This paper discusses the first results of one of the four EU H2020 pilot projects launched to prepare the European Cybersecurity Competence Network. As demonstrated by the recent agreement between the European Parliament, the Council and the European Commission on the Cybersecurity Act, reinforcing cybersecurity is a primary goal for Europe. Nevertheless, from a legal standpoint, this result is not achieved through a general regulation. In Europe, several acts contribute in defining the cybersecurity legal framework. Against this background, this paper identifies the various provisions which, in different EU regulations and directives, contribute to create this framework. This analysis makes it possible to define the common security and data protection building blocks which characterize the EU regulatory patchwork. In this light, two of the main outcomes of this paper are (1) an overview of the potential overlaps concerning the existing legal obligations in the field of cybersecurity –e.g. notifications, certifications– and (2) the first outline of a general, comprehensive and cross-cutting map of legal obligations and procedures concerning cybersecurity. Although a clear map of these legal obligations is ever more important for the business community and public sector operators, the main goal of the authors is not limited to the analysis of the legal framework. The paper also focuses on the existing correlation between the legal framework and technology development in cybersecurity.
Fostering cybersecurity in Europe through regulation / Christodoulaki, Meltini; Esposito, Maria Samantha; Mantelero, Alessandro; Monte, Nicole; Vaciago, Giuseppe - In: Cybercrime: New Threats, New Responses / Barcelona. - STAMPA. - [s.l] : Huygens Editorial, 2020. - ISBN 978-84-17580-15-5. - pp. 104-125
Fostering cybersecurity in Europe through regulation
Esposito, Maria Samantha;Mantelero, Alessandro;Monte, Nicole;
2020
Abstract
This paper discusses the first results of one of the four EU H2020 pilot projects launched to prepare the European Cybersecurity Competence Network. As demonstrated by the recent agreement between the European Parliament, the Council and the European Commission on the Cybersecurity Act, reinforcing cybersecurity is a primary goal for Europe. Nevertheless, from a legal standpoint, this result is not achieved through a general regulation. In Europe, several acts contribute in defining the cybersecurity legal framework. Against this background, this paper identifies the various provisions which, in different EU regulations and directives, contribute to create this framework. This analysis makes it possible to define the common security and data protection building blocks which characterize the EU regulatory patchwork. In this light, two of the main outcomes of this paper are (1) an overview of the potential overlaps concerning the existing legal obligations in the field of cybersecurity –e.g. notifications, certifications– and (2) the first outline of a general, comprehensive and cross-cutting map of legal obligations and procedures concerning cybersecurity. Although a clear map of these legal obligations is ever more important for the business community and public sector operators, the main goal of the authors is not limited to the analysis of the legal framework. The paper also focuses on the existing correlation between the legal framework and technology development in cybersecurity.File | Dimensione | Formato | |
---|---|---|---|
Fostering Cybersecurity_chapter_2020.pdf
accesso riservato
Descrizione: Postprint_Cybersecurity_2020
Tipologia:
2a Post-print versione editoriale / Version of Record
Licenza:
Non Pubblico - Accesso privato/ristretto
Dimensione
215.98 kB
Formato
Adobe PDF
|
215.98 kB | Adobe PDF | Visualizza/Apri Richiedi una copia |
Pubblicazioni consigliate
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
https://hdl.handle.net/11583/2896872