This workshop addresses the potential and need for European collaboration on cyber security challenges. SDOs and policy folks will be brought together to work through two key areas of policy: the ePrivacy regulation and the Cybersecurity Act. These challenges include, but are not limited to: finding where standards need to be created to implement these policies, finding certification schemes fit for purpose and fit for the future, and where SDOs, ENISA and other stakeholders need to collaborate to fulfil these aims.
Event Objectives
Attendees will:
- Learn about ePrivacy regulation and the Cybersecurity Act
- Know what work needs to be done by standards organisations with regards to these policies
- Appreciate what these regulations mean for certification schemes
- Understand the outcomes from the collaborative ETSI/ENISA/CEN/CLC Cybersecurity 2019 workshop
Target audience
This session is aimed at those impacted with the Cybersecurity Act or ePrivacy regulation, including industry, governments, user organizations, standards organisations who need to collaborate to create standards for these policies, and any attendees wishing to know more about these topics.
The thread on Cyber Security & Policy Actions will be taking place on 18th June 2019.
- 09.00
Day Introduction
Colin Whorlow, NCSC - 09.10
Cybersecurity Act - Setting the Scene
Chaired by Colin Whorlow, NCSCThere is potential and need for European collaboration on cyber security challenges. SDOs, ENISA and other stakeholders need to discuss, to collaborate, and to plan for an approach to two key areas of policy: the ePrivacy regulation and the Cybersecurity Act. The day aims to find where standards need to be created to implement these policies and finding certification schemes fit for purpose and fit for the future.
- 09:10
The EU Cybersecurity Act
Joannis Askoxylakis, EC DG CNECT - 09:30
Current Status of The EU Cybersecurity Policy and Key Challenges for the Future
Steve Purser, ENISA - 09:50
The Need for Economic Efficiency and Scalability While Implementing the EU Cyber Security Certification Framework
Dag Stroman, SOG-IS and CCRA - Management Committee - 10:10
Cyber Security Act : The impact on Standardization Work
Jean-Pierre Quemard, ESOs (CEN, CENELEC, ETSI) - 10:30 Coffee, Posters & Demos
- 11:00
What is the Cyber Territory of a Country?
Silke Holtmanns, Nokia Bell Labs - 11:15
Panel Discussion on Cybersecurity Act & Cloud
Moderated by Andreas Mitrakas, ENISAThis panel will run through an example of what needs to be done with regards to the Cybersecurity Act and the cloud, and the impacts on stakeholders, including non-European providers.
- Pierre Chastanet, EC DG CNECT
- Sean Estrada, Amazon
- Leire Orue-Echevarria, TECNALIA
- Damir Savanovic, Cloud Security Alliance
- 12:10
KEYNOTE; Preparing for the EU Cybersecurity Legislation in the EU Product Legislation
François Ambrosini, P3 communications GmbH - 12:30 Lunch, ETSI Explainer, Posters & Demos
- 12:4013:10
ETSI Explainer (Amphi Athena)
CYBER IoT Consumer Security - Jasper Pandza, TC CYBER - 13:1013:40
ETSI Explainer (Amphi Athena)
TC SCP: Smart Secure Platform - Stéphane Bandin, Vice Chair TC SCP - 14:15
Panel Discussion on Cybersecurity Act & Industrial IoT
Moderated by Slawek Gorniak, ENISAThis panel discusses the Cybersecurity Act and its connection with the world of Industrial IoT: What impacts will the Cybersecurity Act have on Industrial IoT? How have standards organisations helped already in this space and how can they help further?
- Alex Häussler, TUV Sud
- Martin Schaffer, SGS
- Eric Vetillard NXP, ECSO
- 15:15 Coffee, Posters & Demos
- 15:45
Panel Discussion on Cybersecurity Act & Consumer IoT
Moderated by Colin Whorlow, NCSCConsumer IoT is a rapidly developing area of technology, with certification schemes requiring flexibility and agility to encourage innovation in the sector. This panel of experts will discuss a range of options for certification, including ETSI's recent standard on Cyber Security for Consumer IoT, which is the first globally applicable standard on this topic.
- John Moor, IoT Security Foundation
- Mona Mustapha, GSMA
- Jasper Pandza DCMS & ETSI
- Herve Rannou, Senx
- 16:45
ePrivacy
Chaired by Jean-Pierre Quemard, KAT
This session will focus on discussing issues around ePrivacy: what is ePrivacy? What is the industry's view on ePrivacy and what can/must standards do here. - 16:45
ePrivacy : why does Europe need an other privacy law ?
Nacéra Bekhat, CNIL - 17:00
The Impact of ePrivacy Regulation to Cyber-Intelligence – Options to Consider
Ilias Chantzos, Symantec - 17:15
What is ePrivacy? What Role Standards Can Play in the Area of ePrivacy?
Anna Ciesielska, EC DG CNECT - 17:30
The Role of Standardization to Ensure Consumers' Privacy and Security
Rusné Juozapaitiene, ANEC - 17:45
Outdated Sectoral ePrivacy Versus Updated General Data Protection Rules
Christina Vela Marimon, Telefonica, ETNO - 18.00
Conclusion of the Day
Colin Whorlow, NCSC - 18.15
Close of the Workshop - Networking Cocktail
Roberto Cascella, ECSO
Sonia Compans, ETSI
Margot Dor, ETSI
Slawek Gorniak, ENISA
Alex Leadbeater, BT
Andreas Mitrakas, ENISA
Kirsty Paine, NCSC
Jean-Pierre Quemard, KAT
Colin Whorlow, ENISA Management Board Member & NCSC, PC Chair
Access to the presentations given during the thread on Cyber Security & Policy Actions