European Union Cybersecurity Law Flashcards
What is the main goal of the EU’s Cybersecurity Strategy?
To ensure a secure, resilient, and open digital environment in Europe by enhancing cybersecurity measures, fostering international cooperation, and promoting technological leadership.
Why is cybersecurity crucial for the EU?
Cybersecurity is vital for protecting critical infrastructure, ensuring data security, defending democratic institutions, and maintaining economic stability.
What are the key threats to cybersecurity in the EU?
Threats include increasing cyberattacks on infrastructure and services, the rise of connected devices with vulnerabilities, hybrid threats combining cyberattacks and disinformation, and cybercrime targeting individuals, businesses, and institutions.
Which sectors are most vulnerable to cyber threats?
Energy, transport, health, finance, telecommunications, and government and defense are among the most at-risk sectors.
What is the EU’s approach to strengthening cybersecurity?
The EU relies on three principal instruments: regulatory measures such as laws and policies, investment in technology and infrastructure, and policy initiatives including international cooperation and skill development.
What is the NIS Directive, and why is it important?
The Network and Information Systems (NIS) Directive is the EU’s first cybersecurity law, aimed at improving national cybersecurity capabilities, increasing cooperation, and ensuring cybersecurity standards for essential services.
What is the role of Security Operations Centres (SOCs)?
SOCs monitor and analyze network traffic in real-time to detect cyber threats, prevent attacks, and provide intelligence to authorities.
What is the purpose of the Joint Cyber Unit (JCU)?
The JCU coordinates EU-wide responses to cyber threats by facilitating collaboration between cybersecurity agencies, law enforcement, and national authorities.
What is the EU’s stance on international cyber norms?
The EU promotes a global and open cyberspace based on the rule of law, international cooperation, and responsible state behavior in cyberspace.
How much is the EU investing in cybersecurity?
The EU has committed €4.5 billion for cybersecurity projects between 2021 and 2027, funding through Horizon Europe, the Digital Europe Programme, and the European Defence Fund, with additional support for SMEs and innovation.
What measures are being taken to secure 5G networks?
The EU is implementing the EU 5G Toolbox, conducting risk assessments of suppliers and infrastructure, and coordinating efforts to mitigate high-risk suppliers.
What is DNS4EU?
DNS4EU is a proposed EU-based public DNS resolver designed to enhance cybersecurity, privacy, and resilience against cyber threats.
What is the ‘Internet of Secure Things’ initiative?
It is a plan to introduce mandatory cybersecurity standards for connected devices to improve security and reduce vulnerabilities.
How is the EU addressing cybercrime?
By strengthening law enforcement capabilities, improving digital forensics and e-evidence collection, and enhancing cooperation with Europol and other agencies.
What is the role of ENISA?
The European Union Agency for Cybersecurity (ENISA) supports the EU in developing cybersecurity policies, risk assessments, and best practices.
How does AI contribute to cybersecurity?
AI enhances threat detection, automated responses, and real-time analysis of cyber threats to strengthen defenses against attacks.
How is the EU improving cybersecurity skills?
By developing cybersecurity education and training programs, supporting cybersecurity research and innovation, and promoting women’s participation in STEM fields.
Why is quantum encryption important for cybersecurity?
Quantum encryption provides ultra-secure communication by making data transmission resistant to cyber threats and hacking.
How does the EU promote cybersecurity resilience?
The EU ensures resilience by promoting secure-by-design principles for technology development, cybersecurity certification for ICT products, and regular security updates for software and hardware.
What are the future challenges in cybersecurity?
Challenges include increasing geopolitical tensions over technology control, managing growing cyber threats from state and non-state actors, and ensuring supply chain security in critical infrastructure.
What is the main goal of EU cybersecurity law?
To establish a secure digital environment, improve cybersecurity resilience, and protect critical infrastructure.
What are the ‘European Digital Rights and Principles’?
A framework ensuring fair access to digital opportunities, privacy protection, and cybersecurity rights for EU citizens.
What is the ‘Digital Decade’ strategy?
An EU initiative aimed at digital transformation in four key areas: digital skills, digital infrastructure, digital businesses, and digital public services.
What is the NIS2 Directive?
An updated version of the original NIS Directive, improving cybersecurity resilience and incident response across EU member states.
Who must comply with the NIS2 Directive?
Essential and important entities, including sectors like energy, transport, banking, healthcare, and digital infrastructure.
What are the penalties for non-compliance with NIS2?
Fines and legal consequences, depending on the severity of the breach and the failure to implement security measures.
What is DORA?
A cybersecurity regulation focused on financial institutions to enhance digital resilience and prevent cyber threats.
What sectors does DORA apply to?
Banks, investment firms, insurance companies, and other financial entities.
What is the NIS Cooperation Group?
A body consisting of representatives from EU Member States, the European Commission, and ENISA to support NIS implementation.
What are the key pillars of DORA?
ICT risk management, incident reporting, digital operational resilience testing, third-party risk management, and information sharing.
What is the European Commission’s role in cybersecurity?
It proposes regulations, monitors implementation, and coordinates with Member States for cybersecurity resilience.
What is the role of the CSIRTs Network?
It facilitates collaboration between national Computer Security Incident Response Teams (CSIRTs) to respond to cross-border cyber threats.
Why is cybersecurity critical for the EU Digital Single Market?
It ensures secure online transactions, protects consumer data, and fosters trust in digital services.
What is ICT?
ICT stands for Information and Communication Technology, which includes technologies used for communication, data management, and digital services, such as computers, networks, and cybersecurity systems.
