The new EU Tech Commissioner Henna Virkkunen has been tasked with improving the adoption processes of certification schemes, particularly focusing on cybersecurity certification for cloud services. The debate on the voluntary cybersecurity certificates for cloud services (EUCS) has been ongoing, with a draft text currently being discussed within a working group of ENISA. The scheme was initially intended to demonstrate the cybersecurity protection level of ICT solutions for the EU market, but has become a political battleground over sovereignty requirements.
France’s proposal to include sovereignty requirements in the text, favoring EU cloud companies, has faced opposition from several EU countries and industry stakeholders. As a result, no deal has been reached yet. The Commission is still expected to provide guidance for member states to add their own requirements, with the scheme set to go into effect 18 months after entry into force.
In addition to overseeing the EUCS debate, Tech Commissioner Virkkunen will also be focusing on strengthening cybersecurity overall, as outlined in her mission letter from President Ursula von der Leyen. The delay in the pending scheme coincides with the evaluation of the Cybersecurity Act, which gives ENISA a mandate to support EU coordination during large-scale cyberattacks.
The Commission has also requested ENISA’s support for certifying European Digital Identity Wallets, in addition to the ongoing certification process for baseline ICT products and 5G technology. The tech industry and member states are eagerly awaiting progress on these certification schemes to enhance cybersecurity and ensure the protection of European digital assets.
Source
Photo credit www.euronews.com