CIO

EU progressing on information infrastructure policy

Guidelines would strengthen computer security response centers across Europe, increase Internet resiliency
Tags | Critical Information Infrastructure Protection | EC | eu | security

The European Union is refining a set of guidelines that would strengthen its ability to respond to computer security crises as well as ensure Internet infrastructure in member countries is more resilient.

In late March, the European Commission adopted a set of recommendations called the Critical Information Infrastructure Protection (CIIP).

The proposals seek to improve Europe's ability to cope with large-scale cyberattacks or disruptions, said Andrea Glorioso, a policy officer in the Commission's Directorate-General for the Information Society and Media. Glorioso gave a presentation at the Conference on Cyber Warfare on Thursday in Tallinn, Estonia.

The proposals call for a range of measures, including agreeing on minimum standards for the capabilities of European Computer Emergency Response Teams (CERTs), government-run agencies dedicated to computer security.

Other suggestions include creating an agency that would foster closer cooperation between the private sector and government to increase the resilience of networks that could fall under attack as well as improve information sharing between E.U. countries.

By the end of 2010, Europe also hopes to have a roadmap for the European Information Sharing and Alert System (EISAS), which would distribute information on cyberthreats to businesses.

The CIIP plan also calls for E.U. members to run national cybersecurity exercises with a view to holding pan-European network security exercises.

"We want to know how good we are," Glorioso said.

Another focus is Internet stability. The Commission will work to define principles and guidelines for ensuring the robustness of networks along with identifying what is critical infrastructure.

One main motivation for the plan is the impact that cyberattacks can potentially have on economies. Glorioso cited a figure from the World Economic Forum from 2008 that there is a 10 percent to 20 percent possibility that a major critical information infrastructure breakdown could cost the world US$250 billion.

It is difficult to definitively estimate the economic impact, but "we could lose a lot of money," Glorioso said.

E.U member states are embracing the plan. In April, countries discussed and endorsed the CIIP at a meeting in Tallinn, Estonia. Last month, the E.U. Telecommunications Council also gave the plan full support.

Workshops to refine the plan are scheduled through the end of the year. The Council of the European Union could put the plan to a vote as soon as December.

Join CIO, the CIO Executive Council & IDC on 6 October at Australia’s premier Melbourne event for senior IT executives – the CIO Summit 2010. Find out more or register now.

More about: European Commission, SAS
References show all

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.
Users posting comments agree to the CIO comments policy.
Login or register to link comments to your user profile, or you may also post a comment without being logged in.
Related Coverage
 
Featured Whitepapers
NEC White Paper: Punch above your weight with an Aussie Cloud solution

Learn why Cloud should be a consideration for every business looking to improve flexibility, scope of applications and scalability at a lower cost of an opex model. Download the white paper from an industry leader now!

Wondering how to improve your business with UC on an IP Network?

Join Computerworld's Live Webinar where we will address the move many companies are making towards IP based voice services (SIP trunking, VoIP) and look at how they are using a single connection for data and voice rather than separate lines. Learn about the latest in IP networks and how it can help your organisation.

Wednesday 25th November 2009, Time 10.30 am EST (Sydney, Australia) Screening at your desk

Register now

  • +

    WikiLeaks founder Assange questioned by Swedish police 01 September, 2010 05:36:00

    Police and prosecutor are keeping mum on how the investigation is progressing
    WikiLeaks founder Julian Assange has now been questioned by Swedish police regarding a molestation charge directed at him, his lawyer said Tuesday.
  • +

    uTorrent patches application against DLL vulnerability 30 August, 2010 04:31:00

    uTorrent is one of many applications that is affected by the vulnerability
    The developers of the uTorrent file-sharing application have released an updated version that fixes a problem that could allow an attacker to load malicious code onto a user's computer.
  • +

    Wikileaks' Assange to be questioned, says Swedish prosecutor 26 August, 2010 04:54:00

    The Wikileaks founder has been accused of molestation, though one charge has already been dropped
    Swedish Chief Prosecutor Eva Finné has ordered that WikiLeaks founder Julian Assange be questioned about molestation allegations.
  • +

    Adobe fixes 20 vulnerabilities in Shockwave Player 26 August, 2010 03:55:00

    Most of the vulnerabilities could allow an attacker to run rogue code on a computer
    Adobe Systems patched 20 security vulnerabilities in its Shockwave Player on Tuesday. Most of the flaws could allow an attacker to run their own code on an affected computer.
  • +

    Sticks and stones: Picking on users AND security pros 26 August, 2010 02:08:00

    Name-calling is harmful to the cause of security
    I took my share of name-calling as a kid. I did my share of name-calling, too. We're taught that nothing good comes of such behavior. I've been thinking a lot about that since writing an article two weeks ago called "Security blunders 'dumber than dog snot'" during the 2010 USENIX Security Symposium.

Recent comments
Media Releases
Zones
SAS Resource Centre

This Resource Centre hosts a wealth of thought leadership articles, whitepapers, and success videos, to help you make the most out of your corporate information in order to swiftly make sound business decisions to survive and thrive in the current economic climate.

Oracle Resource Centre

News, Features and the latest whitepapers on SOA, Application Grid, Enterprise Management and Database

CIO Industry Insight Podcast #9: Tim Ayling, Chief Executive Officer, Platform46
Listen to the latest edition of CIO Live which is now available for download.
Listen to the podcast
Sign up to the CIO Live email
Whitepaper
Securing People and Information: How to Protect Against Today’s Web-based Threats

This white paper explores the benefits of an Application Delivery Network, highlighting the ability to protect your users and applications and still deliver outstanding application performance with confidence, consistency and cost-effectiveness across your distributed network.

Read Whitepaper

Brought to you by
Videos
Get a job Careerone