Following a French and Spanish initiative within the framework of the NIS cooperation group, 23 Member States, ENISA and the European Commission are gathering for the first time at high level in Paris on July 2 and 3, 2019 for an exercise called Blue OLEx 2019. On this occasion, Guillaume Poupard, Director General of ANSSI, and his European counterparts will deepen the voluntary cooperation at an operational level in case of cyber crisis.
The OpenCTI project (Open Cyber Threat Intelligence) is a platform meant for processing and sharing knowledge for cyber threat intelligence purposes. It has been developed by the French national cybersecurity agency (ANSSI) along with the CERT-EU (Computer Emergency Response Team of the European Union). It was initially designed to develop and facilitate ANSSI’s interactions with its partners. Today, the platform has been fully released in open source and made available to the entire cyber threat intelligence community, in order to allow the actors to structure, store, organize, visualize and share their knowledge.
The second edition of the “Common situational picture” goes deeper in the analysis ANSSI and its counterpart in Germany, the BSI, have shared this past year on malicious activities associated to crypto mining and Artificial Intelligence. This joint report is yet another sign of the fruitful cooperation between the two countries, furthermore mirrored on a greater scale by the signature on the 22nd of January 2019 of a bilateral treaty on a level of the Élysée Treaty signed 55 years ago.
Active Directory is a prime target in mostly all cyberattacks, and attackers often attempt to gain Domain Admin privileges and maintain their access. It is therefore crucial for security teams to monitor the changes occurring on Active Directory. ANSSI presented at the Amsterdam 2019 FIRST Technical Colloquium a forensic tool which aim is to create a timeline of Active Directory changes with replication metadata.
SPARTA is a new Cybersecurity Competence Network supported by Europe’s H2020 Program. It aims to coordinate and develop the implementation of high-level research and innovation in digital security, in order to strengthen the strategic autonomy of the European Union. The SPARTA consortium assembles, for the first time, 44 actors from more than 14 Member States, bringing together the expertise of different kind of stakeholders, be they research institutes, private organisations or national authorities, including ANSSI.
Rust is an open source programming language which combines security, modernity and performance. As well, it is gradually being adopted in a large number of projects. To support developers, ANSSI offers a new "Guide to develop secure applications with Rust". This guide is intended to be a living document and it’s open to all contributions from the community. The object of this document is to provide hints and recommendations for secure applications development using the Rust programming language, that allow users to benefits of the good level of trust the Rust language already provides.
On December 3-4, a delegation from ANSSI attended a conference in Vienna hosted by the Austrian Presidency of the European Union, as the concluding event of the ‘EE-BG-AT’ (Estonia-Bulgaria-Austria) Trio Presidency. The purpose of the conference was to take stock of the developments and achievements of the Trio Presidency Cybersecurity Work Programme, and to raise technical and political awareness of cyber security in Europe and among decision-makers.
From the 12th to the 14th November the Internet Governance Forum (IGF) annual meeting took place in Paris. On the theme of Internet of Trust, this meeting gathered various attendees from different nationalities and with different backgrounds. It was an opportunity for France to present its commitment and vision for a secured and stable cyberspace. The Agence Nationale de la Sécurité des Systèmes d'Information (ANSSI) shares and develops this vision in its cyberdefense strategy, on both national and international side.
A new step is taken toward the implementation of the NIS Directive with the identification of a first wave of operators of essential services (OES). These new stakeholders provide an essential service whose interruption would have a significant impact on the functioning of the economy or the society. As part of a progressive and qualitative approach, the Agence nationale de la sécurité des systèmes d'information’s (ANSSI) main focus is to assist OES in the implementation of this cybersecurity framework designed to ensure their protection.
As part of the European cybersecurity month (ECSM), France chose to use humor and art as a way to raise awareness about cybersecurity.
For this edition, the French government is yet again launching an ambitious awareness campaign, side by side with a dozen institutional partners: national authorities, associations, professional organizations. Events, cyber awareness kit, videos as well as an original collection of comic strips, find all the activities organized in France this year around the same moto: Cybersecurity is a shared responsibility!
ANSSI has developed a multi-level secure operating system called CLIP OS, to address the needs of the administration. Based on a Linux kernel and managing information of several confidentiality levels. CLIP OS is now available in Open Source as part of a collaborative development project.
During its official visit to Singapore on September, 17th and 18th ANSSI will advocate for a collective response to today’s challenges . The French cybersecurity and cyberdefence agency is convinced that addressing cybersecurity challenges in an increasingly large and complex cyberspace requires cooperation among all.
ANSSI and its counterpart in Germany, the BSI, have shared years of intense and regular cooperation in order to strengthen the cybersecurity in France, Germany and within the whole European digital space. The “Common situational picture” is the first joint report on a shared threat for companies and citizens across the border: malicious activities associated to ransomware and crypto mining.
The Government of the French Republic and the Government of Australia and have signed on 2 May 2018 a Letter of Intent to develop and sustain their cooperation in the cyber realm. The document set out a range of orientations for France and Australia to take forward in fields like information sharing, incident response or critical infrastructures protection.
Adopted on July 2016, the European Network and Information System Security (NIS) Directive – known as the “NIS Directive” aims at raising the level of cybersecurity preparedness and response in the European Union. On 15 February 2018, the French Parliament voted in favour of the legislative proposal, thus making an important step towards the full transposition into France’s national law.
The Agence nationale de la sécurité des systèmes d’information (ANSSI) launches the « security Visa », a brand designed to highlight the French approach to qualification and certification of security solutions. During his press conference at the International cybersecurity forum (FIC), Guillaume Poupard, Director of ANSSI, will present for the first time the security Visa.
Nis directive, the European Commission "cyber package"... 2018 will be a most decisive year at the European level. As the national authority in cybersecurity and cyberdefence, ANSSI will continue to take actively part in international negotiations and to liaise with its foreign counterparts, taking benefit from national experiences in many domains (political, regulatory, technical, etc.).
The European Commission (EC) presented, on the 13th of September 2017, a setof measures related to cybersecurity - known as the ‘cybersecurity package’ - which consists of a roadmap regarding digital security for the European Union.
On September 14-15 a delegation from ANSSI attended a conference hosted in Tallinn by the Estonian presidency of the European Union on the current cyber threat landscape and ways for safeguarding the digital single market.
The Estonian presidency of the European Union will be hosting on September 14-15 a conference on the current cyber threat landscape and ways for safeguarding the digital single market.
For the 5th edition of European cybersecurity month, France is launching an ambitious program to raise awareness about cybersecurity issues and to provide useful recommendations toward a large audience (companies, administrations, students…).
The TLS* protocol is one of the most widespread solutions for protecting network traffic. The new TLS guide is intended for all audiences wishing to become familiar with (or interact with) this protocol.
ANSSI & BSI have been working together for several years to strengthen the cybersecurity in both countries as well as all over Europe. This new label is aimed at cloud service providers and will be announced today by the Director General of ANSSI and the President of BSI.
This guide presents simple rules to be implemented, to reduce the risks and threats or limit their impact when going abroad with your telephone, tablet or laptop computer.
Coordinated by Enisa2, Cyber Europe is the largest and most comprehensive EU cyber-security exercise up to date. All 28 Member States, as well as Switzerland and Norway (EFTA)3, were to face coordinated cyber-attacks during two days.
On 7 October 2016, ANSSI, represented by its General Director Guillaume Poupard, has been elected for one year as vice-chair of the Board of ECSO (European Organisation for CyberSecurity), the European association created in June 2016 as part of the launch of the public-private partnership on cybersecurity (PPP).
Information systems and computer networks have gradually invaded the world of shipping and are now ubiquitous on ships: navigation systems, computers used by the crew, cargo loading management systems, platform management systems (propulsion, electricity, fluids), etc.
Along with its national and European partners, ANSSI will participate actively in the EU's annual advocacy campaign in October so as to raise awareness on digital security related issues and to promote good practices to every users for their daily activities online.
On 5 July 2016, ECSO and the European Commission signed the contract launching the public private partnership, with a budget of € 450 million from the EU research and Innovation program H2020.
Concluding three years of negotiations, the European Network and Information System Security (NIS) Directive – known as the “NIS Directive” – was adopted on 6 July 2016 and published on 19 July on the Official Journal of the European Union (EU).
The Open Information Security Foundation (OISF) and Suricata are proud to announce that the Agence nationale de la sécurité des systèmes d’information (ANSSI) has joined as a Gold level consortium member.
The 10th session of the AfricaCERT’s, the annual event of the African association coordination for the emergence of a community of CERTs in Africa, was held in Gaborone, Botswana, in June. Once again, as a partner, the ANSSI was invited to participate for the event.
Jean-Baptiste Demaison (ANSSI) is elected Chair of the Management Board of the European Network and Information Security Agency (ENISA).
ANSSI has been invited to Poland in order to share its experience of cybersecurity and more specifically to give its feedback on the French approach to Critical Infrastructure Protection (CIP).
In the continuity of the objective announced by France in its National strategy for digital security in October 2015, France and Germany affirmed at the highest level during the Franco-German Council of Ministers of April 7th, 2016.
Guillaume Poupard for “The European Files : Cybercrime, cybersecurity and cyberdefence in Europe” - January 2016 - n°40
You are in charge of your organisation's information systems security? More generally, you are responsible for the smooth operation of its IT systems? This guide is for you.
Set up by ANSSI in 2011, the Internet Resilience Observatory aims to improve the knowledge of the French Internet by examining the critical technologies required for its operation.
The French national digital security strategy, announced October 16th, 2015 by French Prime Minister Manuel Valls, is designed to support the digital transition of French society. It is also an unprecedented impulse that places France as a leader in promoting a road map for European digital strategic autonomy.