skip to main content


Title: Smart Cities and the Challenges of Cross Domain Risk Management: Considering Interdependencies Between ICT-Security and Natural Hazards Disruptions
Abstract Research purpose. Smart City technologies offer great promise for a higher quality of life, including improved public services, in an era of rapid and intense global urbanization. The use of intelligent or smart information and communication technologies to produce more efficient systems of services in those urban areas, captured under the broad rubric of “smart cities,” also create new vectors of risk and vulnerability. The aim of this article is to raise consideration of an integrated cross-domain approach for risk reduction based on the risks smart cities are exposed to, on the one hand, from natural disasters and, on the other, from cyber-attacks. Design / Methodology / Approach. This contribution describes and explains the risk profile for which smart cities are exposed to both natural disasters and cyber-attacks. The vulnerability of smart city technologies to natural hazards and cyber-attacks will first be summarized briefly from each domain, outlining those respective domain characteristics. Subsequently, methods and approaches for risk reduction in the areas of natural hazards and ICT security will be examined in order to create the basis for an integrated cross-domain approach to risk reduction. Differences are also clearly identified if an adaptation of a risk reduction pattern appears unsuitable. Finally, the results are summarized into an initial, preliminary integrated cross-domain approach to risk reduction. Findings. Risk management in the two domains of ICT security and natural hazards is basically similar. Both domains use a multilayer approach in risk reduction, both have reasonably well-defined regimes and established risk management protocols. At the same time, both domains share a policymaking and policy implementation challenge of the difficulty of appropriately forecasting future risk and making corresponding resource commitments to address future risk. Despite similarities, different concepts like the CIA Triad, community resilience, absorption capacity and so on exist too. Future research of these concepts could lead to improve risk management. Originality / Value / Practical implications. Cyber-attacks on the ICT infrastructure of smart cities are a major vulnerability – but relatively little systematic evaluation exists on the topic. Likewise, ICT infrastructure is vulnerable to natural disasters too – and the risk of more severe natural disasters in the context of a global trend toward massive cities is increasing dramatically. Explicit consideration of the issues associated with cross-domain integration of reduction of interdependent risk is a necessary step in ensuring smart city technologies also serve to promote longer-term community sustainability and resilience.  more » « less
Award ID(s):
1828010
NSF-PAR ID:
10175491
Author(s) / Creator(s):
;
Date Published:
Journal Name:
Economics and Culture
Volume:
16
Issue:
2
ISSN:
2256-0173
Page Range / eLocation ID:
106 to 116
Format(s):
Medium: X
Sponsoring Org:
National Science Foundation
More Like this
  1. Due to the critical importance of Industrial Control Systems (ICS) to the operations of cities and countries, research into the security of critical infrastructure has become increasingly relevant and necessary. As a component of both the research and application sides of smart city development, accurate and precise modeling, simulation, and verification are key parts of a robust design and development tools that provide critical assistance in the prevention, detection, and recovery from abnormal behavior in the sensors, controllers, and actuators which make up a modern ICS system. However, while these tools have potential, there is currently a need for helper-tools to assist with their setup and configuration, if they are to be utilized widely. Existing state-of-the-art tools are often technically complex and difficult to customize for any given IoT/ICS processes. This is a serious barrier to entry for most technicians, engineers, researchers, and smart city planners, while slowing down the critical aspects of safety and security verification. To remedy this issue, we take a case study of existing simulation toolkits within the field of water management and expand on existing tools and algorithms with simplistic automated retrieval functionality using a much more in-depth and usable customization interface to accelerate simulation scenario design and implementation, allowing for customization of the cyber-physical network infrastructure and cyber attack scenarios. We additionally provide a novel in tool assessment of network’s resilience according to graph theory path diversity. Further, we lay out a roadmap for future development and application of the proposed tool, including expansions on resiliency and potential vulnerability model checking, and discuss applications of our work to other fields relevant to the design and operation of smart cities. 
    more » « less
  2. The collection and use of digital data by “smart city” programs raise complex operational and ethical questions that can best be addressed through carefully-monitored pilot studies before urban innovations are more widely adopted. We have created a network of single-owner campuses (academic, government, corporate and nonprofit) in the Cascadia megaregion that connects Portland (OR), Seattle (WA) and Vancouver (BC), where smart city products and services can be evaluated before deployment in neighborhoods and business districts. On the five initial campuses, we are co-locating assemblages of up to a dozen technologies through which issues of data interoperability, management, privacy and monopolization can be explored. The initial research and policy goals of this network are to educate the public about smart cities, improve accessibility for populations with disabilities, prepare city residents for natural disasters, and monitor urban tree canopies so they can better mitigate the urban heat island effect. If replicated in other regions, this testing approach can accelerate cities' responsible integration of data science solutions that can address both local and global problems. 
    more » « less
  3. Abstract

    The purpose of this article is to introduce a risk analysis framework to enhance the cyber security of and to protect the critical infrastructure of the electric power grid of the United States. Building on the fundamental questions of risk assessment and management, this framework aims to advance the current risk analysis discussions pertaining to the electric power grid. Most of the previous risk‐related studies on the electric power grid focus mainly on the recovery of the network from hurricanes and other natural disasters. In contrast, a disproportionately small number of studies explicitly investigate the vulnerability of the electric power grid to cyber‐attack scenarios, and how they could be prevented or mitigated. Such a limited approach leaves the United States vulnerable to foreign and domestic threats (both state‐sponsored and “lone wolf”) to infiltrate a network that lacks a comprehensive security environment or coordinated government response. By conducting a review of the literature and presenting a risk‐based framework, this article underscores the need for a coordinated U.S. cyber security effort toward formulating strategies and responses conducive to protecting the nation against attacks on the electric power grid.

     
    more » « less
  4. Megacities are socio-ecological systems (SES) that encompass complex interactions between residents, institutions, and natural resource management. These interactions are exacerbated by climate change as resources such as water become scarce or hazardous through drought and flooding. In order to develop pathways for improved sustainability, the disparate factors that create vulnerable conditions and outcomes must be visible to decision-makers. Nevertheless, for such decision-makers to manage vulnerability effectively, they need to define the salient boundaries of the urban SES, and the relevant biophysical, technological, and socio-institutional attributes that play critical roles in vulnerability dynamics. Here we explore the problem of hydrological risk in Mexico City, where vulnerabilities to flooding and water scarcity are interconnected temporally and spatially, yet the formal and informal institutions and actors involved in the production and management of vulnerability are divided into two discrete problem domains: land-use planning and water resource management. We analyze interviews with city officials working in both domains to understand their different perspectives on the dynamics of socio-hydrological risk, including flooding and water scarcity. We find governance gaps within land-use planning and water management that lead to hydro-social risk, stemming from a failure to address informal institutions that exacerbate vulnerability to flooding and water scarcity. Mandates in both sectors are overlapping and confusing, while socio-hydrological risk is externalized to the informal domain, making it ungoverned. Integrated water management approaches that recognize and incorporate informality are needed to reduce vulnerability to water scarcity and flooding. 
    more » « less
  5. Abstract. Megacities are predominantlyconcentrated along coastlines, making them exposed to a diverse mix ofnatural hazards. The assessment of climatic hazard risk to cities rarely hascaptured the multiple interactions that occur in complex urban systems. Wepresent an improved method for urban multi-hazard risk assessment. We thenanalyze the risk of New York City as a case study to apply enhanced methodsfor multi-hazard risk assessment given the history of exposure to multipletypes of natural hazards which overlap spatially and, in some cases,temporally in this coastal megacity. Our aim is to identify hotspots ofmulti-hazard risk to support the prioritization of adaptation strategies thatcan address multiple sources of risk to urban residents. We usedsocioeconomic indicators to assess vulnerabilities and risks to threeclimate-related hazards (i.e., heat waves, inland flooding and coastal flooding) at high spatial resolution.The analysis incorporates local experts' opinions to identify sources ofmulti-hazard risk and to weight indicators used in the multi-hazard riskassessment. Results demonstrate the application of multi-hazard riskassessment to a coastal megacity and show that spatial hotspots ofmulti-hazard risk affect similar local residential communities along thecoastlines. Analyses suggest that New York City should prioritize adaptationin coastal zones and consider possible synergies and/or trade-offs tomaximize impacts of adaptation and resilience interventions in the spatiallyoverlapping areas at risk of impacts from multiple hazards.

     
    more » « less