“Critical infrastructures (CRITIS) are organisations and facilities with important significance for the state community, the failure or impairment of which would result in lasting supply bottlenecks, significant disruptions to public safety or other dramatic consequences”.
According to the law, critical infrastructures include the sectors of energy, information technology and telecommunications, transport and traffic, health, water, food, media and culture, state and administration as well as finance and insurance.
Legal requirements for operators of critical infrastructures can be found in the Federal Office for Information Security Act (BSIG). The law aims to improve the security of information technology systems in Germany. The sectors of state and administration as well as media and culture are not covered by the legal obligations. [Source]