Consultation outcome

Proposal on ENISA and cyber security certification

From:
Department for Digital, Culture, Media & Sport and The Rt Hon Matt Hancock MP
Published
20 December 2017
This consultation has concluded

Detail of outcome

Thank you for responding to the Call for Views on ENISA and Cyber Security Certification.

The Government received twenty written responses. The feedback we received was predominantly centred around the following themes:

  • support for ENISA being provided with a strengthened mandate
  • the need for further clarification regarding the scope of certification schemes
  • future schemes alignment with globally recognised standards and being created in line with a secure-by-design approach
  • involvement of industry in the creation of schemes
  • support for the voluntary aspect of the framework, and
  • support for the use of self-certification as an option for assessment where appropriate.

These views were generally in line with feedback we received from industry through other means of engagement and has helped to inform the Government’s position through ongoing negotiations with the EU.

Original consultation

Summary

Call for views on the European Commission’s proposed Regulation on ENISA, the “EU Cybersecurity Agency”, and on Cyber Security Certification.

This consultation ran from
to

Consultation description

The European Commission is working to reform ENISA, the “EU Cybersecurity Agency” and establish a framework to govern European cyber security certification schemes. The proposal, amongst other things, seeks to:

  • Provide ENISA with a strengthened and permanent mandate
  • Increase the trust and security of ICT products and services
  • Harmonise the existing certification landscape to reduce costs and administrative burdens for companies
  • Progress the Digital Single Market

These proposals include changes to the tasks and functions of ENISA and the way European cyber security certification schemes are developed and implemented.

To represent the UK in negotiations, DCMS is seeking stakeholder views through a series of industry roundtables and events. We would also like to invite those stakeholders who cannot attend these events to share their views directly with us and stay updated on progress.

For further details, please read the full European Commission proposal for a Regulation of the European Parliament and of the Council on the future of ENISA.

You can respond to the consultation via the methods outlined below.

Documents

Call for views on ENISA and cyber security certification

PDF, 58.5 KB, 2 pages

Published 20 December 2017

Related content