The Higher Commission for Digital and Post (CSNP), a joint parliamentary group whose mission is to control postal and electronic communications activities, issued an opinion to the government on “digital security” on Tuesday, April 4.
Completing the government plan
The document contains 27 proposals whose objective is to complete the national plan presented by Emmanuel Macron on February 18. Because, “a national strategy for security in the digital space cannot be limited to such a plan”, writes the Commission. She adds that “cybersecurity is only one part of the measures (…) It is by articulating all of these parts that the State will be able to ensure public order and the security of goods and people. in digital space as well as in physical space “.
The CNSP recommends the creation of a “national cyber prosecution” with sufficient resources and expertise to investigate the most complex cases. Like the national financial prosecutor’s office responsible for tracking down economic and financial crime, this future judicial institution will be responsible for cases related to cybercrime.
Indeed, the Commission notes “a real shortage” of the State in the means dedicated to the fight against cybercrime. “Today, only three magistrates deal with cybercrime cases in France while the number of attacks has increased at an exponential rate for two years”, deplores the report.
Strengthen the resources of the police services
With regard to judicial and police resources, the CNSP also recommends that the government consolidate the system of cybercrime referents to each court of appeal. It calls for a “significant” strengthening of the means of investigation services to fight against serious cyber delinquency.
Much of the report deals with training and public awareness of IT security issues. The CNSP therefore recommends that the public authorities develop a massive policy of informing and sensitizing the population on the risks incurred both in a private and professional capacity. It also advocates for the establishment of courses on cybersecurity in training courses in digital professions for initial and continuing training.
Tax incentives to stimulate budgets
On the business side, the report recommends introducing tax incentive measures so that they can more easily and quickly dedicate additional resources to their cybersecurity budget. This can take the form of over-amortization of investments in digital security or of a tax credit on expenses and investments made in this sector with national and European suppliers, write the parliamentarians.
The issue of paying the ransom must also be addressed, suggests the report, which notes that 20% of companies pay this amount. What maintains and strengthens the activity of hackers. He proposes to develop a mechanism for regulating the payment of ransoms to make it compulsory to notify the French authorities of a ransom demand and its processing.
Influencing change within the EU
At European level, parliamentarians want France to make the security and protection of the European digital space a priority when it chairs the Council of the European Union during the first half of 2022. Indeed, “in a A sector largely dominated by the United States, and tomorrow by China, Europe must find the ways and means of its autonomy in order to control its dependence on technologies and operators from outside Europe “, concludes the Commission.