understand and guard against the risks involved as they move into the digital age. It will also be of benefit to those interested in utilising data and information to effectively deliver smart city objectives.”

PAS 185 is a companion document to other Smart Cities documents, including PAS 183 Smart Cities – Guide to establishing a decision making framework for sharing data and information services, and PAS 184 Smart Cities – Developing project proposals for delivering smart city solutions. The City Standards Institute is among the organisations that participated on the PAS 185 steering group. The Cities Standards Institute is a collaboration between BSI and the Future Cities Catapult to create a standards-based community of good practice for cities and the companies they work with.

More information on the report can be found here.

Related Articles

Housing associations collaborate around cyber awareness

Cyber Security Housing associations collaborate around cyber awareness

16h Austin Clark
Six top security and risk management trends revealed

Cyber Security Six top security and risk management trends revealed

1w Austin Clark
DDoS Defence Demands a Hybrid Approach

Cyber Security DDoS Defence Demands a Hybrid Approach

2w Guest Writer
NHS Digital joins forces with IBM to beef up NHS cyber security

Cyber Security NHS Digital joins forces with IBM to beef up NHS cyber security

3w Austin Clark
HMRC storing voice ID data 'without consent'

Cyber Security HMRC storing voice ID data 'without consent'

3w Austin Clark
Government’s rapid cloud adoption lacks security (Infographic)

Cloud Computing Government’s rapid cloud adoption lacks security (Infographic)

1m Austin Clark
Combatting the cyber security skills crisis: Retraining could help public sector digital transformation

Cyber Security Combatting the cyber security skills crisis: Retraining could help public sector digital transformation

1m Guest Writer
The need for a strategic approach to cyber security purchasing

Cyber Security The need for a strategic approach to cyber security purchasing

2m Guest Writer