Promoting a secure Information Society

Most EU citizens use Information and Communications Technologies (ICTs) every day. This means they expect trustworthy and secure ICTs that ensure reliable digital services. But security issues must not undermine the protection of fundamental (on-line) rights such as the right to privacy and freedom of speech. The European Union aims to ensure that a coherent approach to network and information security issues (NIS) is developed across the EU.

What is Network and Information Security (NIS)?

The European Commission defined NIS as "the ability of a network or an information system to resist […] accidental events or malicious actions that compromise its availability, authenticity, integrity and confidentiality […]".

How is the EU helping?

• Developing a policy framework

In 2006, the European Commission adopted a Strategy for a Secure Information Society .

This Strategy forms an integral part of the i2010 initiative launched in 2005. i2010 highlights the need to coordinate efforts across the EU to develop policies, regulate where appropriate, support technological solutions and raise awareness in order to strengthen trust and confidence of businesses and citizens in electronic communications and services.

The Strategy proposes a three-pronged approach embracing:

• specific activities on network and information security which are the keystone of the Strategy,

• security provisions in the regulatory framework for electronic communications,

• measures to fight cybercrime.

Although these three aspects can, to a certain extent, be developed separately, the numerous interdependencies call for a coherent approach.

Complementary measures that contribute to the implementation of the Strategy are:

• Fighting Spam, spyware and malware,

• RFID (Radio Frequency Identification),

• Privacy Enhancing Technologies.

• Promoting a culture of network and information security

The European Network and Information Security Agency (ENISA) was established in 2004 to help develop a culture of network and information security for the benefit of citizens, consumers, enterprises and public sector organisations.

• Encouraging research efforts

Trust and security play an important part in the European Union programs devoted to research and development. The ICT Programme within the Research Framework Programme addresses these issues through a wide range of projects. Efforts are being reinforced in the current 7th Framework Programme with the establishment of a European Security Research Programme. Additionally, the Safer Internet Plus programme supports networking projects and the exchange of best practices to combat harmful content circulating on information networks.