Infrastructure can be considered from various viewpoints: technical; continuity of economic activity; national security. The subject, which is far from new, has come to the fore recently for two reasons: the information revolution and the terrorist attacks of 11 September 2001. The task of ensuring protection (or, rather, of achieving ‘resilience’) is becoming ever more challenging. The concept of critical infrastructure is evolving rapidly, and the protection of information-related critical infrastructure is gaining in importance. The use of risk analysis is becoming more widespread. Genuine progress is being made, although there are still many shortcomings at the practical level. However, we currently lack a research capability or a forum for the comprehensive exchange of views on this subject.