Council of the European Union Brussels, 16 March 2015 (OR. en)

Similar documents
EUROPOL Unclassified Basic Protection Level

10007/16 MP/mj 1 DG D 2B

15412/16 RR/dk 1 DGD 1C

10025/16 MP/mj 1 DG D 2B

LIMITE EN COUNCIL OF THE EUROPEAN UNION. Brussels, 26 September 2008 (30.09) (OR. fr) 13567/08 LIMITE ENFOPOL 170 CRIMORG 150

13268/16 EB/dk 1 DGD 1C

Strategic and operational threat analysis at Europol's EC3

Council of the European Union Brussels, 23 November 2016 (OR. en)

COUNCIL OF THE EUROPEAN UNION. Brussels, 24 May /13. Interinstitutional File: 2013/0027 (COD)

6056/17 MK/ec 1 DG D 2B

The commission communication "towards a general policy on the fight against cyber crime"

15670/14 EB/hm 1 DG D 1 C

COUNTER-TERRORISM. Future-oriented policing projects

Europol Unclassified Basic Protection Level. Council Working Party on Information Exchange and Data Protection (DAPIX) Friends of Presidency

Development of a renewed European Union Internal Security Strategy. Justice and Home affairs Council meeting Brussels, 4 December 2014

Brussels, 19 May 2011 COUNCIL THE EUROPEAN UNION 10299/11 TELECOM 71 DATAPROTECT 55 JAI 332 PROCIV 66. NOTE From : COREPER

Action Plan to enhance preparedness against CBRN security risks

Council of the European Union Brussels, 14 July 2017 (OR. en)

Council of the European Union Brussels, 28 February 2019 (OR. en)

COUNCIL OF THE EUROPEAN UNION. Brussels, 28 January 2003 (OR. en) 15723/02 TELECOM 78 JAI 307 PESC 593

G7 INTERIOR MINISTERS ISCHIA, OCTOBER 2017 JOINT COMMUNIQUE. "Fight against terrorism and violent extremism: turning commitments into action"

Way to new challenges

Designing Robustness and Resilience in Digital Investigation Laboratories

ΚΕΝΤΡΟ ΜΕΛΕΤΩΝ ΑΣΦΑΛΕΙΑΣ CENTER FOR SECURITY STUDIES

DRAFT PROGRAMME. Exchange of views with experts on the fight against Cybercrime

13967/16 MK/mj 1 DG D 2B

Cyber Intel within European Cybercrime Center Ops

ENISA s Position on the NIS Directive

16474/08 JJ/ap 1 DGH4

EU policy on Network and Information Security & Critical Information Infrastructures Protection

Presentation of the EU framework on Mobile Satellite Services. Regulatory Coordination & Business DG CONNECT B1 European Commission

ehealth Ministerial Conference 2013 Dublin May 2013 Irish Presidency Declaration

Project CyberSouth Cooperation on cybercrime in the Southern Neighbourhood

COMMISSION RECOMMENDATION. of on Coordinated Response to Large Scale Cybersecurity Incidents and Crises

Fostering Competitiveness, Growth and Jobs. Wrocław, Poland, 15 October 2014

ENISA & Cybersecurity. Dr. Udo Helmbrecht Executive Director, European Network & Information Security Agency (ENISA) 25 October 2010

2. Taking into account the developments in the next five years, which are the actions to be launched at the EU level?

5972/17 GT/cb 1 DG G 3 C

Horizon 2020 Security

EUROPEAN COMMISSION JOINT RESEARCH CENTRE. Information Note. JRC activities in the field of. Cybersecurity

EISAS Enhanced Roadmap 2012

13543/17 PhL/at 1 DG G 3 B

CYBER RESILIENCE & INCIDENT RESPONSE

UNODC/CCPCJ/EG.4/2017/CRP.1

Cyber Security Strategy

ENISA EU Threat Landscape

Committee on Foreign Affairs. on space capabilities for European security and defence (2015/2276(INI))

Statement by Mr. Vladimir Voronkov, Under-Secretary-General of the United Nations Office of Counter-Terrorism

A Strategy for a secure Information Society Dialogue, Partnership and empowerment

Security and resilience in Information Society: the European approach

10496/18 MC/sl 1 DGD 2

RESOLUTION 130 (Rev. Antalya, 2006)

2CENTRE A collaborative model for capacity building against cybercrime. Cormac Callanan 2CENTRE Industry Liaison

UNCLASSIFIED. National and Cyber Security Branch. Presentation for Gridseccon. Quebec City, October 18-21

The Republic of Korea. economic and social benefits. However, on account of its open, anonymous and borderless

Regional Seminar on Cyber Preparedness

This report was prepared by the Information Commissioner s Office, United Kingdom (hereafter UK ICO ).

Cyber Security Development. Ghana in Perspective

The European Policy on Critical Information Infrastructure Protection (CIIP) Andrea SERVIDA European Commission DG INFSO.A3

Go West! Political, legal and operational aspects of cooperation between Europol and the United States

Global Alliance Against Child Sexual Abuse Online 2014 Reporting Form BOSNIA AND HERZEGOVINA. Policy Target No. 1

NATIONAL CYBER SECURITY STRATEGY. - Version 2.0 -

Securing Europe's Information Society

The Africa-EU Energy Partnership (AEEP) The Role of Civil Society and the Private Sector. 12 February, Brussels. Hein Winnubst

Department of Homeland Security Updates

RESOLUTION 130 (REV. BUSAN, 2014)

IT Governance Framework at KIT

Resolution adopted by the General Assembly on 21 December [on the report of the Second Committee (A/64/422/Add.3)]

Workshop on Cyber Security & Cyber Crime Policies. Policies for African Diplomats

Assistant Secretary-General Michèle Coninsx Executive Director, CTED

PROJECT RESULTS Summary

Exploring the European Commission s Network and Information Security Directive (NIS) What every CISO should know

Shaping the Cyber Security R&D Agenda in Europe, Horizon 2020

Secure Societies Work Programme Call

12002/1/18 REV 1 PhL/at 1 ECOMP. 3 B

Society, the economy and the state depend on information and communications technology (ICT).

H2020 & THE FRENCH SECURITY RESEARCH

SWIFT Response to the Committee on Payments and Market Infrastructures discussion note:

INTERPOL s Role and Efforts in Combating Cybercrime. Dr. Madan M. Oberoi Director Cyber Innovation and Outreach

Council of the European Union Brussels, 12 July 2017 (OR. en)

G8 Lyon-Roma Group High Tech Crime Subgroup

Package of initiatives on Cybersecurity

Valérie Andrianavaly European Commission DG INFSO-A3

Comprehensive Study on Cybercrime

Position Paper of the ASD Civil Aviation Cybersecurity Taskforce

FIRE REDUCTION STRATEGY. Fire & Emergency Services Authority GOVERNMENT OF SAMOA April 2017

Towards a European e-competence Framework

The ResiStand Project

RESOLUTION 45 (Rev. Hyderabad, 2010)

Horizon 2020 Info Days

The EuroHPC strategic initiative

UN General Assembly Resolution 68/243 GEORGIA. General appreciation of the issues of information security

GRIDS INTRODUCTION TO GRID INFRASTRUCTURES. Fabrizio Gagliardi

Developments in the field of information and

Project Title: INFRASTRUCTURE AND INTEGRATED TOOLS FOR PERSONALIZED LEARNING OF READING SKILL

E U RO PL;0. Open Source Intelligence: A Foundation for Regional Co-operation in Fighting Crime and Establishing a Regional Intelligence Community

ANZPAA National Institute of Forensic Science BUSINESS PLAN

INTERNATIONAL TELECOMMUNICATION UNION

Overview on the Project achievements

Cyber Security Beyond 2020

Transcription:

Conseil UE Council of the European Union Brussels, 16 March 2015 (OR. en) 7266/15 LIMITE PUBLIC JAI 178 COSI 32 ENFOPOL 66 CYBER 17 COTER 49 NOTE From: To: Subject: EUROPOL Standing Committee on operational cooperation on internal security EU Internet Referral Unit at Europol - Concept note DOCUMENT PARTIALLY ACCESSIBLE TO THE PUBLIC (15.06.2015) Delegations will find in Annex a concept note on the creation of a EU Internet Referral Unit at Europol. 7266/15 EB/dk 1 DG D 1C LIMITE EN

ANNEX The Hague, 16 March 2015 763931v6 EU Internet Referral Unit at Europol Concept note Setting the scene Terrorist use of Internet and social media has increased dramatically over recent years. Jihadist groups in particular have shown a sophisticated understanding of how social networks operate and have launched well organised social media campaigns to recruit followers, promote or glorify acts of terrorism and violent extremism. Recent studies have shown that within four months, more than 46.000 Twitter accounts were used by supporters of the Islamic State (ISIS) 1 and as many as 90.000 tweets and other social media responses are produced every day 2. Some EU Member States (MS) have taken measures to reduce the abuse of the Internet by terrorists for propaganda purposes. They have created specialist police units to monitor the cyber environment, identify content suspected of having a violent extremist or terrorist nature and work closely with the industry to remove it on the basis that it breaches individual companies user policies. 1 2 J.M. Berger and J. Morgan, The ISIS Twitter Census Defining and describing the population of ISIS supporters on Twitter, The Brooking Institution, No 20, March 2015. http://www,brookings.edu This is a relatively small number compared to the number of unique monthly users of twitter (310 million). http://www.nytimes.com/2015/02/17/world/middleeast/us-intensifies-effort-to-blunt-isismessage.html?_r=1 7266/15 EB/dk 2

Given the size of the problem, its span across multiple linguistic audiences and jurisdictions, tackling this phenomenon efficiently requires the EU Member States to pool resources and devise a coherent and coordinated European prevention strategy to counter terrorist propaganda and ensure that Internet remains a public good, free of terrorist and violent extremist propaganda while respecting fundamental principles such as the freedom of speech. Accordingly, on 12 March 2015 the Council of Ministers agreed that building on the Check-the- Web project, Europol will develop an EU Internet Referral Unit (EU IRU) by 1 July 2015 which will comprise the following four tasks: To coordinate and share the identification tasks (flagging) of terrorist and violent extremist online content with relevant partners, To carry out and support referrals quickly, efficiently and effectively, in close cooperation with the industry, To support competent authorities, by providing strategic analysis and operational analysis, To act as a European Centre of Excellence for the above tasks. With this document and upon the EU Presidency s request, Europol is pleased to inform the COSI about the preparatory work undertaken to create a fully operational European Internet Referral Unit by 1 st July 2015. This concept will be further developed in the coming months in cooperation with Europol s Management Board (MB) and the European Commission. Existing expertise Europol established the Check the Web (CTW) project in 2007. In this context it has developed valuable expertise in terrorist propaganda. The CTW team is composed of linguists and counter terrorism experts covering seven languages including Arabic and Russian. They identify, flag and analyse propaganda material issued by terrorist groups online. The material is stored in a dedicated database (CTW portal) directly accessible by competent authorities of the 28 MS and containing more than 10.000 electronic documents and individuals. The resulting analysis and reports are regularly used in support of criminal investigations and judicial proceedings. 7266/15 EB/dk 3

Within the framework of the European Cybercrime Center (EC3), Europol has also developed advanced technical capabilities in cyber-intelligence gathering, forensic analysis, social network and big data analysis. In addition, EC3 established good working relationships with the Internet industry through advisory groups that meet on a regular basis at Europol, together with national investigators. Europol is taking the necessary steps to combine the expertise of both EC3 and Europol s counter terrorism unit in order to fully exploit their combined capabilities to support the Member States in their endeavour to tackle online terrorism propaganda. Challenges of a dynamic and rapidly evolving environment The abuse of social media by terrorist organisations is a dynamic phenomenon. Terrorists and violent extremists are implementing advanced strategies to evade preventive measures and to keep their material online. They have established networks of influential accounts across multiple social media platforms and have disseminated propaganda material through a network that is constantly reconfiguring. This creates resilience and reduces the effect of account suspension 3. Therefore, prevention strategies such as suspending social media accounts or removing terrorist and violent extremist content need to be combined with pro-active measures. To be successful in such a rapidly evolving environment the EU IRU should not be confined to playing a whack-a-mole game with terrorists. It should look beyond current challenges, towards future developments and emerging social media trends and resources. In addition to helping with the suspension of individual accounts distributing terrorist propaganda, the EU IRU should have the capacity to support the Member States in challenging the core of the networks that distribute content and to limit the effectiveness of the social media strategies of terrorist and extremist groups in their efforts to radicalise and recruit vulnerable individuals. 3 Jamie Bartlet, How to beat the media Mujahideen, Demos Quarterly. http://quarterly.demos.co.uk/article/issue-5/how-to-berat-the-media-mujahideen 7266/15 EB/dk 4

Proposals Against this backdrop, Europol proposes that the EU IRU implements a set of responses to terrorist s abuse of the Internet which combines both preventive - flagging and suspension - and pro-active measures; in particular dynamic intelligence gathering to inform the flagging process. 1) The EU IRU will coordinate and share the identification tasks (flagging) of terrorist and violent extremist online content with a network of national counterparts. Mid-April Europol will invite representatives of national IRUs and comparable units to an operational meeting to launch that network and to jointly define its standing operating procedures (SOPs). This meeting will aim at identifying their needs and discussing how Europol s existing expertise within CTW and EC3 can be best used to support their actions. 2) The EU IRU will build upon Europol s existing relations with the Internet industry to act as a central European platform representing the European law enforcement interests. In May, Europol will organise a meeting with representatives of social media companies and other relevant industry partners, in the framework of the Commission s Forum with the Internet service providers community. The aim of the meeting will be to secure industry s commitments to a common public-private approach and to jointly define rules and procedures for carrying out and supporting referrals concerning breaches of individual companies user policies. 3) Take-downs and account suspensions need to serve a strategic purpose, focusing on reducing the ability of the network to operate as a whole and effectively limiting the impact of propaganda on different audiences. The removal of content should therefore be based on a comprehensive assessment of the existing propaganda material disseminated and on indications about its impact on vulnerable audiences. To that end the EU IRU will support competent authorities, by providing strategic and operational analysis. 4) Research shows that social media accounts provide valuable intelligence. 4 Preventive measures should not interfere with on-going investigations. Consequently, the EU IRU will act as a European deconfliction structure, relying on a network of national contact points, available 24/7, with direct contact to relevant competent authorities. Response time from the network should ideally be less than a couple of hours between the publication and the suspension in order to avoid further dissemination. 4 DELETED 7266/15 EB/dk 5

5) Ultimately, the EU IRU should be in a position to anticipate and pre-empt terrorist abuse of social media and play a pro-active advisory role vis-à-vis Member States and the private sector. It will act as an EU centre of excellence with a dedicated research and analysis team, formed of practitioners from law enforcement, the academia and the private sector which will underpin this work, helping to maintain current knowledge and a dynamic online research capability. It will also organise trainings to enhance national capabilities and maintain close contacts with the Commission s Forum with the Internet service providers community. Budget and resources Europol is currently assessing the requirements of the EU IRU in terms of financial and human resources. The operational meeting of the national contact points will help fine-tuning this assessment and its outcome will be discussed at the next Europol Management Board. Europol Director has already held a provisional discussion on the matter with Commissioner Avramopoulos. Given the short time frame to set up a fully functional EU IRU, Europol invites interested Member States to second national experts on a transitional basis to reinforce the EU IRU as of 1 July 2015. Way forward Europol is looking forward to working closely with the European Commission and with the Member States in the framework of the Europol Management Board to further develop the tasks of the EU IRU as agreed by the Ministers on 12 March 2015. The two operational meetings will provide a practitioners perspective to the high-level meeting planned by the European Commission in the coming months. Europol remains at the disposal of the EU Presidency to regularly report to the COSI on the progress achieved in the implementation of this project. 7266/15 EB/dk 6

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback