抄録
There is a risk of service outage of critical infrastructure due to the increasing number of cyber attacks targeting critical infrastructure facilities, such as ransomware attacks. The characteristics of indirect damage caused by service outages of critical infrastructure due to cyber attacks on the business continuity of user companies have not been sufficiently studied in the past. In this study, we propose a method to simulate the recovery process from indirect damage to user companies caused by cyber attacks on critical infrastructures by modeling the dependencies among critical infrastructures and between critical infrastructures and user companies, based on the simulation of damage caused by natural disasters using system dynamics. This method is expected to contribute to the formulation of business recovery plans for user companies in case of service outage or contraction of critical infrastructure services due to cyber-attacks.
