Connect with us

Tech News

A coherent Labour cyber strategy depends on consistency

Published

on

From manifesto to material: What No. 10 needs to make reality

With a series of recent domestic cyber security incidents capturing headlines, including attacks on NHS suppliers, the Ministry of Defence, and the British Library, all eyes are on Sir Keir Starmer’s new government to make a positive impact on major cyber defenses.

While concrete policy changes may still be in the works, UK businesses are eager to see Labour’s manifesto pledges regarding the increasing threat from hostile states and the necessity for counter-terrorism strategies translated into action. Industry bodies like The Chartered Institute for IT (BCS) have already called for new legislation to prioritize protecting the UK from cyber attacks.

Although details are scarce, there have been some hints at Labour’s intentions. The Cyber Security and Resilience (CSR) Bill and the Digital Information and Smart Data (DISD) Bill were introduced in the King’s Speech, but lacked significant detail. Of particular concern was the absence of acknowledgement of digital identity security and its importance in addressing evolving security challenges.

Consistency will be crucial in implementing a successful cyber policy, whether through alignment between new Bills or with the regulatory frameworks of neighboring EU countries.

Labour’s current plans for cyber security

Among the 40 Bills announced during the King’s Speech, the CSR and DISD Bills stood out. While their introduction demonstrated a commitment to cyber security by the new government, the details were lacking. For example, the DISD Bill aims to establish a regulatory framework for digital identities, but the CSR Bill does not mention digital identity as part of its cyber security strategy. This inconsistency underscores the importance of digital identity in strengthening the UK’s cyber security, especially considering the prevalence of breaches involving compromised credentials.

See also  NYT Mini Crossword today: puzzle answers for Wednesday, July 31

The CSR Bill focuses on how regulation can safeguard digital services and supply chains, empowering regulators and mandating increased incident reporting. While a step in the right direction, the initial proposals lacked depth and specificity.

One glaring omission was the oversight of digital identity security, despite its critical role in combating breaches and identity-related incidents. Recognizing the significance of digital identity is essential, especially with the rise of AI-enabled identity fraud tactics like deepfakes and synthetic attacks.

While the DISD Bill shows a commitment to digital identity innovation and secure digital identity documents, the lack of consistency across both Bills raises concerns. Acknowledging the link between secure digital identity verification and cyber security protection is crucial for an effective strategy.

Looking ahead, the government must prioritize enabling secure digital identity verification and enhancing the UK Digital ID and Attributes Trust Framework to ensure robust identity verification services.

Importance of global alignment

While it’s essential for the UK to have its own cyber security legislation, global alignment is increasingly crucial in today’s interconnected world. Adhering to global standards and aligning with other regulatory regimes will be instrumental in the success of cyber technology defenses in the UK and beyond.

For instance, the government must consider the proposed European Digital Identity regulation in the context of the DISD Bill to ensure compatibility with European digital identity systems. This alignment is vital for facilitating cross-border activities for UK businesses and citizens. Similarly, aligning with the EU’s Digital Operations Resilience Act (DORA) is necessary to establish a common level of security and trust.

See also  Tennis and technology: How Wimbledon gave fans a GenAI experience

Labour’s ability to make pragmatic choices in collaborating with effective regimes across Europe can reduce compliance burdens and enhance security for British businesses.

So what’s next?

Given the central role of technology in society, cyber security challenges are here to stay. It’s imperative for governments and industries to work together to address these threats effectively.

For the CSR and DISD Bills to succeed, the new Labour government must ensure consistency in their approach to cyber security. Leveraging the expertise of the UK’s tech sector and engaging with industry stakeholders can enhance the efficacy and adoption of these measures. Collaboration with the EU is also vital to safeguard the UK’s digital future and align with international standards and industry requirements.

Aled Lloyd Owen, global policy director at Onfido, brings extensive experience in identity verification, AI, regulation, and compliance. His background in the civil service and advisory roles positions him well to navigate the evolving landscape of cyber security and digital identity.

Trending