标准2025今日,欧盟委员会建立了一项新的公私合作伙伴关系,这项公私合作关系有望在2020年之前带来18亿欧元的投资。该合作关系是一系列改善欧洲反网络攻击基础设施和加强欧洲网络安全领域的竞争力的新倡议中的一部分。
一项近期的调查显示,去年至少有超过80%的欧洲公司经历过至少一起网络安全事件,2015年全球各行业所遭遇的网络安全事件上升38%。这对众多大小型欧洲公司造成损害,同时这个威胁也让欧洲电子经济领域的信誉受损。作为欧洲数字化单一市场策略的一部分,委员会想加强跨境合作以及与在网络安全方面积极行动的行业和部门之间的合作,旨在在欧盟范围内帮助开发既具有创新性又有安全性的技术、产品和服务。
数字化一体市场副委员长安德鲁斯.安西普说道:“没有信任和安全,就没有数字化一体市场。欧洲必须准备好应对日益严峻且跨境流动的网络安全威胁。我们正在计划具体措施来加强欧洲应对这类攻击的快速恢复能力,保证建设和扩大电子经济的能力。”
数字经济与社会委员会委员京特•H•厄廷格说:“欧洲需要高质量,经济和彼此协作的网络安全的产品和服务。对于欧洲的网络安全产业来说,现在有一个很好的机遇使我们能在快速发展的全球市场中竞争。我们呼吁成员国和所有网络安全相关市场主体加强合作,凝聚知识、信息专业技能,以此来提高欧洲网络弹性。今日签订的网络安全伙伴关系对于该领域来说也是一大进步,具有里程碑式的意义。
如今的行动计划包括第一个欧洲公私网络安全合作伙伴关系的确立。欧盟将在其研究和创新项目计划“地平线2000”下,对此项合作投资4.5亿欧元。以欧洲网络安全组织 (ECSO)为代表的欧洲网络安全市场主体的投资金额有望达到其三倍。该合作伙伴关系同时也将包括来自各国、各地区以及地方的公共管理机构、研究中心和学术界人士,旨在促进研究和创新早期阶段的合作,为能源、卫生、交通和金融等领域的网络安全问题提供解决方案。厄廷格委员今日与ECSO在斯特拉斯堡签署了这项伙伴关系。(照片和视频将于中欧时间12点公布)
欧盟委员会还制定不同措施来解决欧盟网络安全市场分化的问题。目前一个通信技术公司可能要通过不同的认证程序才能向一些成员国销售它的产品和服务。因此委员会将研究针对信息通信技术安全产品建立一个可行的欧洲认证框架。
大量的欧洲创新型中小企业在利基市场(如密码学)和存在新型商业模式的完善市场(如杀毒软件)涌现,但是他们往往无法扩大业务规模。欧盟委员会希望能够减轻网络安全领域小型企业的融资问题,并将在欧盟投资计划下探索不同的融资途径。
欧洲议会拟批准《网络和信息安全指令》,欧盟依据该指令已经建立了一个计算机安全事件应对小组,以快速回应网络安全威胁和事故。同时各成员国之间还将建立“合作小组”,支持并促进战略合作和信息互换,提升信任和信心。欧盟委员会还呼吁各成员国充分利用这些新的机制,尽可能加强协调配合。欧盟委员会将提出方法加强大型网络安全事件中的跨境合作。鉴于网络安全领域的发展速度,委员会也将对欧盟网络和信息安全局进行评估。此项评估包括欧盟网络和信息安全局的授权范围和能力是否足以完成其职责,即是否可以协助成员国提升其网络应对能力。委员会还将对如何不同经济部门之间的加强和简化网络安全合作进行研究,其中就包括网络安全培训和教育。
背景:
行动计划的根据主要来自2015年《数字化单一市场策略》,2013年《欧盟网络安全策略》,以及即将确定的《网络和信息安全指令》,是基于欧洲安全议程对话以及《打击混合威胁》提出的。
European Commission – Press release
Commission signs agreement with industry on cybersecurity and steps up efforts to tackle cyber-threats
Brussels, 5 July 2016
The Commission today launches a new public-private partnership on cybersecurity that is expected to trigger €1.8 billion of investment by 2020. This is part of a series of new initiatives to better equip Europe against cyber-attacks and to strengthen the competitiveness of its cybersecurity sector.
According to a recent survey, at least 80% of European companies have experienced at least one cybersecurity incident over the last year and the number of security incidents across all industries worldwide rose by 38% in 2015. This damages European companies, whether they are big or small, and threats to undermine trust in the digital economy. As part of its Digital Single Market strategy the Commission wants to reinforce cooperation across borders, and between all actors and sectors active in cybersecurity, and to help develop innovative and secure technologies, products and services throughout the EU.
Andrus Ansip, Vice-President for the Digital Single Market, said: "Without trust and security, there can be no Digital Single Market. Europe has to be ready to tackle cyber-threats that are increasingly sophisticated and do not recognise borders. Today, we are proposing concrete measures to strengthen Europe's resilience against such attacks and secure the capacity needed for building and expanding our digital economy."
Günther H. Oettinger, Commissioner for the Digital Economy and Society, said: "Europe needs high quality, affordable and interoperable cybersecurity products and services. There is a major opportunity for our cybersecurity industry to compete in a fast-growing global market. We call on Member States and all cybersecurity bodies to strengthen cooperation and pool their knowledge, information and expertise to increase Europe's cyber resilience. The milestone partnership on cybersecurity signed today with the industry is a major step ."
Today's action plan includes the launch of the first European public private partnership on cybersecurity. The EU will invest €450 millionin this partnership, under its research and innovation programme Horizon 2020. Cybersecurity market players, represented by the European Cyber Security Organisation (ECSO), are expected to invest three times more. This partnership will also include members from national, regional and local public administrations, research centres and academia. The aim of the partnership is to foster cooperation at early stages of the research and innovation process and to build cybersecurity solutions for various sectors, such as energy, health, transport and finance. Commissioner Oettinger today signs the partnership with the ECSO in Strasbourg (photos and videos to be available at around 12.00 CET).
The Commission also sets out different measures to tackle the fragmentation of the EU cybersecurity market. Currently an ICT company might need to undergo different certification processes to sell its products and services in several Member States. The Commission will therefore look into a possible European certification framework for ICT security products.
A myriad of innovative European SMEs have emerged in niche markets (e.g. cryptography) and in well-established markets with new business models (e.g. antivirus software), but they are often unable to scale up their operations. The Commission wants to ease access to finance for smaller businesses working in the field of cybersecurity and will explore different options under the EU investment plan.
The Network and Information Security Directive, which is expected to be adopted by the European Parliament tomorrow, already creates a network of Computer Security Incident Response Teams across the EU in order to rapidly react to cyber threats and incidents. It also establishes a ‘Cooperation Group’ between Member States, to support and facilitate strategic cooperation as well as the exchange of information, and to develop trust and confidence. The Commission today calls on Member States to make the most of these new mechanisms and to strengthen coordination when and where possible. The Commission will propose how to enhance cross-border cooperation in case of a major cyber-incident. Given the speed with which the cybersecurity landscape is evolving, the Commission will also bring forward its evaluation of the European Union Agency for Network and Information Security (ENISA).This evaluation will assess whether ENISA's mandate and capabilities remain adequate to achieve its mission of supporting EU Member States in boosting their own cyber resilience. The Commission also examines how to strengthen and streamline cybersecurity cooperation across different sectors of the economy, including in cybersecurity training and education.
Background
Today's action plan finds its main roots in the 2015 Digital Single Market strategy, the 2013 EU Cybersecurity strategy and the forthcomingNetwork and Information Security (NIS) Directive. It builds on the recent Communications on Delivering the European Agenda on Security andCountering Hybrid Threats.