24 out of the 28 EU member states have completed the 5G risk assessments at national level, laying the groundwork for an EU-wide assessment by October.

Wei Shi

July 22, 2019

2 Min Read
Most EU countries complete 5G national risk assessments
Europe cuts costs of SMS, data roaming charges

24 out of the 28 EU member states have completed 5G risk assessments at national level, laying the groundwork for an EU-wide assessment by October.

The project was launched in March, when the Commission (the administrative branch) responded to the Council’s (the heads of state or government) expectations to see a “recommendation on a concerted approach to the security of 5G networks”. According to the Commission’s statement, the assessment should be conducted on three main areas:

  • the main threats and actors affecting 5G networks;

  • the degree of sensitivity of 5G network components and functions as well as other assets; and

  • various types of vulnerabilities, including both technical ones and other types of vulnerabilities, such as those potentially arising from the 5G supply chain.

All member states were requested to complete the national assessment by the end of June. The Commission does not publish the names of the countries that have missed the deadline.

“The completion of the risk assessments underlines the commitment of Member States not only to set high standards for security but also to make full use of this groundbreaking technology,” Julian King, Commissioner for the Security Union, and Mariya Gabriel, Commissioner for the Digital Economy and Society, said in a joint statement.

“We hope that the outcomes will be taken into account in the process of 5G spectrum auctions and network deployment, which is taking place across the EU now and in the coming months. Several Member States have already taken steps to reinforce applicable security requirements while others are considering introducing new measures in the near future.”

The national assessments will feed into the pan-EU 5G risk assessment, led by the EU Agency for Cybersecurity (ENISA), tasked to be completed by 1 October 2019. By the end of the year, a toolbox to mitigate the risks identified at national and EU levels will be developed by the NIS Cooperation Group, the EU’s cross-agency identity responsible for cybersecurity. By 1 October 2020, member states are requested to undertake an evaluation of the effectiveness of the measures taken and determine whether further actions should be taken.

Meanwhile, ENISA will also take the lead to develop an EU-wide certification framework to cover 5G networks and equipment, which member states are encouraged to adopt.

About the Author(s)

Wei Shi

Wei leads the Telecoms.com Intelligence function. His responsibilities include managing and producing premium content for Telecoms.com Intelligence, undertaking special projects, and supporting internal and external partners. Wei’s research and writing have followed the heartbeat of the telecoms industry. His recent long form publications cover topics ranging from 5G and beyond, edge computing, and digital transformation, to artificial intelligence, telco cloud, and 5G devices. Wei also regularly contributes to the Telecoms.com news site and other group titles when he puts on his technology journalist hat. Wei has two decades’ experience in the telecoms ecosystem in Asia and Europe, both on the corporate side and on the professional service side. His former employers include Nokia and Strategy Analytics. Wei is a graduate of The London School of Economics. He speaks English, French, and Chinese, and has a working knowledge of Finnish and German. He is based in Telecom.com’s London office.

You May Also Like