WHITE PAPERS 2020 [IN FRENCH]

CYBER INNOVATION PANORAMA

(French Only) - Les informations présentées dans ce panorama ont été collectées auprès des 50 sociétés candidates au Prix de la startup FIC 2020.

Ce prix, qui récompense édition après édition les entreprises les plus innovantes dans le domaine de la cybersécurité, est organisé
en partenariat avec Airbus CyberSecurity.






 

DATA BREACH report

(French Only) - Ce baromètre est animé par le Forum International de la Cybersécurité (FIC) en partenariat avec PwC et Bessé et avec la participation de la CNIL. Les données exploitées sont issues des publications de la CNIL sur la plate- forme data.gouv.fr.

Les violations de données personnelles, notifiées à la CNIL et publiées en open data, représentent une source d’enseignements précieux pour tous les organismes traitant des données personnelles.
Ce partage d’informations permet d’identifier quels sont, actuellement, les risques qui pèsent sur un organisme, sur les données qu’il traite et, finalement, sur les personnes concernées.
Anticiper les incidents en se basant sur des cas concrets permet de cibler plus facilement les éléments à améliorer, chez soi, afin de ne pas être exposé et de se retrouver, à son tour, victime d’une violation.

Valoriser ces informations profite au plus grand nombre et permet, in fine, de mieux protéger les données personnelles.

CLOUD ACT: A CLARIFICATION FOR ALL

CLOUD for Clarifying Lawful Overseas Use of Data, which can be translated by law to clarify the legal use of data outside the United States.

CLOUD is also this technology made up of various outsourced IT services. The cloud is Hexatrust's second leg with cybersecurity, its first.

Also, in view of this law, which legalizes a kind of US public-private partnership between US public authorities and American digital companies, it seemed to us necessary to bring our own understanding of the text, because this one may have effects up to Europe and France.

First of all, because many European companies entrust their data to an American service provider, particularly in the context of cloud computing services.

Then, because on the occasion of the surprise release of this law, a few weeks before the entry into force of the RGPD 1 on May 25, 2018, few were the comments on the CLOUD ACT in France. Worse still, some of these comments meant to explain this text of the law, did not say the whole reality of the text. However, the association Hexatrust has always been this place where speech could freely expose itself, to carry our values ​​and ambitions of a European digital autonomy.
 
 

UNDERSTANDING THE PROTECTION OF PERSONAL DATA IN SUBCONTRACTING RELATIONSHIPS

Monitoring the compliance of subcontractors is an important issue for organizations that entrust personal data to service providers. In this context, the challenge is to comply with the regulations on the protection of personal data while preserving the quality of relations with its partners.

The problems will not be the same depending on whether these subcontractors are major players in digital services, SMEs or start-ups. The number of service providers can range from 10 to more than 100 depending on the size of the organization.

Managing these subcontractors relationships, particularly with respect to personal data, can be particularly complex, cumbersome and costly for the organization. It is therefore necessary to consider how to prioritise actions, particularly in relation to the risks involved.
 
 
 

Cybersécurité des Infrastructures Critiques : l’exemple des Smart Grids

Today, the cybersecurity of Smart Grids is a key element to ensure the overall security of our global energy systems.

This white paper provides an in-depth review of the current state of affairs on this topic. Smart Grid infrastructures must connect generation resources to energy distribution and consumption networks in a world where scientific and industrial innovation coexist with intensified international economic competition, the looming specter of cyber warfare, complex diplomatic and financial issues, as well as successive waves of over digitalization driving formerly closed networks to interconnect, creating systems with increasingly blurred boundaries.

 
 
 

An event
organized by

      

With the support of


Last editions