Overblog
Suivre ce blog Administration + Créer mon blog
20 novembre 2013 3 20 /11 /novembre /2013 18:20
Pentagon ramps up cybersecurity measures for defense industry

 

November 19, 2013 By Carlo Muñoz - http://thehill.com

 

The Defense Department is ramping up its efforts to protect sensitive and classified details of its next-generation weapons systems, amid the growing threat of cyber espionage.

 

For the first time, the Pentagon will now require all defense contracting firms doing business with the department to install "established information security standards" on classified and unclassified computer networks.

 

Weapons makers with Pentagon contracts will now also be required to report security breaches of their networks "that result in the loss of unclassified controlled technical information from these networks," according to the Pentagon acquisition chief Frank Kendall.

 

"Defense contractors throughout the department's supply chain have been targeted by cyber criminals attempting to steal unclassified technical data," Kendall said Monday.

 

The cybersecurity initiative for the defense industry is a "high priority for the department" and is vital to ensuring sensitive details involving the U.S. arsenal are not compromised,  he said in a statement issued by the Pentagon on Tuesday.

 

Read more

Partager cet article
Repost0
4 octobre 2013 5 04 /10 /octobre /2013 17:50
Cassidian CyberSecurity : comment Netasq et Arkoon sont intégrés

3 octobre 2013 par Philippe Guerrier - itespresso.fr

 

Assises de la Sécurité IT : l’an passé, Cassidian CyberSecurity avait marqué les esprits en acquérant Netasq puis Arkoon plus récemment. Un an plus tard, les synergies démarrent et l’offre produits évolue.

 

Cassidian CyberSecurity vient d’effectuer un point sur ses activités après avoir annoncé le rachat de Netasq (solutions de sécurité unifiées) puis d’Arkoon (protection systèmes et réseaux informatiques).

 

« Il y a un an, nous étions 300 personnes avec un chiffre d’affaires de 50 millions d’euros. Maintenant, nous disposons d’un effectif global de 600 personnes dans trois pays européens et affichons un CA de 100 millions d’euros et  de CA », se réjouit Jean-Michel Orozco, CEO de Cassidian CyberSecurity (rattachée à la branche Défense du groupe EADS).

 

« L’an dernier, on a embauché 80 personnes sur les trois pays, dont 60 en France », précise le dirigeant, qui souligne les trois points forts d’expertises du nouvel ensemble : Cyberdéfense temps réel, supervision des infrastructures et protection périmétrique.

 

« On continuera de façon à croître de manière organique et avec des partenariats », précise Jean-Michel Orozco, en citant l’alliance signée avec le groupe Axa en matière « d’offres de risques techniques ».

 

Destinées à renforcer les compétences globales de Cassidian CyberSecurity, les filiales Netasq et Arkoon gardent une certaine autonomie opérationnelle.

 

Néanmoins, une jonction a été réalisée : François Lavaste, un manager qui vient de Netasq, va cumuler le poste de président du directoire des deux sociétés. Des mutualisation d’offre et de capacités d’innovation vont être réalisées afin de proposer des solutions de protection des réseaux, des infrastructures et des postes de travail.

 

A l’occasion des Assises de la Sécurité IT qui se déroulent actuellement à Monaco, le catalogue du nouvel ensemble s’enrichit : Cassidian CyberSecurity dévoile Keelback (« détection et lutte contre les cyber-menaces sophistiquées »), qui comporte une offre de services comprenant des capteurs et des logiciels, une identification et caractérisation des menaces et un service « procurant des capacités de réaction immédiate en cas d’attaques avérées ».

 

Du côté de Netasq, c’est une nouvelle version logicielle (9.1) pour la gamme de réseaux de parefeux NG-UTM qui est mise en avant. Avec un accès au cloud d’Amazon Web Services.

 

Pour la contribution d’Arkoon, c’est la solution StormShield sur la sécurisation des postes clients qui a été renforcée (jusqu’à 20 000 agents par serveur, « X4 par rapport à la version précédente ») et son déploiement a été facilité.

 

Sur le front de la mobilité, Cassidian CyberSecurity commercialise depuis le début de l’année l’application Moeso Smart pour le chiffrement des communications de voix sur IP.

 

Disponible pour iPhone, Android et BlackBerry, cette solution à vocation à contrer les risques de piratage des conversations vocales par téléphone. Mais elle n’assure pas la confidentialité des messages SMS et e-mails.

 

Par rapport à Bull (avec son nouveau smartphone Hoox) ou Thales (Teorem) qui privilégient l’approche terminal numérique isolé, Cassidian cherche à se démarquer dans la sécurité mobile. « Pour être efficace, il faut installer la solution logicielle de sécurité sur le téléphone d’usage d’un dirigeant et non sur un terminal dédié qui reste généralement dans sa valise », estime Jean-Michel Orozco.

 

Cette solution professionnelle, vendue par contrat, est facturée sur un mode d’abonnement mensuel. « Nous avons quelques centaines d’utilisateurs actuellement. Nous allons passer le millier avec les contrats signés avec deux très gros industriels nationaux. »

 

Ce qui fait dire au CEO de Cassidian CyberSecurity que son groupe dispose du parc de clients le plus significatif en France en matière de chiffrement de la voix via les terminaux mobiles.

 

Sur le thème fort de l’édition 2013 des Assies de la sécurité c’est à dire la protection des systèmes industriels (SCADA), le groupe de cybersécurité annonce que des projets sont en cours de développement et que des produits « marketables » devraient arriver d’ici fin 2014.

Partager cet article
Repost0
27 septembre 2013 5 27 /09 /septembre /2013 11:50
Cyber world: site under construction

18 September 2013 Patryk Pawlak Briefs - No32

 

The Union’s cyber security policy may still be in its infancy and hampered by difficulties, but the EU could yet become a key player in the field – if it plays its cards wisely. While the US has been seriously hit by the scandal surrounding the secret NSA surveillance programmes, the struggle over how to frame internet governance goes on and, more than ever, needs core stakeholders capable of defending freedom, democracy and the rule of law in cyberspace.

 

The EU’s longstanding commitment to those values in its foreign policy and unquestioned leadership in data protection mean it is well placed to play a significant role therein. At the same time, the EU and its member states have recently accelerated efforts to increase their cyber-defence capabilities so as to secure Europe against malicious cyber-attacks (like those carried out against the office of European Council President Herman van Rompuy in June 2012). To be truly effective, they may have to be able to play, at the same time, the roles of policeman, diplomat and regulator.

 

Download document

Partager cet article
Repost0
26 septembre 2013 4 26 /09 /septembre /2013 16:30
Lockheed Martin Supports US Department of Commerce Cyber Security Trade Mission to Saudi Arabia and Kuwait

Sep 26, 2013 ASDNews Source : Lockheed Martin Corporation

 

Lockheed Martin [NYSE: LMT] joined a cyber security and critical infrastructure protection trade mission to Saudi Arabia and Kuwait led by the Department of Commerce. Headed by Under Secretary of Commerce for International Trade Francisco Sánchez, the goal of this trade mission is to introduce U.S. firms to high-level government officials and potential partners in the Middle Eastern market.

 

“I’m proud to have Lockheed Martin join me for this important trade mission focused on cyber security and critical infrastructure protection,” said Under Secretary of Commerce for International Trade Francisco Sánchez. “Lockheed Martin offers the high-quality technology, products, and expertise that help public and private sector entities in these two critical trading partners achieve their specific cyber security and infrastructure protection goals.”

 

Read more

Partager cet article
Repost0
20 juin 2013 4 20 /06 /juin /2013 16:50
Cassidian CyberSecurity presents innovative cyber defense offering at the 50th Paris Air Show

Paris Air Show,  17 June 2013 - eads.com

 

        Innovative global cyber defense offering combining trusted security solutions and services with high-level human expertise.

        Cassidian CyberSecurity supports governments, critical national infrastructures and industries

        Cassidian CyberSecurity aims at becoming a European leader providing trusted high grade cyber security products and solutions

 

Cyber attacks today affect all sectors, especially those with high added value, including aeronautics. All organizations are threatened by the risk of intrusion into their systems by viruses or malwares; with these weapons, attackers can alter the data transmitted, steal confidential information or disrupt the activity of their target.

 

Given the growing number and diversity of cyber attacks, Cassidian CyberSecurity has been created to support governments, critical national infrastructures and industries in their daily fight against cyber threats. Cassidian CyberSecurity's expert teams are based in France, the UK and Germany where they work closely with the respective government authorities in order to put in place dynamic solutions needed to detect and combat these threats.

 

Cassidian CyberSecurity has developed a comprehensive approach. Combining high-level human expertise with innovative security solutions and services to effectively combat the attacks, this approach comprises seven steps ranging from awareness raising to post-recovery remote-monitoring.

 

On the occasion of Paris Air Show, Cassidian CyberSecurity presents these tools, in particular Cymerius®, which is a key component of real-time supervision of the most sensitive networks, providing the operators with a detailed reaction plan.

 

Jean-Micel Orozco, CEO of Cassidian CyberSecurity declares: “Paris Air show is a major opportunity to present our cyber security competences. Cassidian CyberSecurity aims at becoming a European leader providing high grade trusted cyber security products and solutions to its customers"

 

To achieve this goal, the company relies on an ambitious growth strategy. On 29 April, Cassidian CyberSecurity announced the acquisition of Arkoon Network Security, one of the key players in network security, information systems protection and data confidentiality. Six months after the acquisition of Netasq, this buyout is an additional step in Cassidian CyberSecurity's growth.

 

About CASSIDIAN

 

Cassidian, the defence division of EADS, is a worldwide leader in defence and security solutions. The company delivers advanced defence systems along the whole action chain from sensors through command & control systems to combat aircraft and unmanned air systems. In the area of security, Cassidian provides customers worldwide with border surveillance systems, cyber security solutions and secure communications. In 2012, Cassidian – with around 23,000 employees – achieved revenues of € 5.7 billion.

 

About Cassidian CyberSecurity

 

Cassidian CyberSecurity is a 100% Cassidian company entirely devoted to addressing the cyber security market across Europe and the Middle-East, operating from France, the United Kingdom and Germany. Cassidian CyberSecurity’s high-grade expertise includes “Cyber Defence & Professional Services” focusing on high-grade professional services and establishing Security Operation Centres; “Trusted infrastructure” aiming at cryptography, digital identity management and high-security national solutions, and “Secure Mobility”, focused on services for mobile device security. To reinforce its solutions and establish a European cluster for cyber-security products and services, Cassidian CyberSecurity took over Netasq in 2012 and of Arkoon Network Security in 2013. Cassidian CyberSecurity generated revenues of 80 million euros in 2012, with a workforce of 600 people, which it plans to double by 2017.

Partager cet article
Repost0
20 juin 2013 4 20 /06 /juin /2013 07:50
Cassidian CyberSecurity présente son offre cyber défense à la 50 édition de "Paris Air Show"

19 juin 2013 - Frédéric Mazué - solutions-logiciels.com

 

Aujourd’hui, les attaques cybernétiques sont omniprésentes, ciblant en priorité les secteurs à haute valeur ajoutée telle l’aéronautique. Toutes les organisations sont confrontées au risque d’intrusion dans leurs systèmes de logiciels malveillants ou de virus susceptibles de modifier les données transmises, de dérober des données confidentielles et de mettre en danger la santé des organisations ciblées.

 

Face à l’accroissement et à la diversité des cyber attaques, Cassidian CyberSecurity a été créé pour protéger les gouvernements, les infrastructures nationales critiques et les industries dans leur combat quotidien contre la menace cyber. Les équipes d'experts, basées en France, en Grande-Bretagne et en Allemagne travaillent étroitement avec leurs autorités gouvernementales respectives afin de mettre en place les solutions dynamiques nécessaires pour détecter et contrer ces nouvelles menaces.

 

Pour répondre à ces nouvelles menaces, les organisations doivent pouvoir s’appuyer sur des partenaires de confiance disposant de l’expertise nécessaire pour mettre en place un plan de riposte global. Associant un haut niveau d’expertise humaine à des processus et outils entièrement nouveaux pour lutter efficacement contre les attaques, Cassidian CyberSecurity a développé une approche originale qui se décompose en 7 étapes permettant une détection rapide des menaces à l'investigation post-attaque.

 

Au salon du Bourget, Cassidian CyberSecurity présente sur la Touch table ces outils et en particulier Cymerius, son outil de supervision en temps réel des réseaux les plus sensibles, qui permet de fournir aux opérateurs un plan de réaction détaillé.

 

Jean-Michel Orozco, Président de Cassidian CyberSecurity a déclaré: “Paris Air show est une opportunité majeure pour présenter nos compétences en cybersécurité. Cassidian CyberSecurity vise à devenir un leader européen fournisseur de produits et de solutions à forte valeur ajoutée"

 

Le 29 avril dernier, Cassidian CyberSecurity annonçait l’acquisition de Arkoon Network Security, un des acteurs majeurs en matière de sécurité des réseaux, de protection des systèmes d’information et de confidentialité des données. Cet événement intervient 6 mois après l’acquisition de Netasq, leader français en matière de solutions intégrées destinées à sécuriser les réseaux. Ces rachats stratégiques constituent une étape supplémentaire dans la croissance de Cassidian CyberSecurity

Partager cet article
Repost0
13 juin 2013 4 13 /06 /juin /2013 11:35
New Zealand to improve cyber security

AUCKLAND, New Zealand, June 13 (UPI)

 

 The New Zealand government will put a much greater emphasis on security and privacy when it comes to buying and setting up publicly accessible communication systems.

 

"New Zealanders expect government agencies will be doing everything they can to ensure the integrity of public sector ICT [information and communication technology] systems," State Services Minister Jonathan Coleman said.

 

"We expect every public service department and agency to comply fully with the agreed plan of action."

 

Coleman's statement comes in the wake of a review by Colin MacDonald, head of the Government Chief Information Office.

 

MacDonald's review examined the government's publicly accessible ICT systems, many of which are available at places such as kiosks and include WiFi networks and Web services.

 

He found privacy and security processes within many government agencies were underdeveloped and relied too much on the skills and capabilities of staff and suppliers rather than embedded programs and safety features.

 

The GCIO review covered 215 publicly accessible information systems across 70 government agencies.

 

It found 12 agencies had a weak point in the security of one of their publicly accessible systems. These issues were resolved quickly and there is no evidence of any actual privacy breach, the report said.

 

The government said it received MacDonald's report in December but delayed releasing the document.

 

Instead, the State Services Commission and the GCIO were given time to develop a work program to address the issues raised in the report before making it public.

 

"The public release of the GCIO's review was delayed to enable testing within these 12 agencies to ensure there were no further weak points," Internal Affairs Minister Chris Tremain said.

 

"Naming agencies can make them a target for hackers and we didn't want to put these systems at risk from cyber-attacks."

 

A recent report by NZ Television's 3 News said information from the country's intelligence agency Government Communications Security Bureau showed there were 134 significant cyberattacks last year, up from 90 attacks in 2011.

 

The government was the target of 21 of the attacks while 63 were against private companies.

 

Eight attacks were against infrastructure organizations including banks and phone companies. Some of the 42 other incidents were against individual New Zealanders.

 

Forty-two of the 134 attacks originated within New Zealand, 80 came from overseas and in 12 cases, the origin was unknown.

 

The actual numbers of serious attacks, whether successful or not, may never be known because not all cybercrime is reported to the GCSB, 3 News reported.

 

In some cases, the organization or government agency may not know it was attacked.

 

The GCSB refused to confirm how many of the attacks came from China or how many of them were successful, 3 News said.

 

On an individual level, a report by the U.S. global security company Symantec found 16 percent of New Zealanders were victims of mobile or social cybercrime in 2012.

 

Many of the attacks were initiated through malware masquerading as legitimate apps, with mobile malware growing by 58 percent since 2012, the New Zealand Herald reported last month.

Partager cet article
Repost0
13 juin 2013 4 13 /06 /juin /2013 10:50
Cybersecurity Strategy and Defence Industrial Base debates in SEDE - Subcommittee on Security and Defence
13-06-2013 Source : © European Union, 2013 - EP

 

The SEDE subcommittee will exchange views on the European Defence Technological and Industrial Base with its rapporteur Michael Gahler (EPP) and on the EU Cybersecurity Strategy.
 
When : 19 June 2013, 15:15-18:30

Further information
meeting documents
Partager cet article
Repost0
12 juin 2013 3 12 /06 /juin /2013 11:50
Draft agenda - 19 June 2013 - Subcommittee on Security and Defence

12.06.2013 Source : © European Union, 2013 - EP

 

1. Adoption of agenda

 

2. Approval of minutes of meeting of:

24-25 April 2013 PV – PE510.500v01-00

16 May 2013 PV – PE510.826v01-00

 

3.  Chair’s announcements

With the Council and Commission and EEAS

 

4. The European Defence Technological and Industrial Base

Rapporteur: Michael Gahler (PPE)

· Exchange of views

 

5. Academic reflections on the White Book on EU Security and Defence

Exchange of views with:

- Pr. Irnerio Seminatore, President, "Institut Européen des Relations Internationales" (IERI)

- General Eric Dell'Aria

- Ambassador Pierre Morel

- Ambassador Joachim Bitterlich

- Daniel Keohane, Head of Strategic Affairs, European Think Tank for Global Action (FRIDE)

 

6. Cybersecurity Strategy of the European Union: an open, safe and secure cyberspace

Partager cet article
Repost0
6 mai 2013 1 06 /05 /mai /2013 16:50
Cybersécurité : Cassidian blinde son portefeuille

29/04/2013 Nabil Bourassi – LaTribune.fr

 

La filiale d'EADS spécialisée dans les solutions de protection informatique de pointe rachète Arkoon Network Security, éditeur de solutions de protection réseau. Avec cette deuxième opération en quelques mois, le groupe tente de se constituer un portefeuille d'expertises sur un marché qui croit au rythme de 10% par an.

 

Pour son premier anniversaire, Cassidian CyberSecurity, filiale d'EADS, s'offre Arkoon Network Security et se renforce sur le marché européen des systèmes de protection informatique "haut-de-gamme". Arkoon Network Security est un "acteur majeur européen reconnu en matière de sécurité des réseaux, de protection des systèmes d'information et de confidentialité des données". Pour Jean-Michel Orozco, président de Cassidian CyberSecurity, cette acquisition vise à proposer une "offre de cybersécurité globale" qui "doit nécessairement s'appuyer sur une gamme de produits et solutions étendue afin d'être en mesure de répondre aux besoins des clients".

 

Deux acquisitions en un an

 

L'opération valorise Arkoon Network Security à 18,55 millions d'euros soit une prime de 46% par rapport à son cours de vendredi (le cours de l'action a été suspendu ce matin). Cassidian CyberSecurity s'empare des 83,9% du capital détenus par les actionnaires principaux, et envisage de monter par la suite à 100% du capital à travers une offre publique d'achat simplifié et le cas échéant à une procédure de retrait obligatoire.

 

En novembre dernier, Cassidian CyberSecurity avait procédé à une première acquisition en rachetant 100% de Netasq, également spécialisé dans la sécurité des réseaux informatiques. Moins d'un an après sa création par le groupe d'aéronautique et de défense européen EADS, Cassidian CyberSecurity élargit ainsi son portefeuille de compétences.

 

Enjeux colossaux

 

EADS se dote ainsi d'une expertise sur le marché très porteur de la cybersécurité qui complète ses prestations de services à destination des grands comptes. Espionnage, sabotage, vol de données... Pour les entreprises, les enjeux financiers et stratégiques de la cybersécurité sont colossaux. Les entreprises françaises d'importances vitales (infrastructures ferroviaires, télécoms, nucléaires ou industrie militaire...) pourraient d'ailleurs être contraintes par des normes réglementaires renforcées en termes de protection informatique, sous l'égide de l'Agence nationale de la sécurité des systèmes d'informations (ANSSI).

 

Symantec, un éditeur de solutions de protection informatique grand public, a estimé le coût de la cybersécurité en 2012 à 110 milliards de dollars. Cassidian CyberSecurity estime la croissance potentielle de ce marché à 10% par an...

 

Pour aller plus loin:

>> Cyber-espionnage: la Chine s'intéresse-t-elle à EADS?

>> Les systèmes informatiques des entreprises de plus en plus vulnérables

>> Cyber-guerre: Comment la France se protège

Partager cet article
Repost0
23 avril 2013 2 23 /04 /avril /2013 07:50
BAE Detica launches new cyber solution

LONDON, April 22 (UPI)

 

A new defense-grade, cybersecurity analytics and investigation product for in-house use has been launched by Britain's BAE Systems Detica.

 

CyberReveal, announced Monday, can be scaled to any organization. It is capable of processing billions of data records daily to identify and prioritize security events, giving analysts a single view of network activity across their whole IT estate, detecting attacks by behavior and not just by the signatures of previous attacks.

 

"CyberReveal addresses four key areas where traditional approaches are proving ineffective against the modern cyber threat, helping analysts to prioritize the incidents they investigate, managing huge data volumes, evolving their defenses in line with a rapidly changing threat environment and enabling quicker, more informed decision making," said Martin Sutherland, managing director of BAE Systems Detica.

 

"This is the first time we're making our technology available for companies that have their own analysts. CyberReveal provides a unique 'single pane of glass' for analysts by linking security event data information from across the entire organization."

 

In addition to CyberReveal, the companies offers its own Managed Security Services team, to monitor for and act on cyberattacks on a company's behalf.

BAE Detica launches new cyber solution

 

LONDON, April 22 (UPI)

 

A new defense-grade, cybersecurity analytics and investigation product for in-house use has been launched by Britain's BAE Systems Detica.

 

CyberReveal, announced Monday, can be scaled to any organization. It is capable of processing billions of data records daily to identify and prioritize security events, giving analysts a single view of network activity across their whole IT estate, detecting attacks by behavior and not just by the signatures of previous attacks.

 

"CyberReveal addresses four key areas where traditional approaches are proving ineffective against the modern cyber threat, helping analysts to prioritize the incidents they investigate, managing huge data volumes, evolving their defenses in line with a rapidly changing threat environment and enabling quicker, more informed decision making," said Martin Sutherland, managing director of BAE Systems Detica.

 

"This is the first time we're making our technology available for companies that have their own analysts. CyberReveal provides a unique 'single pane of glass' for analysts by linking security event data information from across the entire organization."

 

In addition to CyberReveal, the companies offers its own Managed Security Services team, to monitor for and act on cyberattacks on a company's behalf.

Partager cet article
Repost0
7 février 2013 4 07 /02 /février /2013 18:50

cyber warfare

 

7/2/2013 Ref: EU13-049EN

 

Summary: 7 February 2013, Brussels - A free and open Internet is at the heart of the new Cyber Security Strategy by the European Union High Representative Catherine Ashton and the European Commission. The new Communication is the first comprehensive policy document that the European Union has produced in this area. It comprises internal market, justice and home affairs and the foreign policy aspects of cyberspace issues.

 

The Strategy is accompanied by a legislative proposal (a Directive) from the European Commission to strengthen the security of information systems in the EU. This would encourage economic growth as people's confidence in buying goods online and using the Internet would be strengthened.

The Strategy is offering clear priorities for the EU international cyberspace policy:
  • Freedom and openness: The Strategy outlines the vision and principles on applying the EU core values and fundamental rights in cyberspace. Human Rights should also apply online and we will promote cyberspace as an area of freedom and fundamental rights. Expanding access to the Internet should promote democratic reform worldwide. The EU believes that increased global connectivity should not be accompanied by censorship or mass surveillance.
  • The laws, norms and EU core values apply as much in the cyberspace as in the physical world: The responsibility for a more secure cyberspace lies with all players of the global information society, from citizens to governments.
    Developing cyber security capacity building: The EU will engage with international partners and organisations, the private sector and civil society to support global capacity building in third countries. It will include improving access to information and to an open Internet and preventing cyber threats.
  • Fostering international cooperation in cyberspace issues: To preserve open, free and secure cyberspace is a global challenge, which the EU will address together with the relevant international partners and organisations, the private sector and civil society.

 

FAQ's on the International aspects of the Cyber Security Strategy

How can the core values be ensured in the worldwide web?

 

One example is human rights, which should also apply online as the European Union will promote cyberspace as an area of freedom and fundamental rights. Expanding access to the Internet should advance democratic reform worldwide. The EU believes that increased global connectivity should not be accompanied by censorship or mass surveillance.

 

What EU norms and laws should be used in cyberspace?

 

The responsibility for a more secure cyberspace lies with all players of the global information society, from people to governments. The EU supports the efforts to define norms of behaviour in cyberspace that all stakeholders should adhere to. Just as the EU expects citizens to respect civic duties, social responsibilities and laws online, so should states abide by norms and existing laws. An important pre-condition for free and open Internet that brings political and economic benefits to societies worldwide, is to maintain a multi-stakeholder governance model of the Internet.

 

Will there be new laws to address cyber threats?

 

No, the EU believes we have many international law instruments already that should be applied in cyberspace. However, some governments have proposed new treaties and conventions in cyber issues that the EU cannot support. We fear that the argument of cyber security will be used as a pretext to justify limiting the freedom of expression and access to information. For instance, the Budapest Convention includes all the important elements to assist in investigation, prosecution, and international cooperation to address cybercrime.

 

At present 49 countries have signed the Convention and many countries outside Europe have introduced its principles into their legislation. The EU has assisted the Council of Europe in disseminating the principles of this Convention worldwide, and we are currently financing new programs to promote the Budapest Convention and increase the rule of law in this area.

 

What does the EU intend to do on capacity building?

 

The EU will engage with international partners and organisations, the private sector and civil society to support global capacity-building in third countries. It will include improving access to information and to an open Internet and preventing cyber threats. The EU will also actively participate in developing donor coordination for helping capacity-building efforts. These actions will focus on enhancing criminal justice capabilities in training prosecutors and judges, and introducing the Budapest Convention (Cybercrime Convention) principles in recipient countries' legal framework, building law enforcement capacity to advance cybercrime investigations and assisting countries to address cyber incidents.

 

How does the Strategy contribute to international cooperation in cyberspace?

 

To preserve an open, free and secure cyberspace is a global challenge, which the EU should address together with the relevant international partners and organisations, the private sector and civil society. The EU will place a renewed emphasis on dialogue with third countries and international organisations, with a special focus on like-minded partners that share EU values. At bilateral level, cooperation with the United States is particularly important and will be further developed.

 

What the EU is doing on cyber defence issues?

 

Within the Common Security and Defence Policy, the European Defence Agency (EDA) is developing cyber defence capabilities and technologies, improving cyber defence training & exercises. Given that threats are multifaceted, synergies between civilian and military approaches in protecting critical cyber assets should be enhanced. These efforts should be supported by research and development, and closer cooperation between governments, the private sector and academia in the EU.

 

The EU is also promoting early involvement of industry and academia in developing solutions and in strengthening Europe's defence industrial base and associated R&D innovations in both civilian and military organisations. The EDA will promote civil-military dialogue and contribute to the coordination between all actors at EU level - with particular emphasis on the exchange of good practices, information exchange and early warning, incident response, risk assessment and establishing a cyber-security culture.

 

Why does the Strategy address civilian and military issues?

 

Given that threats are multifaceted, synergies between civilian and military approaches in protecting critical cyber assets should be enhanced. These efforts should be supported by research and development, and closer cooperation between governments, the private sector and academia in the EU. To avoid duplication, the Union will explore possibilities on how the EU and NATO can complement their efforts to heighten the resilience of critical governmental, defence and other information infrastructures on which the members of both organisations depend.

 

Are the EU and NATO cooperating in cyber security?

 

There is a regular cooperation going on between the experts. After the Strategy is adopted, we intend to intensify cooperation with NATO in cyber security. Dialogue with NATO should ensure effective defence capabilities, identify areas for cooperation and avoid duplication of efforts.

Next Steps

The Directive must pass through the Council of Ministers and the European Parliament before adoption whilst the Cyber Security Strategy will remain as it is as it is not legislation.

Links

DG Connect

http://ec.europa.eu/digital-agenda/cyber-security

EU Justice and Home Affairs

http://ec.europa.eu/justice/index_en.htm

Partager cet article
Repost0

Présentation

  • : RP Defense
  • : Web review defence industry - Revue du web industrie de défense - company information - news in France, Europe and elsewhere ...
  • Contact

Recherche

Articles Récents

Categories