Croatia (HR)

Current status:

Croatia adopted a national strategy on cybersecurity on 7th October 2015. The Office of the National Security Council is responsible for this document.  

Principles:

  • Comprehensive nature of the approach to cyber security by covering cyberspace, infrastructure and users under the Croatian jurisdiction (citizenship, registration, domain, address).
  • Integration of activities and measures arising from different cyber security areas and their interconnection and supplementation in order to create a safer cyberspace.
  • Proactive approach through constant adjustment of activities and measures, and adequate periodic adaptation of the strategic framework they stem from.
  • Strengthening resilience, reliability and adjustability by applying universal criteria of confidentiality, integrity and availability of certain groups of information and recognised social values, in addition to complying with the appropriate obligations related to the protection of privacy, as well as confidentiality, integrity and availability for certain groups of information, including the implementation of appropriate certification and accreditation of different kinds of devices and systems, and also business processes in which such information is used.

Main goals:

  • Systematic approach in the application and enhancement of the national legal framework
  • Pursuing activities and measures to increase the security, resilience and reliability of cyberspace
  • Establishing a more efficient mechanism of information sharing
  • Raising security awareness
  • Stimulating the development of harmonised education programmes
  • Stimulating the development of e-services
  • Stimulating research and development

Systematic approach to international cooperation

National Cyber Security Strategy

Year of adoption Date of implementation: 7 October 2015 NATIONAL CYBER SECURITY STRATEGY OF THE REPUBLIC OF CROATIA
Updates and revisions No updates at the moment.
Implementation and monitoring

For the purpose of reviewing and improving the implementation of the Strategy and Action plan for its implementation, the Government of the Republic of Croatia will establish the National Cyber Security Council (hereinafter “the National Council”), which will:

- Systematically monitor and coordinate the implementation of the Strategy and discuss all issues relevant to cyber security,

- Propose measures to improve the implementation of the Strategy and Action plan for the implementation of the Strategy,

- Propose the organisation of national exercises in the area of cyber security,

- Issue recommendations, opinions, reports and guidelines related to the implementation of the Strategy and Action plan, and

- Propose amendments to the Strategy and Action plan or propose the adoption of a new Strategy and action plans, in accordance with the new requirements.

 

Based on the requirements described in the area of cyber crisis management, the National Council will:

- Address issues essential for cyber crisis management and propose measures for higher efficiency,

- Analyse the reports on the state of security submitted by the Operational and Technical Cyber Security Coordination Group,

- Issue periodic assessments of the state of security

- Define cyber crisis action plans,

- Issue programmes and action plans for the Operational and Technical Cyber Security Coordination Group and direct its work.

 

To ensure the support for the work of the National Council, the Government of the Republic of Croatia will establish the Operational and Technical Cyber Security Coordination Group, which will:

- Monitor the state of security in national cyberspace for the purpose of detecting threats that may result in cyber crisis.

- Issue reports on the state of cyber security.

- Propose cyber crisis action plans.

- Perform other duties according to the issued programmes and activity plans.

Legal conditions

Specific legislation on cybercrime has been enacted through the following instruments:

- Croatian Criminal Law (January 2013).

Specific legislation and regulation related to cybersecurity has been enacted through the following instruments:

- Law on Information Security 2007 - Law on Protection of Personal Data 2003.

- Law on Ratification of conventions on cybercrime 2002 - Law on Electronic Document.

- Law on the Security and Intelligence System 2006 - Law on Security validation.

- Ordinance on the manner and deadlines for the implementation of measures for protection safety and integrity of networks and services 2012.

- Regulation on Information Security Measures 2008.

Operational capacities

The Information Systems Security Bureau (ZSIS) is the national competent authority for network and information security for Croatia, as stated in the Act on Information Security 2007. It operates under the Office for National Security.

Croatia has two established computer emergency response teams (CERTs). CARNet, the National CERT (website in Croatian and English), and the ZSIS CERT (website in English) established in 2009 is responsible for coordinating security and incident response measures for parties that use a Croatian IP address or .hr domain. The Information Systems Security Bureau’s ZSIS CSI (Website in English) has jurisdiction over Croatian government institutions.

Since 12 July 2009 CERT ZSIS is a full member of Trusted Introducer, which gathers mostly European CERT/CSIRT teams and represents a platform for exchange of knowledge and experience in handling computer security incidents. Service Trusted Introducer is held by TF-CSIRT working group within a scope of the European academic and research network GÉANT.

Since 27 June 2012 CERT ZSIS is a full member of FIRST organization, a world's association of CERT/CSIRT teams which, as Trusted Introducer, represents a platform for promotion of knowledge on computer security incidents management in a wider international environment.

Public-private partnerships

There is no defined public-private partnership for cybersecurity in Croatia.

CARNet, the National CERT, has jurisdiction over all parties that use a Croatian IP address and will liaise with private organisations for the purpose of cybersecurity incident prevention and incident response.

The Croatian Regulatory Authority for Network Industries (HAKOM) (website also in English), itself an independently-run public authority, liaises with the private sector in its support role of the communication industry.

RACVIAC — Centre for Security Cooperation (website also in English) is a representative body for the defence and security sectors in south-eastern Europe, based in Croatia.

There are no new public-private partnerships being planned in Croatia.

Sector-specific cyber security plans

Sector-specific security priorities have not been defined. Sector-specific risk assessments have not been released, as of August 2014.

The Croatian Regulatory Authority for Network Industries HAKOM (website also in English) is a public authority that supports the communication industry. HAKOM liaises with the private sector in the course of its duties.

Risk assessment plan No specific risk-assessment plan is established, though in the Regulation on Information Security Measures 2008, pursuant to Article 7 of the Act on Information Security 2007 it is stated that a continuous process of risk assessment is required for classified information, which determines the appropriate degree of the security measures applied.
Progress measures No information currently available.
Date of last WISER analysis September 2016

 

Current status: NIS Directive and national CERTs/CSIRTs

Computer security incident response teams (CSIRTs) Croatia has two established computer emergency response teams (CERTs). The National CERT (website in Croatian and English), and the ZSIS CERT (website in English) established in 2009 is responsible for coordinating security and incident response measures for parties that use a Croatian IP address or .hr domain. The Information Systems Security Bureau’s ZSIS CSI (Website in English) has jurisdiction over Croatian government institutions.
Best practices:

N.A.

Monitoring system

Not currently known.

Report an incident

Incidents can be submitted by e-mail at the address ncert@cert.hr. The report must contain:

  • Original log files (from server or network devices) where can be seen unwanted network activities and what is the type of incident.
  • Your description of an incident.
  • Date, exact time (possibly by minute and second) and time zone.
  • IP address and/or computer name of attack target.
  • IP address and/or computer name of attack source.
  • Additional files connected to the incident like e-mail with its header, malicious web URL and other.
Acknowledging report is sent informing that incident report has been received.
Languages Croatian/English
Date of last WISER analysis September 2016

 

Contact us for more info