A strategy for a Secure Information Society - Dialogue, partnership and empowerment
In recognition of the ever growing importance of network and information security, the European Commission developed a Strategy for a secure Information Society which was adopted on 31 May 2006 in a Communication A Strategy for a secure information society - Dialogue, partnership and empowerment - reference: COM(2006)251.
This Strategy was drawn up to revitalize the approach set out in the previous Commission Communication "Network and Information Security: Proposal for A European Policy Approach" of 2001 (reference: COM(2001)298) . The new strategy reviews the current state of threats to the security of the Information Society and determines what additional steps should be taken (e.g. on critical information infrastructure protection, on trusted computing, on electronic identity management, etc.).
The strategy recalls that, in tackling security challenges for the Information Society, the European Community has developed a three-pronged approach embracing: specific network and information security measures, the regulatory framework for electronic communications (which includes privacy and data protection issues), and the fight against cybercrime. Although these three aspects can, to a certain extent, be developed separately, the numerous interdependencies call for a coordinated strategy.
The 2006 Communication sets out the strategy and provides the framework to carry forward and refine a coherent approach to NIS.
Involving stakeholders to develop a culture of security
A secure information society must be based on enhanced NIS. Achieving this requires the development of a widespread culture of security. To this end, the Commission proposes a dynamic and integrated approach that involves all stakeholders and is based on dialogue, partnership and empowerment. Given the complementary roles of public and private sectors in creating a culture of security, policy initiatives in this field must be based on an open and inclusive multi-stakeholder dialogue.
A dynamic and integrated approach to network and information security
The Council endorsed this approach in its Resolution on a Strategy for a Secure Information Society in Europe in March 2007 (Official Journal C068 of 23.3.2007).
The Communication emphasizes the positive virtue of technological diversity as an integral component of security, as well as the importance of openness and interoperability. It also highlights the strategic importance of European industry being both a demanding user and a competitive supplier of network and information security products and services. Background information on the underlying motivation and reasoning behind this Strategy can be found in the prior Impact Assessment of the Communication.
Activities planned in the Strategy
The European Commission is implementing the approach outlined in
the Strategy through a set of
activities to promote effective public
policy-making, public private partnerships, and private sector initiatives, like
for instance:
• enhancing the security and resilience of NIS,
• developing multi-stakeholder dialogues on a number of subjects (trusted
computing, eID, privacy enhancing technologies, etc),
• building partnerships for data collection and alert systems,
• promoting international cooperation on NIS,
• increasing investment in research
Relevant links
Survey and Analysis of EU ICT Security Industry and Market for Products and Services
Complementary measures that contribute to the implementation of the Strategy are:
- Fighting Spam, spyware and malware,
- RFID (Radio Frequency Identification),
- Privacy Enhancing Technologies.
Preparatory studies
A number of studies fed into the preparation of the Strategy
Last updated: 29.03.2011