European Commission presents new cyber security strategy

  • Roman Šulc
  • 24.9.2017 11:24

On 13 September, the European Commission published an updated version of the EU cyber security strategy. The document primarily focuses on boosting resilience to rapidly evolving cyber threats with emphasis on more effective tackling of cybercrime. In this context, the strategy promotes measures to enable more effective attribution of cyber attacks, punishment of their perpetrators, and steps to improve related areas such as education, general awareness, training of specialists and international cooperation. An important element of the strategy is deepening of the EU's cooperation with NATO, first established at the 2016 Warsaw summit. The position of the new ENISA agency has also been strengthened, as the organisation has been given a permanent mandate for assistance to member states, institutions and business entities in key areas including the implementation of the NIS directive which has to be adopted by individual EU member states by May 2018. Another major aspect is the proposal of a universal certification framework for various IT products, services and systems. This voluntary based criteria set should guarantee a unified level of security to a wide range of subjects and thus facilitate the adoption of said products by consumers without requiring additional certifications on their end.

Potential weak points of the new strategy are several unaddressed issues, namely the question of responsibility for increasing product security by issuing firmware updates and a delimination of liability for damage caused to users by ignoring exposed security vulnerabilities. Also absent is the controversial issue of concealment of known security vulnerabilities by state authorities, which represents a risk for end users, the implementation of backdoors by government agencies, as well as presentation of a unified EU approach to the development and use of hacking tools and techniques for the purposes of ethical hacking.

About author: Roman Šulc

Partners

Tento web používá k analýze návštěvnosti soubory cookie. Používáním tohoto webu s tím souhlasíte. Další informace