Professional Documents
Culture Documents
net/publication/354606048
CITATION READS
1 126
14 authors, including:
41 PUBLICATIONS 42 CITATIONS
Eni SpA
210 PUBLICATIONS 753 CITATIONS
SEE PROFILE
SEE PROFILE
Some of the authors of this publication are also working on these related projects:
All content following this page was uploaded by Giuseppe Giunta on 20 September 2021.
The work will be available online open access and governed by the Creative Commons “Attribution-Non
Commercial” License (CC BY-NC), according to https://creativecommons.org/licenses/by-nc/4.0/
Published in Cyber-Physical Threat Intelligence for Critical Infrastructures Security by John Soldatos, Isabel Praça
and Aleksandar Jovanović (eds.). 2021. ISBN 978-1-68083-822-0. E-ISBN 978-1-68083-823-7.
Suggested citation: Evita Agrafioti, Anastasia Chalkidou, George Papadakis, Anna Gazi, Ilias Gkotsis, Vit Stritecky,
Ioannis Lazarou, George Diles, Theodora Galani, Giuseppe Giunta, Karolina Jurkiewicz, Alberto Balbi, Fabio
Bolletta and Clemente Fuggini. 2021. “The SecureGas Key Performance Indicators” in Cyber-Physical Threat
Intelligence for Critical Infrastructures Security. Edited by John Soldatos, Isabel Praça and Aleksandar Jovanović.
pp. 342–360. Now Publishers. DOI: 10.1561/9781680838237.ch14.
Key Performance Indicators (KPIs) enable the realization of advanced systems
toward tangible goals while serving as a benchmark for evaluating the quality of
technical solutions. The current chapter describes the methodological approach
followed for the elicitation of the SecureGas system KPIs and provides detailed
information on the specific indicators and metrics set to assess the performance of
the system. The added value of the SecureGas KPIs on the resilience of Gas net-
works is thoroughly described while their application for system validation purposes
is analyzed.
15.1 Introduction
The SecureGas (Securing the European Gas Network) project responds to the
growing concerns connected with the resilience of the European Gas network and
342
Methodology for KPIs Definition 343
installations (Regulation (EU) 2017/1938), covering the entire value chain of Gas
networks, from Production (Upstream) to Transmission (Midstream) up to Dis-
tribution to the users (Downstream). To secure existing and future installations
and make them resilient to cyber-physical threats, SecureGas provides methodolo-
gies, tools and guidelines which will be tested and validated in three Business Cases
(BCs). As a result a complex System of Systems (SoS) will be developed to fulfill the
core EU strategic and policy goals in this area (SWD, 2013 318; COM, 2014 654)
and to increase resilience of the European Gas network to various types of cyber-
and physical threats.
To successfully achieve these goals, SecureGas relies on a combination of skills
encompassing not only technological excellence but also innovation management
capabilities. This chapter focuses on KPIs that belong among the crucial elements
of the performance management (Kaplan and Norton, 1992; Parmenter, 1997;
Franceschini et al., 2007). The establishment of well-defined KPIs enables the
development of a product that corresponds to tangible goals. KPIs set the direction
for reaching an optimal outcome, by identifying why the core goals are important
as well as how they can be achieved and measured. By these means, KPIs serve as a
benchmark for internal quality assurance and progress evaluation, establishing the
key areas to be tested, measured and validated at key stages. The applicability of
KPIs is very broad. Therefore, the current chapter focuses on KPIs in a context
of industrial applied Research and Development (R&D) (for a broad overview see
Samsonowa, 2012).
Early attempts to define KPIs in R&D were related to the processes of assess-
ing R&D organizations’ productivity and effectiveness (Brown and Gobeli, 1992;
Chiesa and Frattini, 2007). However, KPIs have become increasingly used to mea-
sure and evaluate the effectiveness of complex technological solutions in a wide
range of areas (Badawya et al., 2016). They consist of a set of parameters that can
objectively judge the fulfillment of the defined goals and objectives. Practically, KPIs
are selected for their ability to monitor the processes with regard to the key steps
and outcomes.
Performance evaluation and assessment based on a sound methodology is of
primary importance when applying technological innovations in the area of critical
infrastructure protection. To this end, the present chapter introduces KPIs of the
SecureGas system, outlining the methodology followed for their definition, as well
as their application for system validation purposes.
The SecureGas project targets the development of a SoS, which comprises var-
ious subsystems and technologies (components) that are interconnected and
344 The SecureGas Key Performance Indicators
• Performance evaluation criteria already applied for Gas network operation: Con-
sidering that the SecureGas system aims at adding value to the Gas network
by fostering its secure and safe operations as well as its protection against
physical- and cyber threats (all hazards approach), it was deemed rather
important to take into consideration the KPIs that the end users (Gas oper-
ators) already apply to monitor their network normal operation.
• SecureGas User Requirements: The KPIs are closely related to the end users
and stakeholders interested in the SecureGas system and need to reflect how
the SecureGas system can improve and add value to the existing procedures
applied to monitor the safe and secure operation of the natural gas network.
To this end, the User Requirements, which are the end users needs and expec-
tations from an integrated security system, shed light on the functional and
nonfunctional characteristics of the system that are deemed important from
the end users’ perspective, guiding the identification of KPIs.
• SecureGas Technical Requirements: The Technical Requirements of the
integrated SecureGas system also provided the baseline for the extraction of
indicators that refer to the entire solution. Those requirements refer to the
functions, features, and services provided by the whole SecureGas solution in
order to address specific User Requirements.
Typically, management systems are linked to a set of KPIs that enable the mon-
itoring of their effective implementation as well the detection of any inadequacies
or failures in their performance. Those KPIs comprise specific metrics that reflect
the exact goals that need to be achieved in order to ensure that management sys-
tems are performing well. In many cases those KPIs act proactively, and are linked
to unfavorable situations (e.g., number of serious incidents/accidents/near misses
and number of injuries) which can be avoided through the adoption of appropriate
measures and procedures.
Considering that the SecureGas system aims at protecting Gas network against
physical- and cyber threats by fostering its secure and safe operations, the develop-
ment of the SecureGas KPIs was considered important to also draw on the KPIs
that the SecureGas end users already apply to monitor their network operation.
346 The SecureGas Key Performance Indicators
To this end, the project end users provided general KPIs categories that are linked
to their companies’ management systems and are related to SecureGas objectives.
This action did not aim at capturing specific metrics and target values, but only
to showcase the general areas of performance evaluation that are currently applied
by Gas operators. The KPIs provided by the SecureGas end users shed light on the
most important parameters that are considered critical for the evaluation of the Gas
network operation and enabled the identification of key areas where the SecureGas
system needs to exert its impact and add value. Those KPIs are summarized as
follows:
Additionally, there are KPIs related to the activities conducted by both the Gas
operators and external partners such as local authorities, stakeholders, government,
and civil protection. Examples of such KPIs categories, which can be used for assess-
ing critical infrastructures’ ability to be resilient, are as follows:
Although all the aforementioned KPIs are deemed key elements for the system
performance evaluation, nevertheless some of them did not contribute to the for-
mulation of the SecureGas KPIs, mostly because they reflect attributes of an indus-
trialized version of the SecureGas solution, and thus they were considered of low
relevance to project’s scope.
348 The SecureGas Key Performance Indicators
Table 15.1. The SecureGas User Requirements that guided the definition of KPIs.
Table 15.2. The SecureGas Technical Requirements that guided the definition of KPIs.
Title Description
Legacy and new SecureGas will integrate the outcomes of cyber- and physical
technologies protection systems already operating in the gas infrastructure
(if any) with new advanced technological solutions for
cyber/physical protection and detection.
Human–Machine The user interface of the SecureGas platform should give the
interface operator a summary of all the alarms occurred in the system
in a certain time window, with the possibility to drill down a
particular alarm to access a more detailed description.
Event correlation SecureGas shall correlate events from cyber- and physical
domains in order to generate, if it is the case, alarms
stemming from apparently harmless events. Those events are
generated both by legacy systems and by the components
provided by SecureGas platform itself.
Physical threats SecureGas shall provide detection of physical potential
threats, such as leakages, intrusion, third-party interference,
geohazard-related issues.
Cyberthreats SecureGas shall provide detection of cyber potential threats,
such as attacks on Scada and other control systems.
Decision support SecureGas shall provide decision support and
recommendation service to the operator in order to mitigate
the effect of a cyber/physical attack.
Information sharing The platform shall address the task of sharing information
with the public, as it is an integral part of the resilience and
disaster risk management cycle.
User friendly graphical SecureGas user interface will be based entirely on web
user interface technologies and will use panels and cells to allow the display
of multiple data on the screens, coming from different sources.
Resilience SecureGas platform itself shall adopt fast recovery
mechanisms/procedures in order to be quickly available again
in case of adverse events.
Considering that the SecureGas KPIs refer the performance of the overall system,
their definition drew mainly on the Technical Requirements of the entire solution,
i.e., the functions, features, and services provided by the SecureGas SoS, with an
overall system view and not with a single component view. The criteria applied to
assess how relevant a Technical Requirement is to formulate a KPI were supported
by the end users’ feedback on the KPIs they respectively apply as well as the high
priority User Requirements. Table 15.2 summarizes the Technical Requirements of
the overall system that served as input for the definition of the SecureGas KPIs.
The SecureGas KPIs 351
The elaboration and analysis of the input information described in Section 15.2
resulted to the elicitation of eleven SecureGas KPIs (SecureGas Deliverable 1.4,
2019), which are presented in Table 15.3. The KPIs table comprises the below
information:
• Field – The fields represent the general domains where the impacts are going
to exert their effect. One or more indicators can be assigned to each field.
As shown in Table 15.3, the SecureGas KPIs were classified into the following
fields:
â Reliability, i.e., the capability of the system to function in a correct man-
ner within the given timeframe. This includes high accuracy of alert local-
ization, avoidance of any delays in data provision, and a low rate of false
alerts or errors.
â Autonomy, i.e., the level of independence of the system. An autonomous
system is capable to operate (detect and process incidents) without human
supervision (but human in the loop, if deemed necessary).
â Interoperability, i.e., the ability of the system to work with new products
(i.e., sensors or subsystems) without special configurations. This charac-
teristic makes it possible to exchange data with new components and
establish communication and interpretation of the shared data without
restrictions.
â Usability, i.e., a set of attributes covering the effort needed for using a
solution, and on the individual assessment of the use of the solution, by
a stated or implied set of users.
â Resilience, i.e., the ability to adapt from a disruption- identify potentially
disruptive events and adapt to the evolving circumstances.
• Indicator – The indicators are the aspects on which the effectiveness of the
SecureGas SoS will be judged.
• Description – A thorough description is assigned to each indicator, explaining
its context.
• Metric – The metric refers to the system of indicator’s measurement.
• Target Value: The target value reflects the value that needs to be achieved at
the end of the project, to ensure the quality of the delivered solution.
352 The SecureGas Key Performance Indicators
Figure 15.1. Disaster management cycle (source: RINA Consulting S.p.A. 2021).
The SecureGas project draws on the resilience concept aiming at enhancing Gas
network ability to anticipate and absorb, but also to respond, recover and adapt to
disruptive events. More specifically, the SecureGas conceptual model and concept
of operations are built on a panarchy loop that links risk and resilience management
with the disaster risk management cycle (Figure 15.1), achieving a holistic phased
and iterative approach (7). The joint risk and resilience assessment and manage-
ment panarchy (Figure 15.2) encompasses seven main resilience phases, namely (a)
Prepare, (b) Detect, (c) Prevent, (d) Absorb, (e) Respond, (f ) Recover, and (g) Learn
and Adapt.
KPIs Impact on the Resilience of Gas Networks 355
Figure 15.3. KPIs distribution to the activities taking place before, during, and after an
incident.
The system validation and quality assessment process associated with the
case studies of the SecureGas project is comprised of the following elements
(SecureGas Deliverable 7.1, 2020):
are refined. Verification is a rather technical process in which the main question is
whether the system works properly. In more detail, the verification of the developed
solution is the process of determining that the system is built according to its spec-
ifications. Finally, evaluation reflects the performance and acceptance of the system
by the end users (Bach, 1997; Rakitin, 2001).
The SecureGas validation plan (which contains all three phases above, but is
titled as such for simplicity) used to perform the aforementioned quality assessment
as a whole, has been built on the following two types of assessments:
15.6 Conclusions
The SecureGas KPIs comprise tangible and measurable indicators that are key to
performance success and instrumental for guiding the realization of the integrated
SoS. The elicitation of the KPIs drew on the performance evaluation criteria already
applied for Gas network operation, the User and Technical Requirements, the
conceptual model and CONOPS as well as the HLRA. That information pro-
vided the necessary background for the definition of eleven SecureGas KPIs, that
reflect the key functionalities that need to be offered by the SecureGas system in
its entirety, covering reliability, autonomy, interoperability, usability, and resilience
aspects. In addition, the KPIs managed to address all the resilience phases, namely
(a) Prepare, (b) Detect, (c) Prevent, (d) Absorb, (e) Respond, (f ) Recover, (g) Learn,
and (h) Adapt, showcasing that the envisaged SecureGas solution do have the
potential to add value and foster the implementation of the panarchy loop and
References 359
to further enhance the security of the Gas network before, during and after inci-
dents’ occurrence. The SecureGas KPIs established the main areas to be tested,
measured, and validated during the piloting activities, based on project’s validation
plan and quality assessment process.
Acknowledgements
This work has been carried out in the scope of the SecureGas project (Grant Agree-
ment 833017), which is funded by the European Commission in the scope of its
H2020 program.
References
Bach, J. 1997. Good Enough Quality: Beyond the Buzzwords. IEEE Computer.
30, 96–98.
Badawya, M., Abd El-Aziz, A. A., Idress, A. M., Hefny, H., Hossam, S., 2016.
A survey on exploring key performance indicators. Future Computing and
Informatics Journal. 1, 47–52.
Brown, W. B., Gobeli, D., 1992. Observations on the measurement of R&D pro-
ductivity: a case study. IEEE Transactions on Engineering Management. 39,
325–331.
Chiesa, V., Frattini, F., 2007. Exploring the differences in performance measure-
ment between research and development: evidence from a multiple case study.
R&D Management. 37, 283–301.
COM (2014) 654. Communication from the Commission to the European Par-
liament and the on the short term resilience of the European gas system.
Franceschini, F., Galetto, M., Maisano, D., 2007. Management by Measurement
Designing Key Indicators and Performance Measurement Systems. Berlin:
Springer-Verlag.
Häring, I., Ganter, S., Finger, J., Srivastava, K., Agrafioti, E., Fuggini, C., Bol-
leta, F., 2020. Panarchy process for risk control and resilience quantification
and improvement. Proceedings of the 30th European Safety and Reliability
Conference and the 15th Probabilistic Safety Assessment and Management
Conference (ESREL 2020 – PSAM 15). Edited by Piero Baraldi, Francesco
Di Maio and Enrico Zio. Venice, Italy.
Kaplan, S., R., Norton, P., D., 1992. The Balanced Scorecard – Measures That
Drive Performance. Harvard Business Review. January–February 1992.
360 The SecureGas Key Performance Indicators