“Critical infrastructures (CRITIS) are organizations and facilities of major importance to the state community, the failure or impairment of which would result in lasting supply bottlenecks, significant disruption to public safety or other dramatic consequences”.
According to the law, critical infrastructures include energy, information technology and telecommunications, transport and traffic, health, water, food, media and culture, government and administration, and finance and insurance.
Legal requirements for operators of critical infrastructures can be found in the law on the Federal Office for Information Security (BSIG). The law aims to improve the security of information technology systems in Germany. The sectors of state and administration as well as media and culture do not fall under the legal obligations.