July 13, 2006 InfoGram

This InfoGram will be distributed weekly to provide members of the Emergency Services Sector with information concerning the protection of their critical infrastructures. For further information, contact the Emergency Management and Response - Information Sharing and Analysis Center (EMR-ISAC) at (301) 447-1325 or by email at emr-isac@fema.dhs.gov.

National Infrastructure Protection Plan

The U.S. Department of Homeland Security (DHS), in conjunction with federal departments and agencies, state, local, tribal, and private sector security partners, completed the National Infrastructure Protection Plan (NIPP) and released the document on 30 June. The NIPP is a comprehensive risk management framework that clearly defines critical infrastructure protection (CIP) roles and responsibilities for all levels of government, private industry, nongovernmental agencies, and tribal partners.

The NIPP builds on the principles of the President's National Strategy for Homeland Security and its companion strategies for the physical protection of critical infrastructure and key assets and the securing of cyberspace. It also fulfills requirements in Homeland Security Presidential Directive - 7 and the Homeland Security Act of 2002. DHS Under Secretary for Preparedness George Foresman stated: "The NIPP formalizes and strengthens existing critical infrastructure partnerships and creates the baseline for how the public and private sectors will work together to build a safer, more secure and resilient America."

The vast majority of the nation's critical infrastructure is owned and operated by private industry or state, tribal, and local governments. The NIPP represents an unprecedented initiative at all levels of government and among private industry, tribal partners, and nongovernmental agencies, to build an overarching structure that integrates critical infrastructure security efforts, sets protection goals and supporting objectives, and focuses resources according to risk. The NIPP is available online at www.dhs.gov/nipp.

Guidance for Excessive Heat Events

In the 22 June InfoGram, the Emergency Management and Response-Information Sharing and Analysis Center (EMR-ISAC) listed suggestions for protecting Emergency Services Sector (ESS) personnel from the dangers of summer heat. Recognizing the debilitating effects of excessive heat on performance, the EMR-ISAC further examined the free downloadable, heat-related guidance for communities and urban areas during periods of extreme heat offered by the U.S. Environmental Protection Agency (EPS).

The Excessive Heat Events Guidebook intends to help ESS leaders and community officials plan for and respond to excessive heat events (EHEs) using life-saving information drawn from current best practices. One key proposal is to assign additional emergency medical services (EMS) personnel to each shift until an EHE concludes. Upon review, the EMR-ISAC noted that the guidebook also includes case studies of EHE programs in Philadelphia, Phoenix, and Toronto, and a menu of EHE notification and response options that officials can use.

Developed with the Department of Homeland Security, Centers for Disease Control and Prevention, and National Oceanic and Atmospheric Administration, the 66-page guidebook and a 2-page EHE Guidebook in Brief can be viewed and downloaded at http://epa.gov/heatisland/about/heatguidebook.html.

Mosquito Repellant Affects Nomex Gear

A consultation with the U.S. Forest Service's Branch Chief for Chemicals and Equipment alerted the Emergency Management and Response-Information Sharing and Analysis Center (ISAC) to the effects of the ingredient N,Ndiethyl-3-methylbenzamide (DEET), on Nomex gear used by the Emergency Services Sector (ESS).

ESS personnel are often exposed to high populations of mosquitoes during incident responses. Consequently, the risk of infection by mosquitoes that carry the West Nile virus has increased the use of mosquito repellants that contain DEET. Tests sponsored by the Missoula Technology and Development Center (MTDC) in Montana, show that DEET mosquito repellant reduces the flame-resistance of Nomex clothing worn by wildland firefighters.

Therefore, to promote the protection of personnel, the most critical of ESS infrastructures, the EMR-ISAC summarizes the following recommendations from the MTDC:

• Avoid applying DEET mosquito repellant to Nomex clothing.
• Smear DEET repellant over the skin, strictly following manufacturers' instructions.
• Apply the insecticide permethrin to Nomex clothing following the manufacturers' directions. (Afterwards, allow clothing to dry before wearing, but do not apply permethrin directly to skin.)

MTDC's documents are available for viewing with the following information: username: t-d, password: t-d, at http://www.fs.fed.us/t-d. Single copies of the report can be ordered from the USDA Forest Service, MTDC, 5785 Hwy. 10 West, Missoula, MT 59808. Contact information: telephone (406) 329-3978; facsimile (406) 329-3719; email: wo_mtdc_pubs@fs.fed.us.

Protecting Basic Cyber Resources

The importance of computers and cyber networks as an integral part of Emergency Services Sector (ESS) critical infrastructures is a recurring theme in the Emergency Management and Response-Information Sharing and Analysis Center's (EMR-ISAC) InfoGram. While the availability of computer resources can differ at the local level, the threat to cyber assets remains constant.

Numerous ESS organizations across the country are small operations housed in older buildings. Many departments have acquired computers-stand-alone or networked-and must use them effectively within with cyber system requirements. Writing for Officer.com, technology contributor Steve Ashley explains basic power issues germane to protecting computers, radios, and other sensitive electronic gear used by the emergency services.

Five types of power fluctuations can be problematic and result in a degradation of service. The first is "noise," the interference generated by other electrical appliances. A "surge" can occur, for example, when a motor or compressor turns off. Surges that occur frequently, however, cause unnecessary wear and tear on electronic equipment. Sudden major increases in voltage, known as "spikes," are a more serious type of surge. Spikes can damage main radios and computers, resulting in lost data. Voltage increases cause noise, surges, and spikes to occur. Conversely, a "sag" or "brownout" is caused by a drop in voltage that creates a sudden drag on available power and can burn out motors and crash computers. "Blackouts," total loss of power, can result in data loss and corrupted computer hard drives.

The first layer of protection against power fluctuations and loss is to back up computer data on a regular basis. The second layer consists of surge/spike protection for each piece of sensitive electronic gear, keeping in mind that power surges and spikes can be carried via telephone and broadband connections which also must be protected. Third is a battery back-up device or uninterruptible power supply (UPS). Under constant charge, a UPS activates when power goes out, providing a few minutes to shut equipment down properly, without damage or data loss. Surge/Spike protection for UPS units is considered highly valuable. More detailed specification information on protective devices is included in Ashley's article at http://www.officer.com/article/printer.jsp?id=31453&siteSection=20.