Skip to main content
Disciplines
Automotive
Business IT + Informatics
Construction + Real Estate
Electrical Engineering + Electronics
Energy + Sustainability
Insurance + Risk
Finance + Banking
Management + Leadership
Marketing + Sales
Mechanical Engineering + Materials
Events
DE
EN
Books
Journals
Start single access now
Request access for companies
EXTENDED SEARCH
Log in
Top

Hint

Swipe to navigate through the chapters of this book

Published in:
Introduction Read chapter Read first chapter

2022 | OriginalPaper | Chapter

EU-South Korea Cooperation on Cybersecurity, Data Protection and Emerging Technologies

Authors : George Christou, Ji Soo Lee

Published in: Cybersecurity Policy in the EU and South Korea from Consultation to Action

Publisher: Springer International Publishing

Log in

Abstract

The European Union (EU) and the Republic of Korea (South Korea) are considered normatively like-minded in the cyber and digital sphere. They face shared threats, common concerns and common interests relating to cybersecurity, data protection and emerging technologies and work bilaterally and multilaterally to achieve a resilient, stable and secure global cyber ecosystem. This chapter interrogates how cooperation and collaboration have evolved between the EU and South Korea to address shared threats. It is argued that whilst there is a high degree of convergence across the issue areas explored, divergence still exists and cooperation can be significantly improved beyond dialogue, information sharing and trust-building.

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

  • über 102.000 Bücher
  • über 537 Zeitschriften

aus folgenden Fachgebieten:

  • Automobil + Motoren
  • Bauwesen + Immobilien
  • Business IT + Informatik
  • Elektrotechnik + Elektronik
  • Energie + Nachhaltigkeit
  • Finance + Banking
  • Management + Führung
  • Marketing + Vertrieb
  • Maschinenbau + Werkstoffe
  • Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

  • über 67.000 Bücher
  • über 390 Zeitschriften

aus folgenden Fachgebieten:

  • Automobil + Motoren
  • Bauwesen + Immobilien
  • Business IT + Informatik
  • Elektrotechnik + Elektronik
  • Energie + Nachhaltigkeit
  • Maschinenbau + Werkstoffe




 

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

  • über 67.000 Bücher
  • über 340 Zeitschriften

aus folgenden Fachgebieten:

  • Bauwesen + Immobilien
  • Business IT + Informatik
  • Finance + Banking
  • Management + Führung
  • Marketing + Vertrieb
  • Versicherung + Risiko




Jetzt Wissensvorsprung sichern!

inform now
previous chapter EU Cyber Diplomacy: Value- and Interest-Driven Foreign Policy with New Focus on the Indo-Pacific
next chapter Cyber Offence Dominance, Regional Dynamics, and Middle Power–led International Cooperation
Footnotes
1
European Commission and High Representative of the Union for Foreign Affairs and Security Policy (2020), Joint Communication to the European Parliament and the Council, “The EU’s Cybersecurity Strategy for the Digital Decade”, Brussels, 16.12.2020 JOIN (2020) 16 final, 19.
 
2
National Security Strategy, chapter VII.2/Strengthening the capacity to address cybersecurity threat, December 2018.
 
3
See also Hannes Ebert and Laura Groenendaal, “Cyber Resilience and Diplomacy in the Republic of Korea: Prospects for EU Cooperation”, Digital Dialogue, EU Cyber Direct (August 2020), 3.
 
4
George Christou and Ji Soo Lee, “EU–ROK cooperation on cyber-security and data protection” in EU-Korea Security Relations, ed. Nicola Casarini (London: Routledge, 2021), 55.
 
5
European Commission, “Joint press release: Republic of Korea -EU Leaders’ video conference meeting”, June 30, 2020. https://​ec.​europa.​eu/​commission/​presscorner/​detail/​en/​IP_​20_​1226.
 
6
Michael Reiterer, “The 10th anniversary of the EU-Korea Strategic partnership”, VUB-KF Chair, Policy Brief, Issue 2020/09, July 2020. https://​www.​korea-chair.​eu/​wp-content/​uploads/​2020/​07/​KFVUB_​Policy-Brief-2020-09.​pdf.
 
7
Brigitte Dekker and Maaike Okano-Heijmans, “The Implications of China’s Techno-Nationalism for the European Union and the Republic of Korea, Europe and the World Articles, Clingendael Magazine, 27 October 2020. https://​www.​clingendael.​org/​publication/​eu-republic-korea-digital-connectivity-unitedwe-must-stand.
 
8
Elaine Fahey “The EU’s cybercrime and cyber-security rulemaking: mapping the internal and external dimensions of EU security”, European Journal of Risk Regulation, 5, Issue 1 (2014), 46–60.
 
9
Helena Carrapico and Benjamin Farrand, “Discursive continuity and change in the time of Covid-19: the case of EU cybersecurity policy”, Journal of European Integration, 42, Issue 8 (2020), 1111–1126.
 
10
George Christou “The Collective Securitisation of EU Cybersecurity”, West European Politics, 42, Issue 2 (2019), 278–301.
 
11
European Commission “A Digital Agenda for Europe” (No.COM (2010)245 Final/2), Brussels; European Commission “The EU internal Security Strategy in Action: Five Steps Towards a More Secure Europe” (No. COM (2010) 673 Final), Brussels.
 
12
European Commission “European principles and guidelines for Internet resilience and stability”, March 2011. http://​ccpic.​mai.​gov.​ro/​docs/​guidelines_​internet_​fin.​pdf.
 
13
European Commission and High Representative of the European Union for Foreign Affairs and Security Policy/Vice-President of the Commission, “Cybersecurity Strategy of the EU: An Open, Safe and Secure Cyberspace”, Brussels, 7 February 2013.
 
14
George Christou “Cybersecurity in the European Union: Resilience and Adaptability in Governance Policy” (Houndmills, Basingstoke: Palgrave Macmillan, 2016).
 
15
On cybercrime, the main piece of legislation was the 2013 Directive on Attacks against Information Systems, which member states had to transpose into domestic law by 2015. The Directive (EU) 2016/1148 was introduced to further bolster and ensure enhanced the security of network and information systems within the European Union.
 
16
It is now closely aligned with the proposal for the Critical Entities Resilience Directive which enhances the NIS 2 Directive by imposing new security requirements on to companies that provide essential services as well as sector-specific Regulations such as the Digital Operational Resilience Act (DORA) for the financial sector.
 
17
ENISA, Threat Landscape Report, 2020. https://​www.​enisa.​europa.​eu/​topics/​threat-risk-management/​threats-and-trends?​tab=​details EUROPOL, Internet Organised Crime Threat Assessment, 2020.
 
19
European Commission. “European agenda on security”, 28 April, COM (2015) 185 final. European Commission and European External Action Service. Joint Communication to the European Parliament and the Council, Joint Framework on Countering Hybrid Threats: A European Union response. 6 April, JOIN (2016) 18 final. Council of the European Union “Shared Vision, Common Action: A Stronger Europe. A Global Strategy for the EU’s Foreign and Security Policy” (2016). European Commission, Communication from the Commission to the European Parliament, The European Council, The Council, The European Economic and Social Committee and the Committee of the Regions on the “EU Security Union Strategy”, Brussels, 24.7.2020, COM (2020) 605 final.
 
20
Council of the European Union. “Council Conclusions on Shaping Europe’s Digital Future (No. OJ 2020C: 202); Council of the European Union. “Council Conclusions on Covid-19 (No.” In OJ C, 57/4). European Commission. “Shaping Europe’s Digital Future”; European Commission. “A European Strategy for Data” (No. COM (2020) 66); European Commission. “A New Industrial Strategy for Europe” (No. COM (2020) 102 F).
 
21
Council of Ministers, ‘Council Conclusions on Cyber Diplomacy’, 6122/15, Brussels, 11 February 2015.
 
22
Council Decision 2019/797; Council Regulation 2019/796.
 
23
Regulation (EU) 2019/881 of the European Parliament and of the Council of 17 April 2019 on ENISA (the European Union Agency for Cybersecurity) and on information and communications technology cybersecurity certification and repealing Regulation (EU) No 526/2013 (Cybersecurity Act) (Text with EEA relevance) PE/86/2018/REV/1.
 
24
European Commission and High Representative of the Union for Foreign Affairs and Security Policy. Joint communication to the European Parliament and the Council, Resilience, Deterrence and Defence: Building strong cybersecurity for the EU, JOIN/2017/0450 final.
 
25
For example, the EU’s proposed Digital Services Act and Digital Markets Act.
 
26
European Commission and High Representative 2013, 4.
 
27
European Commission. “Proposal for a regulation of the European Parliament and of the Council on the protection of individuals with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation)”, COM (2012) 11 final, Brussels, 25.1.2012, 2.
 
28
Due to delays, however, the Regulation is not likely to take effect until 2022.
 
29
European Commission. Communication from the Commission to the European Parliament, the Council, the European Economic and Social Committee and the Committee of the Regions, “A Digital Agenda for Europe”, COM (2010) 245, 19 May 2010.
 
30
Directive 2006/24/EC regulated data retention where data was generated or processed in connection with the provision of publicly available electronic communications services or of public communications networks.
 
31
European Commission and High Representative 2020, 8.
 
32
Margrethe Vestager, Executive Vice-President for a Europe fit for the Digital Age, “Answers to the European Parliament questionnaire to the Commissioner-designate”, 4–6. https://​ec.​europa.​eu/​commission/​commissioners/​sites/​default/​files/​commissioner_​ep_​hearings/​answers-ep-questionnaire-vestager.​pdf.
 
33
Margrethe Vestager, Executive Vice-President for a Europe fit for the Digital Age, “Europe fit for the Digital Age: Commission proposes new rules and actions for excellence and trust in Artificial Intelligence”, 2021. https://​digital-strategy.​ec.​europa.​eu/​en/​news/​europe-fit-digital-age-commission-proposes-new-rules-and-actions-excellence-and-trust-artificial.
 
34
Eve Gaumond, “Artificial intelligence Act: What is the EU Approach for AI?”, LAWFARE.
 
35
European Commission and High Representative 2020, 9.
 
37
Ebert and Groenendaal, “Cyber Resilience”, 8–9.
 
38
National Security Strategy (National Security Office, 2018), 103–104.
 
39
For example, communication networks of public institutions and infrastructures.; National Security Strategy, 103–105.
 
40
National Security Strategy, 103 and 105.
 
41
See National Cybersecurity Strategy (National Security Office, 2019).
 
42
National Cybersecurity Strategy, 12.
 
43
National Cybersecurity Basic Plan [국가 사이버안보 기본계획] (Republic of Korea [관계부처 합동], 2019), 11.
 
44
2021 National Cybersecurity White Paper (Korean version), (National Intelligence Service et al., May 2021), 21; Christou and Lee, “EU–ROK cooperation on cyber-security and data protection,” 68–69.
 
45
“Master Plan Implementation Plan: Master Plan”, Law & Policy, Personal Information Protection Commission, accessed 17 July 2021. https://​www.​pipc.​go.​kr/​eng/​user/​lgp/​pbp/​mlp/​masterPlan.​do.
 
46
Personal Information Protection Commission, “Master Plan”.
 
47
See 2020 Annual Report on Personal Information Protection (Personal Information Protection Commission, 2020), 51. https://​www.​pipc.​go.​kr/​np/​ebook/​2020Y_​report/​index.​html (accessed 17 July 2021).
 
48
Personal Information Protection Commission, “Master Plan”.
 
49
Personal Information Protection Commission, “Master Plan”.
 
50
Personal Information Protection Commission, “Master Plan”.
 
51
Master Plan [개인정보 보호 기본계획] (2021–2023), Personal Information Protection Commission, (November 2020), 27 and 31. available at https://​www.​pipc.​go.​kr/​np/​default/​page.​do?​mCode=​D050010010#LINK.
 
52
“Master Plan Implementation Plan: Implementation Plan”, Law & Policy, Personal Information Protection Commission, accessed 17 July 2021. Available at https://​www.​pipc.​go.​kr/​eng/​user/​lgp/​pbp/​mlp/​masterPlan.​do.
 
53
“Policy Information: Policy Tasks [정책정보: 국정과제],” Cheong Wa Dae [청와대], accessed 17 July 2021. https://​www1.​president.​go.​kr/​government-projects.
 
54
Cheong Wa Dae, “Policy Tasks”.
 
55
“A New Start towards A Leading Country in the Data Economy! [데이터 경제 선도국가로 향하는새로운 출발!],” (Press release, Office for Government Policy Coordination / Prime Minister’s Secretariat [보도자료, 국무조정실 국무총리비서실], 17 February 2021), 2, https://​www.​opm.​go.​kr/​flexer/​view.​do?​ftype=​hwp&​attachNo=​105133; “About PCFIR: Greetings,” Presidential Committee on the Fourth Industrial Revolution, accessed 7 August 2021. https://​www.​4th-ir.​go.​kr/​en/​greetings.
 
56
“About PCFIR: Overview,” Presidential Committee on the Fourth Industrial Revolution, accessed August 7, 2021, https://​www.​4th-ir.​go.​kr/​en/​overview; “About PCFIR: Greetings.”
 
57
“What is the Digital New Deal?” Welcome to – Korean Digital New Deal, Ministry of Science and ICT, accessed 6 August 2021. available at https://​digital.​go.​kr/​front/​main/​eng.​do#news.
 
58
Jae-ho Cheon, “Government Announces Korean New Deal 2.0, An Upgrade to Properly Reflect Changes,” (Press Releases, Ministry of Economy and Finance, 14 July 2021), 1. available at https://​english.​moef.​go.​kr/​pc/​selectTbPressCen​terDtl.​do?​boardCd=​N0001&​seq=​5173.
 
59
Jae-ho Cheon, “Korean New Deal 2.0”, 1–2.
 
60
George Christou and Michael Raska, “EU–ASIA Cybersecurity Cooperation: Paths and Patterns” in The European Union’s Security Relations with Asian Partners, Eds. Thomas Christiansen, Emil Kirchner and Tan See Seng (Springer, 2021); Ebert and Groenendaal, 5–8 and 29–30.
 
61
6th annual European Union – Republic of Korea Cyber Dialogue, European Commission, EURAXESS, 25/11/2020. https://​cdn4.​euraxess.​org/​worldwide/​south-korea/​6th-annual-european-union-%E2%80%93-republic-korea-cyber-dialogue.
 
62
Ebert and Groenendaal 2020, 31.
 
63
Christou and Lee, 69.
 
64
Christou and Raska, 210.
 
65
Ebert and Groenendaal 2020, “Cyber Resilience”, 31. See also: https://​www.​first.​org/​members/​teams/​.
 
66
Ebert, Ian Wallace, Laura Groenendaal, So Jeong Kim, and Dong Hee Kim, “EU-SOUTH KOREA Cyber Consultations: Resilience and Trust in Cyberspace”, EU Cyber Direct, German Marshal Fund, 16 December 2020. https://​www.​gmfus.​org/​publications/​eu-rok-consultations-resilience-and-trust-cyberspace.
 
67
Council of the European Union, Enhanced Security Cooperation in and with Asia, Council Conclusions, Brussels, 28 May 2018. https://​www.​consilium.​europa.​eu/​media/​35456/​st09265-re01-en18.​pdf.
 
68
For details see: Enhanced Security Cooperation in and with Asia project, https://​www.​giz.​de/​en/​worldwide/​87412.​html.
 
73
“Joint Statement by Commissioner Reynders and Yoon Jong In, Chairperson of the Personal Information Protection Commission of the Republic of Korea,” European Commission, 30 March 2021. https://​ec.​europa.​eu/​commission/​presscorner/​detail/​en/​statement_​21_​1506.
 
74
For example, see “Joint Press Statement by Mr. Lee Hyo-sung, Chairman of the Korea Communications Commission (KCC) and Mrs. Věra Jourová, Commissioner for Justice, Consumers and Gender Equality of the European Commission on the state of play of the adequacy dialogue” (1 June 2018).
 
75
European Commission, “Joint Statement by Reynders and Yoon”.
 
76
European Commission, “Joint Statement by Reynders and Yoon”.
 
77
Jong In Yoon (Chairperson of the PIPC) [윤종인 위원장], “Announcement of Conclusion of Discussions on Adequacy Decision between South Korea and the EU [한-EU 적정성 결정 논의 마무리 발표],” Republic of Korea Policy Briefing [대한민국 정책브리핑], 29 March 2021. https://​www.​korea.​kr/​news/​policyBriefingVi​ew.​do?​newsId=​156443808; Ebert and Groenendaal, “Cyber Resilience”, 30.
 
78
But the processing of personal credit information by commercial operators that are supervised by the PIPC is included in the scope of granting adequacy status in the initial finding. European Commission. “Draft Decision on the adequate protection of personal data by the Republic of Korea,” 14 June 2021, 2, 4, 27–31, 63–64, and 67. Available at https://​ec.​europa.​eu/​info/​files/​draft-decision-adequate-protection-personal-data-republic-korea_​en.
 
79
Jong In Yoon (Chairperson of the PIPC), “Conclusion of Discussions on Adequacy Decision”.
 
80
Jong In Yoon (Chairperson of the PIPC), “Conclusion of Discussions on Adequacy Decision”.
 
81
European Data Protection Board. “Opinion 32/2021 regarding the European Commission Draft Implementing Decision pursuant to Regulation (EU) 2016/679 on the adequate protection of personal data in the Republic of Korea, Version 1.0” Adopted on 24 September 2021, 4. Available at https://​edpb.​europa.​eu/​our-work-tools/​our-documents/​opinion-art-70/​opinion-322021-regarding-european-commission-draft_​en.
 
82
European Data Protection Board, “Opinion regarding the Draft”, 1 and 5–8.
 
83
European Commission, “Commission Implementing Decision”, C(2021) 9316 final, 17 December 2021; at https://​ec.​europa.​eu/​info/​sites/​default/​files/​1_​1_​180366_​dec_​ade_​kor_​new_​en.​pdf.
 
84
European Commission, “Joint Statement by Reynders and Yoon”.
 
85
Article 45(3)-(5) of the GDPR.
 
86
European Commission, “Implementing Decision”, 67.
 
87
See European Commission, “Implementing Decision”, 66–71, and 5., footnote 23; See also Jong In Yoon (Chairperson of the PIPC), “Conclusion of Discussions on Adequacy Decision”.
 
88
Ebert and Groenendaal 2020, 32.
 
89
European Commission, Joint Press Release: Republic of Korea – EU Leaders’ video conference meeting, 30 June 2020. https://​ec.​europa.​eu/​commission/​presscorner/​detail/​en/​IP_​20_​1226.
 
90
“Press Releases: Start Collaboration with the EU on the ICT Policy (Nov. 18)”, News&Notice, Ministry of Science and ICT, accessed 10 August 2021. https://​english.​msit.​go.​kr/​eng/​bbs/​view.​do?​sCode=​eng&​mId=​4&​mPid=​2&​pageIndex=​&​bbsSeqNo=​42&​nttSeqNo=​470&​searchOpt=​ALL&​searchTxt=​.
 
91
See Ministry of Science and ICT, “Start Collaboration”.
 
92
Ministry of Science and ICT, “Start Collaboration”.
 
Literature
Carrapico, Helena and Farrand, Benjamin. “Discursive continuity and change in the time of Covid-19: the case of EU cybersecurity policy”, Journal of European Integration, 42, Issue 8 (2020), 1111–1126. CrossRef
Christou, George. “The Collective Securitisation of EU Cybersecurity”, West European Politics, 42, Issue 2 (2019), 278–301.
Christou, George Cybersecurity in the European Union: Resilience and Adaptability in Governance Policy (Houndmills, Basingstoke: Palgrave Macmillan, 2016). CrossRef
Christou, George and Ji Soo Lee. “EU–ROK cooperation on cyber-security and data protection” in EU-Korea Security Relations, ed. Nicola Casarini (London: Routledge, 2021), 55–77.
Christou, George and Michael Raska. “EU–ASIA Cybersecurity Cooperation: Paths and Patterns” in The European Union’s Security Relations with Asian Partners, eds. Thomas Christiansen, Emil Kirchner and Tan See Seng (Springer, 2021).
Council of the European Union. “Council Conclusions on Shaping Europe’s Digital Future”, 2020a (No. OJ 2020C: 202).
Council of the European Union. “Council Conclusions on Covid-19”, 2020b (No. 2020/C 57/4).
European Commission and High Representative of the Union for Foreign Affairs and Security Policy (2020). Joint Communication to the European Parliament and the Council: The EU’s Cybersecurity Strategy for the Digital Decade, Brussels, 16.12.2020 JOIN (2020) 16 final, 1–28.
European Commission. “Shaping Europe’s Digital Future”; European Commission. “A European Strategy for Data”, 2020b (No. COM (2020) 66).
European Commission. “A New Industrial Strategy for Europe”, 2020c (No. COM (2020) 102 F).
European Commission. Communication from the Commission to the European Parliament, The European Council, The Council, The European Economic and Social Committee and the Committee of the Regions on the “EU Security Union Strategy”, 2020d, Brussels, 24.7.2020, COM (2020) 605 final.
European Commission. Proposal for a Regulation of the European Parliament and of the Council concerning the respect for private life and the protection of personal data in electronic communications and repealing Directive 2002/58/EC (Regulation on Privacy and Electronic Communications) COM/2017/010 final – 2017/03 (COD).
European Commission and High Representative of the European Union for Foreign Affairs and Security Policy/Vice-President of the Commission. “Cybersecurity Strategy of the EU: An Open, Safe and Secure Cyberspace”, Brussels, 7 February 2013.
European Commission. “Proposal for a regulation of the European Parliament and of the Council on the protection of individuals with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation)”, 2012, COM (2012) 11 final, Brussels, 25.1.2012, 2.
European Commission. Communication from the Commission to the European Parliament, the Council, the European Economic and Social Committee and the Committee of the Regions, “A Digital Agenda for Europe”, 2010a (COM (2010) 245 Final/2), Brussels.
European Commission. “The EU internal Security Strategy in Action: Five Steps Towards a More Secure Europe”, 2010b (No. COM (2010) 673 Final), Brussels.
European Commission and European External Action Service. Joint Communication to the European Parliament and the Council, Joint Framework on Countering Hybrid Threats: A European Union response. 6 April, JOIN (2016) 18 final.
Fahey, Elaine. “The EU’s cybercrime and cyber-security rulemaking: mapping the internal and external dimensions of EU security”, European Journal of Risk Regulation, 5, Issue 1 (2014), 46–60. CrossRef
Gaumond, Eve. “Artificial intelligence Act: What is the EU Approach for AI?”, LAWFARE.
“Joint Press Statement by Mr. Lee Hyo-sung, Chairman of the Korea Communications Commission (KCC) and Mrs. Věra Jourová, Commissioner for Justice, Consumers and Gender Equality of the European Commission on the state of play of the adequacy dialogue.” 1 June 2018.
2021 National Cybersecurity White Paper (Korean version). National Intelligence Service (NIS) et al., 2021.
National Security Strategy. National Security Office, 2018.
National Cybersecurity Strategy. National Security Office, 2019.
Metadata
Title
EU-South Korea Cooperation on Cybersecurity, Data Protection and Emerging Technologies
Authors
George Christou
Ji Soo Lee
Copyright Year
2022
Book
Cybersecurity Policy in the EU and South Korea from Consultation to Action

Print ISBN: 978-3-031-08383-9

Electronic ISBN: 978-3-031-08384-6

Copyright Year: 2022

DOI
https://doi.org/10.1007/978-3-031-08384-6_3

Premium Partner