A report released by trade association DigitalEurope on Wednesday (8 September) underlined the lack of baseline cybersecurity requirements, saying the existing rules were insufficient and calling for horizontal regulation as the EU is working on updating its cybersecurity legislation.
Vulnerability to cyberattacks is growing, as the number of devices connected through the Internet of Things (IoT) in people’s homes and everyday lives rapidly increases.
A recent test by ethical hackers at Euroconsumers found that an alarmingly high number of commonplace smart home devices such as WiFi routers, baby monitors and alarm systems suffer from serious weaknesses, leaving them susceptible to what could be very sensitive breaches.
According to DigitalEurope’s report, however, existing product legislation falls short when it comes to addressing cybersecurity.
“Because its scope and conformity assessment methods are generally designed to address physical product functions, existing product legislation cannot properly address administrative or organizational aspects, which are more prominent and common to more types of devices,” it said
In December last year, as part of its new EU Cybersecurity Strategy, the European Commission launched a proposal to revise the cybersecurity standards set in the Network and Information Security (NIS) Directive, the first EU-wide legislation on the topic.
The new legislation, so-called NIS2, is intended to strengthen and expand upon its predecessor in regulatory scope and volume, responding to a general rise of cyber threats but also to growing vulnerability caused by the pandemic-induced increase in dependence on network and information services.
Continue reading: https://www.euractiv.com/section/cybersecurity/news/internet-of-things-is-missing-horizontal-cybersecurity-standards/
Vulnerability to cyberattacks is growing, as the number of devices connected through the Internet of Things (IoT) in people’s homes and everyday lives rapidly increases.
A recent test by ethical hackers at Euroconsumers found that an alarmingly high number of commonplace smart home devices such as WiFi routers, baby monitors and alarm systems suffer from serious weaknesses, leaving them susceptible to what could be very sensitive breaches.
According to DigitalEurope’s report, however, existing product legislation falls short when it comes to addressing cybersecurity.
“Because its scope and conformity assessment methods are generally designed to address physical product functions, existing product legislation cannot properly address administrative or organizational aspects, which are more prominent and common to more types of devices,” it said
In December last year, as part of its new EU Cybersecurity Strategy, the European Commission launched a proposal to revise the cybersecurity standards set in the Network and Information Security (NIS) Directive, the first EU-wide legislation on the topic.
The new legislation, so-called NIS2, is intended to strengthen and expand upon its predecessor in regulatory scope and volume, responding to a general rise of cyber threats but also to growing vulnerability caused by the pandemic-induced increase in dependence on network and information services.
Continue reading: https://www.euractiv.com/section/cybersecurity/news/internet-of-things-is-missing-horizontal-cybersecurity-standards/
