Skip to main content
SpringerLink
Log in

Building Cyber Resilience: The Defensive Shield for the EU

  • Chapter
  • First Online:
Cybersecurity Policy in the EU and South Korea from Consultation to Action

Part of the book series: New Security Challenges ((NSECH))

  • 319 Accesses

Abstract

In April 2021 the European Union (EU) published its new Cybersecurity Strategy which reflects the organisation’s ambition to be in the lead for digital economy, invest more in technology, and remain the frontrunner in maintaining a high level of protection for the whole society. The key for being able to effectively address cyber threats lies in cyber resilience: the ability to mitigate the damage of an incident and continue operation. This chapter explains in a nutshell the EU’s main regulatory and policy aims in achieving increased resilience in cyberspace. In particular, the chapter focuses on the role of disruptive technologies in building a defensive shield for the EU and recent developments within the domain of EU cyber defence. Finally, the chapter will illustrate how cooperation with trusted partners such as South Korea will be mutually beneficial for enhancing cyber resilience.

Research for this chapter was supported by the Masaryk University ERDF project “CyberSecurity, CyberCrime and Critical Information Infrastructures Center of Excellence” (No. CZ.02.1.01 / 0.0 / 0.0 / 16_019 / 0000822).

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 99.00
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 129.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info
Hardcover Book
USD 129.99
Price excludes VAT (USA)
  • Durable hardcover edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Notes

  1. 1.

    ENISA, ‘ENISA Threat Landscape – The Year in Review’, 2020, 8, https://www.enisa.europa.eu/publications/year-in-review.

  2. 2.

    European Commission, ‘Joint Communication to the European Parliament and the Council: The EU’s Cybersecurity Strategy for the Digital Decade (JOIN (2020)18 Final)’, 2020, 1.

  3. 3.

    European Political Strategy Centre, ‘Rethinking Strategic Autonomy in the Digital Age’, EPSC Strategic Notes, 2019, 8–10, https://op.europa.eu/en/publication-detail/-/publication/889dd7b7-0cde-11ea-8c1f-01aa75ed71a1/language-en/format-PDF/source-118064052.

  4. 4.

    European Commission (2020b).

  5. 5.

    Ursula von der Leyen, ‘Political Guidelines for the Next European Commission 2019–2024’, 2019, 13, https://ec.europa.eu/commission/sites/beta-political/files/political-guidelines-next-commission_en.pdf.

  6. 6.

    European Commission, 2021, Strategic Compass, https://eeas.europa.eu/sites/default/files/towards-a-strategic-compass-2021-february.pdf; see also: EUISS, Finding direction with a Strategic Compass? Reflections on the future of EU security and defence, 2020, 2, https://www.iss.europa.eu/sites/default/files/EUISSFiles/Event%20Report%20-%20Strategic%20Compass.pdf.

  7. 7.

    European Commission, ‘Communication from the Commission to the European Parliament, the Council, the European Economic and Social Committee and the Committee of the Regions – Network and Information Security: Proposal for A European Policy Approach (COM(2001)298)’, 2001.

  8. 8.

    European Commission, ‘Communication from the Commission to the European Parliament, the Council, the European Economic and Social Committee and the Committee of the Regions – Cybersecurity Strategy of the European Union: An Open, Safe and Secure Cyberspace (JOIN(2013) 1 Final)’, 2013.

  9. 9.

    Joint Communication on Resilience, Deterrence and Defence: Building strong cybersecurity for the EU, JOIN (2017) 450.

  10. 10.

    European Commission (2020b, 5).

  11. 11.

    European Union, ‘The Directive (EU) 2016/1148 of the European Parliament and of the Council of 6 July 2016 Concerning Measures for a High Common Level of Security of Network and Information Systems across the Union’, 2016.

  12. 12.

    European Commission, ‘Proposal for a Directive of the European Parliament and of the Council on Measures for a High Common Level of Cybersecurity across the Union, Repealing Directive (EU) 2016/1148 (COM(2020) 823 Final)’, 2020, 1.

  13. 13.

    European Commission, ‘The Commission Proposes a New Directive to Enhance the Resilience of Critical Entities Providing Essential Services in the EU’, Migration and Home Affairs – European Commission, 16 December 2020, https://ec.europa.eu/home-affairs/news/commission-proposes-new-directive-enhance-resilience-critical-entities-providing-essential_en.

  14. 14.

    European Commission, Proposal for a Directive of the European Parliament and of the Council on Measures for a High Common Level of Cybersecurity across the Union.

  15. 15.

    European Union, ‘Regulation (EU) 2019/881 of the European Parliament and of the Council of 17 April 2019 on ENISA (the European Union Agency for Cybersecurity) and on Information and Communications Technology Cybersecurity Certification and Repealing Regulation (EU) No 526/2013’, 2019.

  16. 16.

    Read more about the European High-Performance Computing Joint Undertaking: https://ec.europa.eu/digital-single-market/en/eurohpc-joint-undertaking for explanation.

  17. 17.

    European Commission, 2020b, 7–12.

  18. 18.

    See the chapter of Gibum Kim outlining the difficulties faced in Korea for a common approach.

  19. 19.

    European Commission (2020b, 13).

  20. 20.

    European Commission (2020b, sec. 2.1).

  21. 21.

    European Commission, ‘Proposal for a Directive of the European Parliament and of the Council on Measures for a High Common Level of Cybersecurity across the Union, Repealing Directive (EU) 2016/1148 (COM(2020) 823 Final)’, 5.

  22. 22.

    James Black et al., ‘Defence and Security after Brexit: Understanding the Possible Implications of the UK’s Decision to Leave the EU – Compendium Report’, 130.

  23. 23.

    Elena Lazarou and Alina Dobreva, ‘Security and Defence’, European Parliamentary Research Service, 2019, 8. See also European Commission, ‘Communication from the Commission to the European Parliament, the Council, the European Economic and Social Committee and the Committee of the Regions on the EU Security Union Strategy (COM/2020/605 Final)’, 2020; European Union, ‘The European Union’s Global Strategy: Three Years on, Looking Forward’, 2019.

  24. 24.

    European Commission (2021), Strategic Compass; see also: EUISS, 2.

  25. 25.

    European Commission, ‘Communication from the Commission to the European Parliament, the Council, the European Economic and Social Committee and the Committee of the Regions on the EU Security Union Strategy (COM/2020/605 Final)’, 1.

  26. 26.

    Council of the European Union, ‘EU Cyber Defence Policy Framework (2018 Update) (14413/18)’, 2018.

  27. 27.

    Ibid.

  28. 28.

    European Union Institute for Security Studies, 3–4.

  29. 29.

    European Commission (2020b, 18).

  30. 30.

    European Political Strategy Centre, ‘Rethinking Strategic Autonomy in the Digital Age’, 5. See also European Union, Strategic Compass, 45.

  31. 31.

    See the chapter of Kyu-dok Hong and Seong-jong Song, who discuss “defending forward” in South Korea.

  32. 32.

    Alessandro Marrone and Ester Sabatino, Cyber Defence in NATO Countries: Comparing Models, Instituto Affari Internazionali, 2021, https://www.iai.it/sites/default/files/iaip2105.pdf.

  33. 33.

    von der Leyen, ‘Political Guidelines for the Next European Commission 2019–2024’, 13.

  34. 34.

    European Political Strategy Centre, ‘Rethinking Strategic Autonomy in the Digital Age’, 2.

  35. 35.

    Luukas Ilves and Anna-Maria Osula, ‘The Technological Sovereignty Dilemma – and How New Technology Can Offer a Way Out’, European Cybersecurity Journal 6, no. 1 (2020): 30–31. See also Anna-Maria Osula, ‘The Global Rush for Standards in Blockchain’, Directions Blog, 2019, https://directionsblog.eu/the-global-rush-for-standards-in-blockchain/.

  36. 36.

    Ilves and Osula, ‘The Technological Sovereignty Dilemma – and How New Technology Can Offer a Way Out’, 29–32.

  37. 37.

    For example, the EU foresees that cybersecurity must be integrated into all digital investments, particularly key technologies like artificial intelligence, encryption, and quantum computing, using incentives, obligations, and benchmarks. See, European Commission (2020b, 5).

  38. 38.

    See, for civilian use, e.g. Communication from the Commission to the European Parliament, the Council, the European Economic and Social Committee and the Committee of the Regions, Fostering a European approach to Artificial Intelligence, COM(2021) 205 final, 21.04.2021. For an overview on the defence setting, see, e.g. Soare, Simona R, European Defence and AI: Game-Changer or Gradual Change?, 24 March 2021, https://www.rsis.edu.sg/rsis-publication/rsis/european-defence-and-ai-game-changer-or-gradual-change/#.YIPvRqkzY-S.

  39. 39.

    European Commission, European Defence Industrial Development Programme, 2020 calls for proposals, conditions for the calls and annexe, 2020, pp. 93–94.

  40. 40.

    European Commission, “Annexes to the Commission Implementing Decision on the Financing of the European Defence Industrial Development Programme and the Adoption of the Work Programme for the Years 2019 and 2020”, C(2019) 2205 final, Brussels, March 19, 2019, https://ec.europa.eu/docsroom/documents/34515.

  41. 41.

    PESCO Projects, Cyber Rapid Response Teams and Mutual Assistance in Cyber Security, https://pesco.europa.eu/project/cyber-rapid-response-teams-and-mutual-assistance-in-cyber-security/.

  42. 42.

    European Commission, European Defence Industrial Development Programme, 6–7.

  43. 43.

    Jack Richardson, ‘EDIDP Wins for Indra’, European Security & Defence (blog), 6 July 2020, https://euro-sd.com/2020/07/articles/18075/edidp-wins-for-indra/.

  44. 44.

    European Commission (2020b, 20).

  45. 45.

    European Commission (2020b, 21–22).

  46. 46.

    Council of the European Union, ‘Enhanced EU Security Cooperation in and with Asia – Council Conclusions (28 May 2018)’, 2018, https://www.consilium.europa.eu/media/35456/st09265-re01-en18.pdf.

  47. 47.

    Council of the European Union, 3.

  48. 48.

    South Korea is the EU’s eighth largest export destination for goods, whereas the EU is South Korea’s third largest export market. See more at: ‘Trade with South Korea’, European Commission, accessed 22 January 2021, https://ec.europa.eu/trade/policy/countries-and-regions/countries/south-korea/.

  49. 49.

    The European Commission has adopted its adequacy decision for the transfer of personal data from the European Union to the Republic of Korea under the General Data Protection Regulation in 2021. See more at: ‘Adequacy Decisions’, Text, European Commission, accessed 28 February 2022, https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/adequacy-decisions_en.

  50. 50.

    European Commission, ‘Roadmap for EU – Republic of Korea S&T Cooperation’, https://ec.europa.eu/info/sites/info/files/research_and_innovation/strategy_on_research_and_innovation/documents/ec_rtd_eu-korea_roadmap.pdf.

  51. 51.

    European Commission, ‘Joint Press Release: Republic of Korea – EU Leaders’ Video Conference Meeting’, 30 June 2020, https://ec.europa.eu/commission/presscorner/detail/en/IP_20_1226.

  52. 52.

    European Commission, ‘Partnership Instrument Annual Action Programme 2019, Annex 3 – Action Document for “Security Cooperation in and with Asia”’, 2019, 2.

  53. 53.

    Ibid., 5–6.

References

Download references

Author information

Authors and Affiliations

  1. Tallinn University of Technology, Tallinn, Estonia

    Anna-Maria Osula

  2. Guardtime, Tallinn, Estonia

    Anna-Maria Osula

  3. Masaryk University, Brno, Czechia

    Anna-Maria Osula

Authors
  1. Anna-Maria Osula
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Korea University, Seoul, Korea (Republic of)

    Gertjan Boulet

  2. Centre for Security, Diplomacy & Strategy (CSDS), Brussels School of Governance (BSoG-VUB), Brussels, Belgium

    Michael Reiterer

  3. King’s College, London, UK

    Ramon Pacheco Pardo

Rights and permissions

Reprints and permissions

Copyright information

© 2022 The Author(s), under exclusive license to Springer Nature Switzerland AG

About this chapter

Check for updates. Verify currency and authenticity via CrossMark

Cite this chapter

Osula, AM. (2022). Building Cyber Resilience: The Defensive Shield for the EU. In: Boulet, G., Reiterer, M., Pardo, R.P. (eds) Cybersecurity Policy in the EU and South Korea from Consultation to Action. New Security Challenges. Palgrave Macmillan, Cham. https://doi.org/10.1007/978-3-031-08384-6_9

Download citation

Publish with us

Policies and ethics

Search

Navigation