Study on the need of Cybersecurity requirements for ICT products : no. 2020-0715 : final study report

Over the past decades, ICT products have allowed our society to become smarter and more connected, offering new benefits to consumers while creating opportunities to businesses across the EU. Meanwhile, the pervasiveness of ICT products within the EU Single Market has brought forward unforeseen challenges not only to the users of such products but also to the society at large. In recent years, the EU has undertaken several initiatives with the aim of improving the legislation around product cybersecurity. Nevertheless, the current EU legislative framework seems still to be incomplete in respect to ICT products cybersecurity. Furthermore, evidences suggest that the heterogeneity of ICT products does not allow to aggregate risk profiles per ICT product category and/or sector. Hence, it follows the need to define a set of essential cybersecurity requirements for all ICT products, applicable during the entire lifecycle. Against this background, the study concludes that the horizontal legislation would represent the most cost-effective policy option, creating greater security in the Single Market while enhancing the business competitiveness, with both the sector specific and mixed approach being the second best. However, a more comprehensive and quantitative assessment of these policy options should be performed in a follow up study.

MoreLess

Year of publication:	2021
Other Persons:	Georgiev, Stefan (contributor) ; Thirriot, Aude (contributor) ; Meziat, Carole (contributor) ; Barone, Leonardo (contributor) ; Zamboni, Alessandro (contributor) ; Merlier, Adrien (contributor) ; Herrera, Facundo (contributor) ; Juskevicius, Ricardas (contributor) ; Pupillo, Lorenzo (contributor) ; Polito, Carolina (contributor) ; De La Maza, Cristina (contributor) ; Layeux, Audren (contributor) ; Weström, Pär (contributor)
Institutions:	European Commission / Directorate-General for Communications Networks, Content and Technology (issuing body) ; Wawestone (issuing body) ; CEPS (issuing body) ; CARSA (issuing body) ; ICF (issuing body)
Publisher:	Luxembourg : Publications Office
Subject:	Informationstechnik \| Information technology \| EU-Staaten \| EU countries \| Datensicherheit \| Data security \| IT-Kriminalität \| IT crime

freely available

Full text |

More access options

Check Google Scholar

In libraries world-wide (WorldCat)

In German libraries (KVK)

subito order

I need help

Extent:	1 Online-Ressource (368 p.) Illustrationen (farbig)
Type of publication:	Book / Working Paper
Language:	English
ISBN:	978-92-76-45872-2
Other identifiers:	10.2759/025330 [DOI]
Source:	ECONIS - Online Catalogue of the ZBW

Persistent link: https://www.econbiz.de/10015281174