Fostering cybersecurity in Europe through regulation