What is the problem? Europeans will not use technology they do not trust.

Users must be safe and secure when they connect online but online identity theft and fraud are growing. Attacks are becoming more and more sophisticated (trojans, botnets, etc.) and often motivated by financial purposes. They can also be politically motivated as shown by the cyber-attacks that targeted Estonia, Lithuania and Georgia.

Why is EU action required? Security is a shared responsibility.

With the support of the EU, all the Member States are responsible for organising and conducting the first EU-wide cyber-security preparedness exercise, but ENISA will coordinate and facilitate the organisation. The aim is to build trust; increase the understanding on how cyber-incidents are handled; understand how key actors work and depend on each other in each Member State and promote mutual support between the Member States. (See also action 39).

What will the Commission do?

In 2011:

• Adopt a Communication taking stock of the implementation of the Critical Information Infrastructure Protection (CIIP) Action Plan.

• Ensure financial support for pan-European cyber security exercises

In 2012:

• Support discussions on the future involvement of the EU in international/global cyber security exercises and evaluate the state of Network and Information System (NIS) health in Europe

Contact:

michael.niebel@ec.europa