The fragmentation of the merceological cyberspace between certifications and cybersecurity standards. Some considerations in the light of the European and Italian disciplines

Abstract

The transfer of issues related to the sovereignty of states within a dimension developed on the ideals of a-hierarchy and free access, such as cyberspace, is progressively changing its characteristics. In addition to the attempts to balkanise the Internet or modify its architecture, another issue of current interest concerns the security of information infrastructures This action requires the necessary balancing act on the part of legal systems between the need for free movement of ICT assets and their security from cyber risk. This contribution intends to focus on the latter aspect, focusing on the so-called ICT assets placed at the crossroads of these assessments and interests. After outlining the current legal framework on cybersecurity certification and standardisation on a European and national level, some concluding reflections will be made on the issues and possible perspectives on the increasing relevance of technical standards in this area.