Digital security in Europe: 2018, a most decisive year ahead
Nis directive, the European Commission "cyber package"... 2018 will be a most decisive year at the European level. As the national authority in cybersecurity and cyberdefence, ANSSI will continue to take actively part in international negotiations and to liaise with its foreign counterparts, taking benefit from national experiences in many domains (political, regulatory, technical, etc.).
Working alongside Member States and European institutions aims to make the cyberspace a more open and secure space for European citizens. ANSSI is a strong supporter to the European strategic autonomy regarding digital security.
During his press conference at the International cybersecurity forum (FIC) , Guillaume Poupard, Director of ANSSI, will focus on the main objectives the agency is pursuing in 2018.
Reinforcing the European digital security
ANSSI strongly supports the idea that Member States and European institutions should reinforce their own capacities in the management of digital security so as to protect the administrations, the companies and the citizens at the European level.
In a context in which all countries face similar issues, cooperation is also a key to improve overall threat evaluation and a coordinated handling of incidents. ANSSI is particularly supporting the operational cooperation between Member States, through the existing cyber security incident response teams (CSIRTs) network which was created by the NIS directive.
The agency will also take part in the negotiations for the revision of ENISA’s mandate. ANSSI, which chairs the management board, calls for an agency with an ambitious mandate and reinforced missions in particular to support the Member States in their efforts to reinforce their capacities and support the cooperation between EU Member States.
Supporting the European Union’s ability to regulate the cyberspace
One of the 2018 major challenges for all member States will be the transposition of the European network and information system security (NIS) Directive, the first European legislation dedicated to cybersecurity, including measures aimed at reinforcing the cybersecurity of “Operators of Essential Services”.
Levering from ANSSI’s and operators’ experience, the transposition will benefit from the work already accomplished within the framework of the implementation of the 2013 Critical Infrastructures Information Protection” (CIIP) law co-drafted with public and private operators.
Building a strong European industry and R&D
The French approach insists on the need for the EU to adopt an ambitious industrial digital policy, supported by public and private actors, so as to both build EU citizens’ confidence in the digital market, and comply with European values. France attached particular importance to setting up an open, flexible, voluntary European cybersecurity certification framework, covering every security level, as a key element to reinforce digital security and trust within the EU. Involved in the discussions around the cybersecurity package, ANSSI will seek to promote an ambitious European security certification framework, which will fully benefit from the feedback of the pioneer Member States.
Raising awareness on cybersecurity issues
The digital transition favours innovation and growth, yet it simultaneously carries risks for the State, economic stakeholders and citizens. Cybercrime, espionage, propaganda, sabotage and excessive exploitation of personal data threaten digital trust and security.
Acknowledging these risks, France is actively involved in the European Cyber Security month (ECSM) is an EU awareness campaign that takes place each October across Europe. Coordinated at the European level by ENISA and at the national level by ANSSI, with the participation of many French institutional actors, this event aims to raise awareness about cyber security threats and provide advices and recommendations to adopt both at work and at home.