Data Protection and Cybersecurity Certification Activities and Schemes in the Energy Sector

Publikation: Beitrag in FachzeitschriftArtikelForschungPeer-Review

Autoren

  • Iheanyi Samuel Nwankwo
  • Marc Stauch
  • Panagiotis Radoglou-Grammatikis
  • Panagiotis Sarigiannidis
  • George Lazaridis
  • Anastasios Drosou
  • Dimitrios Tzovaras

Organisationseinheiten

Externe Organisationen

  • University of Western Macedonia
  • Center For Research And Technology - Hellas
Forschungs-netzwerk anzeigen

Details

OriginalspracheEnglisch
Aufsatznummer965
FachzeitschriftElectronics
Jahrgang11
Ausgabenummer6
PublikationsstatusVeröffentlicht - 21 März 2022

Abstract

Cybersecurity concerns have been at the forefront of regulatory reform in the European Union (EU) recently. One of the outcomes of these reforms is the introduction of certification schemes for information and communication technology (ICT) products, services and processes, as well as for data processing operations concerning personal data. These schemes aim to provide an avenue for consumers to assess the compliance posture of organisations concerning the privacy and security of ICT products, services and processes. They also present manufacturers, providers and data controllers with the opportunity to demonstrate compliance with regulatory requirements through a verifiable third-party assessment. As these certification schemes are being developed, various sectors, including the electrical power and energy sector, will need to access the impact on their operations and plan towards successful implementation. Relying on a doctrinal method, this paper identifies relevant EU legal instruments on data protection and cybersecurity certification and their interpretation in order to examine their potential impact when applying certification schemes within the Electrical Power and Energy System (EPES) domain. The result suggests that the EPES domain employs different technologies and services from diverse areas, which can result in the application of several certification schemes within its environment, including horizontal, technological and sector-specific schemes. This has the potential for creating a complex constellation of implementation models and would require careful design to avoid proliferation and disincentivising of stakeholders.

ASJC Scopus Sachgebiete

Zitieren

Data Protection and Cybersecurity Certification Activities and Schemes in the Energy Sector. / Nwankwo, Iheanyi Samuel; Stauch, Marc; Radoglou-Grammatikis, Panagiotis et al.
in: Electronics, Jahrgang 11, Nr. 6, 965, 21.03.2022.

Publikation: Beitrag in FachzeitschriftArtikelForschungPeer-Review

Nwankwo, IS, Stauch, M, Radoglou-Grammatikis, P, Sarigiannidis, P, Lazaridis, G, Drosou, A & Tzovaras, D 2022, 'Data Protection and Cybersecurity Certification Activities and Schemes in the Energy Sector', Electronics, Jg. 11, Nr. 6, 965. https://doi.org/10.3390/electronics11060965
Nwankwo, I. S., Stauch, M., Radoglou-Grammatikis, P., Sarigiannidis, P., Lazaridis, G., Drosou, A., & Tzovaras, D. (2022). Data Protection and Cybersecurity Certification Activities and Schemes in the Energy Sector. Electronics, 11(6), Artikel 965. https://doi.org/10.3390/electronics11060965
Nwankwo IS, Stauch M, Radoglou-Grammatikis P, Sarigiannidis P, Lazaridis G, Drosou A et al. Data Protection and Cybersecurity Certification Activities and Schemes in the Energy Sector. Electronics. 2022 Mär 21;11(6):965. doi: 10.3390/electronics11060965
Nwankwo, Iheanyi Samuel ; Stauch, Marc ; Radoglou-Grammatikis, Panagiotis et al. / Data Protection and Cybersecurity Certification Activities and Schemes in the Energy Sector. in: Electronics. 2022 ; Jahrgang 11, Nr. 6.
Download
@article{7c49517e05a64cc9ac1f29178a238480,
title = "Data Protection and Cybersecurity Certification Activities and Schemes in the Energy Sector",
abstract = "Cybersecurity concerns have been at the forefront of regulatory reform in the European Union (EU) recently. One of the outcomes of these reforms is the introduction of certification schemes for information and communication technology (ICT) products, services and processes, as well as for data processing operations concerning personal data. These schemes aim to provide an avenue for consumers to assess the compliance posture of organisations concerning the privacy and security of ICT products, services and processes. They also present manufacturers, providers and data controllers with the opportunity to demonstrate compliance with regulatory requirements through a verifiable third-party assessment. As these certification schemes are being developed, various sectors, including the electrical power and energy sector, will need to access the impact on their operations and plan towards successful implementation. Relying on a doctrinal method, this paper identifies relevant EU legal instruments on data protection and cybersecurity certification and their interpretation in order to examine their potential impact when applying certification schemes within the Electrical Power and Energy System (EPES) domain. The result suggests that the EPES domain employs different technologies and services from diverse areas, which can result in the application of several certification schemes within its environment, including horizontal, technological and sector-specific schemes. This has the potential for creating a complex constellation of implementation models and would require careful design to avoid proliferation and disincentivising of stakeholders.",
keywords = "certification, cybersecurity, data protection, energy, Energy, Data protection, Cybersecurity, Certification",
author = "Nwankwo, {Iheanyi Samuel} and Marc Stauch and Panagiotis Radoglou-Grammatikis and Panagiotis Sarigiannidis and George Lazaridis and Anastasios Drosou and Dimitrios Tzovaras",
note = "Funding Information: Funding: This project has received funding from the European Union{\textquoteright}s Horizon 2020 research and innovation programme under grant agreement No. 833955 (SDN-microSENSE).",
year = "2022",
month = mar,
day = "21",
doi = "10.3390/electronics11060965",
language = "English",
volume = "11",
number = "6",

}

Download

TY - JOUR

T1 - Data Protection and Cybersecurity Certification Activities and Schemes in the Energy Sector

AU - Nwankwo, Iheanyi Samuel

AU - Stauch, Marc

AU - Radoglou-Grammatikis, Panagiotis

AU - Sarigiannidis, Panagiotis

AU - Lazaridis, George

AU - Drosou, Anastasios

AU - Tzovaras, Dimitrios

N1 - Funding Information: Funding: This project has received funding from the European Union’s Horizon 2020 research and innovation programme under grant agreement No. 833955 (SDN-microSENSE).

PY - 2022/3/21

Y1 - 2022/3/21

N2 - Cybersecurity concerns have been at the forefront of regulatory reform in the European Union (EU) recently. One of the outcomes of these reforms is the introduction of certification schemes for information and communication technology (ICT) products, services and processes, as well as for data processing operations concerning personal data. These schemes aim to provide an avenue for consumers to assess the compliance posture of organisations concerning the privacy and security of ICT products, services and processes. They also present manufacturers, providers and data controllers with the opportunity to demonstrate compliance with regulatory requirements through a verifiable third-party assessment. As these certification schemes are being developed, various sectors, including the electrical power and energy sector, will need to access the impact on their operations and plan towards successful implementation. Relying on a doctrinal method, this paper identifies relevant EU legal instruments on data protection and cybersecurity certification and their interpretation in order to examine their potential impact when applying certification schemes within the Electrical Power and Energy System (EPES) domain. The result suggests that the EPES domain employs different technologies and services from diverse areas, which can result in the application of several certification schemes within its environment, including horizontal, technological and sector-specific schemes. This has the potential for creating a complex constellation of implementation models and would require careful design to avoid proliferation and disincentivising of stakeholders.

AB - Cybersecurity concerns have been at the forefront of regulatory reform in the European Union (EU) recently. One of the outcomes of these reforms is the introduction of certification schemes for information and communication technology (ICT) products, services and processes, as well as for data processing operations concerning personal data. These schemes aim to provide an avenue for consumers to assess the compliance posture of organisations concerning the privacy and security of ICT products, services and processes. They also present manufacturers, providers and data controllers with the opportunity to demonstrate compliance with regulatory requirements through a verifiable third-party assessment. As these certification schemes are being developed, various sectors, including the electrical power and energy sector, will need to access the impact on their operations and plan towards successful implementation. Relying on a doctrinal method, this paper identifies relevant EU legal instruments on data protection and cybersecurity certification and their interpretation in order to examine their potential impact when applying certification schemes within the Electrical Power and Energy System (EPES) domain. The result suggests that the EPES domain employs different technologies and services from diverse areas, which can result in the application of several certification schemes within its environment, including horizontal, technological and sector-specific schemes. This has the potential for creating a complex constellation of implementation models and would require careful design to avoid proliferation and disincentivising of stakeholders.

KW - certification

KW - cybersecurity

KW - data protection

KW - energy

KW - Energy

KW - Data protection

KW - Cybersecurity

KW - Certification

UR - http://www.scopus.com/inward/record.url?scp=85126720301&partnerID=8YFLogxK

U2 - 10.3390/electronics11060965

DO - 10.3390/electronics11060965

M3 - Article

VL - 11

JO - Electronics

JF - Electronics

SN - 2079-9292

IS - 6

M1 - 965

ER -