Resilience and Cyber Security of Technology in the Built Environment
Creation of intelligent or smart buildings requires greater integration of systems, both the operational and business systems used by the buildings' occupants and a wide range of infrastructure systems. This is typically being achieved through the convergence of the technical infrastructure and the widespread use of readily available commercial and open-source technologies. Although the initial focus of the designers of intelligent or smart buildings has been on developing solutions to make them more energy efficient, there is an increasing focus on the interaction of systems. The drivers for intelligent buildings and thus systems integration arise from the need for new energy-efficient interventions, real-time decision-support systems, enhanced building and personnel security, and better management information dashboards that offer easy access to key performance indicators. The purpose of this technical briefing is to inform professionals involved in the development and operation of intelligent or smart buildings about the resilience and cyber security issues that arise from a convergence of the technical infrastructure and computer-based systems as those systems become interconnected with the global network that comprises cyberspace. This document is not intended to address the physical hardening of buildings to protect against specific physical threats such as earthquakes, weather, or blast. The document examines different sources of threats across the building life cycle, from initial concept through to decommissioning. It considers potential threat agents that could cause or contribute to a cyber security incident and identifies some of the measures that may be appropriate to reduce the risks.