The European Union and the Protection Of Critical Space Infrastructure from Cyber-Threats: A Strategic Approach?

Abstract

The functioning of terrestrial critical infrastructures, such as electricity, transportation, and finance depends on critical space infrastructures (CSI). CSI underlie the provision of vital goods and services, economic activities, national and global security. Consequently, securing CSI from cyber-attacks is important to avoid disruptions in the provision of critical goods and services and ensure high levels of security in our societies. Existing cases of cyber-attacks against ground and space components of CSI have proven the consequences of such attacks for domestic and international security, economic, systemic, environmental and social safety and stability. With strategic gains increasingly motivating state and state-sponsored attacks against CSI, the European Union (EU) expanded its resilience and response toolbox to address cyber-threats against CSI. Space has become a highly strategic domain with the EU Strategic Compass, since 2022. Furthermore, in 2023, the High Representative and the Commission put forward an EU Space Strategy for Security and Defence, presenting the EU’s vision for space security. This programmatic document marks a shift in the EU’s configuration of space, from a domain for scientific and civilian enterprises, to one central to security and defence. This paper examines the quick evolution of the EU’s approach to protecting CSI between 2020 and 2024 against the background of the development of the EU’s approach to CI protection more broadly and the development of its space governance aspirations and capabilities. It examines the EU institutional and legislative frameworks for CSI resilience to assesses how relevant and strategic these are considering new technological developments, in the current global security context.