EU member states publish 5G risk assessment

Nieuws Mobiel Europa 10 OCT 2019
EU member states publish 5G risk assessment

EU member states, with the support of the Commission and the European Agency for Cybersecurity (Enisa), have published a wide-ranging report warning of the risk of increased cyber attacks on 5G networks throughout the continent. Although the EU has until now resisted US pressure to boycott Chinese companies such as Huawei and ZTE, the report highlights the risks to 5G from non-EU state or state-backed actors. “Among the various potential actors, non-EU states or state-backed are considered as the most serious ones and the most likely to target 5G networks,” said the European Commission and Finland, which currently holds the rotating EU presidency.

Huawei, which has always denied its equipment can be used for spying, reiterated its willingness to work with European partners on 5G network security. “This exercise is an important step toward developing a common approach to cybersecurity and delivering safe networks for the 5G era,” a Huawei spokesman told Reuters.

In addition to identifying the main threats, the report highlights the most sensitive assets, the main vulnerabilities (including technical ones and other types of vulnerabilities) and a number of strategic risks. It says the main security challenges are linked to key innovations in 5G technology, in particular the important part of software and the wide range of services and applications enabled by 5G, as well as the role of suppliers in building and operating 5G networks and the degree of dependency on individual suppliers. “A major dependency on a single supplier increases the exposure to a potential supply interruption, resulting for instance from a commercial failure, and its consequences,” it said.

The EC added that member states should assess the effects of the Recommendation in order to determine whether there is a need for further action by 01 October 2020. Other steps include a toolbox of mitigating measures addressing cyber security risks at national and bloc-wide level to be agreed by the Network and Information Systems Cooperation Group before 31 December 2019, while the EU Agency for Cybersecurity is also completing a map of specific threats related to 5G networks.


 

Categories:

Mobiel

Companies:

European CommissionENISA

Regions:

Europa

Tags:

Security, Wholesale, 5G, Government policy, Market research

Related Articles

EUROPA 16 JUN 2023

EU commission calls for wider ban on risky 5G suppliers like Huawei and ZTE

More countries in Europe need to take action to ban risky suppliers of 5G network equipment, such as Huawei and ZTE, the European Commission has said. A new report on the Commission's recommendations from 2020 on 5G network security found that only 10 of the 27 EU countries have restricted or banned the high-risk suppliers from their networks. More action is needed to ensure the security of critical digital infrastructure and avoid a dependency on risky suppliers, the Commission concluded. 

EUROPA 25 JAN 2022

EU auditors warn of delays in 5G roll-out, security risks

The European Court of Auditors has warned that the EU is falling behind on its goals for 5G networks. In a special report on the 5G roll-out, the court found that few countries would be likely to meet the goal of 5G across all urban areas and transport routes in 2025. Furthermore, the EU states are taking different views on security for the new networks, raising the potential for cross-border risks, the court warned.

FINLAND 12 FEB 2021

Finnish govt sets up network security advisor board

The Finnish Ministry of Transport and Communication has announced the formation of an Advisory Board for Network Security to assess and develop the security of domestic communications networks and support decision-making by authorities. The board was appointed for the period from 15 February 2021 to 30 June 2022.

EUROPA 10 DEC 2020

EU audit body to review 5G progress

The European Court of Auditors has started a review of the European Union's 5G policies. The roll-out of the new mobile networks is seen as important to the functioning of the single market and achieving the EU's digitisation agenda, and 5G already was flagged as a security issue by the audit court's review of Chinese investment earlier this year.

EUROPA 10 DEC 2020

Enisa updates telecom network security guidelines for EECC, 5G

The EU's cybersecurity agency Enisa has issued new guidelines on telecom network security for national authorities. Updating its previous guidelines from 2014, Enisa said it incorporated the security elements from the new European Electronics Communications Code, which must be implemented in national law by the end of this year, and the latest recommendations on 5G network security.

EUROPA 13 OCT 2020

EU agencies hold cyber attack preparedness exercise

The European Agency for Cybersecurity (Enisa) said it teamed up with the Computer Emergency Response Team for the EU Institutions, Bodies and Agencies (CERT-EU), the European Centre for Disease Prevention and Control (ECDC) and the European Food Safety Authority (EFSA) to produce the first cybersecurity exercise for the ICT Advisory Committee of the EU Agencies and Institutions (ICTAC) on 08 October. The exercise took place during the latter's 36th meeting, which was held in a virtual format, with a view to

NEDERLAND 3 SEP 2020

Dutch govt to implement 5G toolbox next year

The security of the 5G networks will be further elaborated next year in a government policy for the telecom sector, Minister Ferdinand Grapperhaus said in answer to written questions from Kathalijne Buitenweg of GroenLinks. The Ministry of Justice and Security is still working on the implementation of the EU toolbox to keep 5G services safe.

EUROPA 16 JUN 2020

EU awards EUR 38 mln to smart city cyber protection projects

The European Commission has awarded grants of over EUR 38 million, through the Horizon 2020 research and innovation programme, to support several innovative projects in the field of protection of critical infrastructure against cyber and physical threats. Following a call for proposals launched last year, the EC selected a total of five projects, which are expected to start between June and October 2020 and run for two years. "As we are faced with a diverse array of cybersecurity threats, the EU is taking c

EUROPA 28 FEB 2020

Austria, Bulgaria, Denmark, Romania join initiative to explore quantum communication for Europe

Austria, Bulgaria, Denmark and Romania agreed to work together with 20 other EU member states towards the creation of a quantum communication infrastructure (QCI) across Europe. The QCI initiative's aim is to build a quantum secure communication shield across the EU that would protect the EU economy and society from cyber threats.

EUROPA 29 JAN 2020

EU states to implement tighter 5G security checks by April

The EU members have approved a 'toolbox' of measures designed to help limit security risks on the new 5G mobile networks. These include adopting new security requirements for mobile operators, encouraging the use of multiple vendors to avoid reliance on single suppliers, and screening network suppliers for potential non-technical risks. 

EUROPA 20 DEC 2019

Enisa launches call for applications to join EU cloud certification scheme working group

The EU's cybersecurity agency Enisa has launched a call for applications to select members for a 20-strong ad hoc working group tasked with preparing a candidate cybersecurity certification scheme on cloud services. The scheme is intended to provide for cybersecurity certification of a broad range of cloud services and the group's first task will be to specify further the scope of the scheme.

EUROPA 3 DEC 2019

EU states call for 5G supplier vetting based on legal, political risks

EU telecom ministers have stopped short of calling for a ban on specific 5G suppliers such as Huawei. However, they said in a joint declaration that EU countries should take into account non-technical factors when assessing 5G network risks, such as the legal framework suppliers may be subject to in third countries. Furthermore, additional efforts beyond standardisation and certification schemes may be necessary to mitigate the risks.  

EUROPA 2 DEC 2019

Enisa publishes report on proposed EU cybersecurity certification scheme for cloud services

The EU's cybersecurity agency Enisa has announced the publication of a report on plans to implement a cybersecurity certification scheme for cloud services ahead of launching a call for applications to select members for the corresponding Ad-Hoc Working Group. The report was prepared by the Cloud Service Provider Certification (CSPCERT) Working Group in this area and includes recommendations in relation to the security certification of cloud services to Enisa, the European Commission and the EU Member State

VERENIGDE STATEN 27 NOV 2019

US govt consults on procedures to ban risky ICT suppliers

The US Department of Commerce is inviting comments on the procedures its office should follow to enforce Executive Order 13873, signed by President Trump in May to ban US companies from doing business with firms that could pose a threat to national security. The order took particular aim at Chinese telecom equipment makers Huawei and ZTE, as well as several other Chinese firms. Called "Securing the Information and Communications Technology and Services Supply Chain," it looks to shut out companies that are

EUROPA 25 NOV 2019

5G suppliers must be evaluated on political, legal level, as well as on equipment - EU draft document

EU member states met in Brussels to talk about the selection of 5G suppliers and agreed on an approach that would include legal and political considerations, Reuters reported, saying it saw the draft document. Ambassadors meeting in Brussels agreed to the approach, a spokeswoman for Finland said in a tweet. Finland currently holds the rotating EU presidency.

Just In

19 DEC 16:42

SLT-Mobitel launches 5G network in Sri Lanka

19 DEC 16:19

Dialog Axiata launches 5G network, connects 1.5 million subscribers

19 DEC 15:56

UK govt to ban AI-enabled nudification apps to protect women, girls

19 DEC 15:42

3 UK launches last-minute Christmas sale

Commentary

13:56

Video market set for slower growth ahead

11:38

Netflix buys Warner Bros to deepen content catalogue

11:11

KPN's mixed performance in Q3 raises questions for strategy day

15:26

Stock markets breaking records but what happened to Odido's IPO plans?

Background

01:04

The week in telecom: Wi-Fi bolt-ons take off to boost broadband growth, video market works on consolidation

01:39

The week in telecom: Netflix wins bidding for Warner Bros, Apple poaches new execs, Samsung debuts trifold

13:51

Proximus vs. Telenet: Proximus performs better in Q3 while Telenet uses up cash

14:16

Proximus Domestic still struggling with low margins

Complete profile

Before downloading the whitepaper, we would like to ask you to complete your profile with company and position. After confirming you will receive the white paper.