The recent cyberattack against the European Commission will “certainly speed...

wanted to create damage, they were there to get important information, she said. The assault was “particularly sophisticated,” she said. The EU CERT is now expected to launch by the end of May, she said. The EU in general must also hasten its fight against cybercrime by strengthening the security of its networks, she said. The EC internal security strategy involves three main areas, she said: Law enforcement and judicial capacity-building; public-private cooperation to protect citizens; and boosting the capabilities of dealing with cyberattacks. One major component in the fight is the establishment of a European cybercrime center by 2013, she said. An upcoming EC feasibility study will examine what the center should focus on and where it could be hosted, Malmström said. The center is a good example of the kind of improved cooperation the EC wants among national CERTs, the European Network Information and Security Agency, law enforcement agencies and others, she said. A global response is also needed, she said. Europe’s main partner is the U.S., and there is a high-level EU-U.S. working group on cybersecurity that should deliver concrete results within a year, she said. Wednesday’s conference focused on the 10th anniversary of the Council of Europe cybercrime convention, a document Malmström said was influential in upcoming EC proposals for a directive on attacks against information systems. The EC text is largely based on the convention, and only adds provisions covering large-scale cyberattacks, an emerging trend not covered by the CoE, she said. Government ministers discussed the draft Tuesday, she said.