Chwilio Deddfwriaeth

Chwiliad Uwch

The Space Industry Regulations 2021

Draft Legislation:

This is a draft item of legislation. This draft has since been made as a UK Statutory Instrument: The Space Industry Regulations 2021 No. 792

Spaceflight cyber security strategy

This adran has no associated Memorandwm Esboniadol

185.—(1) A licensee must draw up and maintain a cyber security strategy for the network and information systems (“the systems”) used in relation to spaceflight operations for which it is responsible.

(2) The strategy must—

(a)be kept up to date,

(b)be reviewed—

(i)no more than 12 months after the date on which the licence was granted and, subsequently, at intervals not exceeding 12 months, and

(ii)upon any upgrades made to the systems,

(c)be sent to the regulator following a review referred to in sub-paragraph (b)(i),

(d)be proportionate and appropriate for the type of systems operated,

(e)comply with international obligations of the United Kingdom and be consistent with such obligations,

(f)be based on a security risk assessment which—

(i)has been carried out by the licensee, and

(ii)is reviewed no more than 12 months after the date on which the licence was granted and, subsequently, at intervals not exceeding 12 months, and upon any upgrades made to the systems,

(g)ensure the security of the systems managed by employees or agents of the licensee,

(h)ensure that the systems are protected from—

(i)unauthorised access or interference,

(ii)other unlawful occurrences, and

(iii)cyber threat, and

(i)ensure that the licensee’s suppliers and their supply chain specify in their security protocols how they will achieve the cyber security requirements set out in the strategy.

(3) In this regulation—

“cyber threat” means anything capable of compromising the security of, or causing harm to, information systems and internet connected devices including hardware, software and associated infrastructure, the data on them and the services they provide, primarily by cyber means;

“jamming” means a deliberate blocking or interference with a wireless communication system by transmission of radio signals that disrupt information flow in wireless data networks by decreasing the signal to noise ratio;

“network and information systems” in connection with spaceflight operations means—

(a)

an electronic communications network within the meaning of section 32 of the Communications Act 2003(1),

(b)

any device or group of interconnected or related devices, one or more of which, pursuant to a programme, perform automatic processing of digital data,

(c)

digital data stored, processed, retrieved or transmitted by elements covered under sub-paragraphs (a) or (b) for the purposes of their operation, use, protection and maintenance, or

(d)

a flight safety system;

“spoofing” means a technique used to gain unauthorised access to computers whereby an intruder sends messages to a computer indicating that the message is coming from a trusted source;

“unauthorised access or interference” in connection with the security of systems relating to spaceflight operations includes hacking, jamming or spoofing of services or other recognised cyber threats;

“unlawful occurrences” includes theft of data.

(1)

2003 c. 21. Section 32(1) was amended by S.I. 2011/1210.

Yn ôl i’r brig

Options/Cymorth

Print Options

You have chosen to open The Whole Instrument

The Whole Instrument you have selected contains over 200 provisions and might take some time to download. You may also experience some issues with your browser, such as an alert box that a script is taking a long time to run.

Would you like to continue?

You have chosen to open The Whole Instrument as a PDF

The Whole Instrument you have selected contains over 200 provisions and might take some time to download.

Would you like to continue?

You have chosen to open The Whole Instrument without Schedules

The Whole Instrument without Schedules you have selected contains over 200 provisions and might take some time to download. You may also experience some issues with your browser, such as an alert box that a script is taking a long time to run.

Would you like to continue?

You have chosen to open The Whole Instrument without Schedules as a PDF

The Whole Instrument without Schedules you have selected contains over 200 provisions and might take some time to download.

Would you like to continue?

You have chosen to open yr Offeryn Cyfan

Yr Offeryn Cyfan you have selected contains over 200 provisions and might take some time to download. You may also experience some issues with your browser, such as an alert box that a script is taking a long time to run.

Would you like to continue?

You have chosen to open yr Offeryn Cyfan heb Atodlenni

Yr Offeryn Cyfan heb Atodlenni you have selected contains over 200 provisions and might take some time to download. You may also experience some issues with your browser, such as an alert box that a script is taking a long time to run.

Would you like to continue?

Close

Mae deddfwriaeth ar gael mewn fersiynau gwahanol:

Y Diweddaraf sydd Ar Gael (diwygiedig):Y fersiwn ddiweddaraf sydd ar gael o’r ddeddfwriaeth yn cynnwys newidiadau a wnaed gan ddeddfwriaeth ddilynol ac wedi eu gweithredu gan ein tîm golygyddol. Gellir gweld y newidiadau nad ydym wedi eu gweithredu i’r testun eto yn yr ardal ‘Newidiadau i Ddeddfwriaeth’.

Gwreiddiol (Fel y’i Deddfwyd neu y’i Gwnaed): Mae'r wreiddiol fersiwn y ddeddfwriaeth fel ag yr oedd pan gafodd ei deddfu neu eu gwneud. Ni wnaed unrhyw newidiadau i’r testun.

Close

Dewisiadau Agor

Dewisiadau gwahanol i agor deddfwriaeth er mwyn gweld rhagor o gynnwys ar y sgrin ar yr un pryd

Close

Memorandwm Esboniadol Drafft

Mae Memorandwm Esboniadol Drafft yn nodi datganiad byr o ddiben Offeryn Statudol Drafft ac yn rhoi gwybodaeth am ei amcan polisi a goblygiadau polisi. Eu nod yw gwneud yr Offeryn Statudol Drafft yn hygyrch i ddarllenwyr nad oes ganddynt gymhwyster cyfreithiol, ac maent yn cyd-fynd ag unrhyw Offeryn Statudol neu Offeryn Statudol Drafft a gyflwynwyd yn fanwl gerbron y Senedd o Fehefin 2004 ymlaen.

Close

Rhagor o Adnoddau

Gallwch wneud defnydd o ddogfennau atodol hanfodol a gwybodaeth ar gyfer yr eitem ddeddfwriaeth o’r tab hwn. Yn ddibynnol ar yr eitem ddeddfwriaeth sydd i’w gweld, gallai hyn gynnwys:

  • y PDF print gwreiddiol y fel deddfwyd fersiwn a ddefnyddiwyd am y copi print
  • rhestr o newidiadau a wnaed gan a/neu yn effeithio ar yr eitem hon o ddeddfwriaeth
  • manylion rhoi grym a newid cyffredinol
  • pob fformat o’r holl ddogfennau cysylltiedig
  • slipiau cywiro
  • dolenni i ddeddfwriaeth gysylltiedig ac adnoddau gwybodaeth eraill
Close

Asesiadau Effaith

Impact Assessments generally accompany all UK Government interventions of a regulatory nature that affect the private sector, civil society organisations and public services. They apply regardless of whether the regulation originates from a domestic or international source and can accompany primary (Acts etc) and secondary legislation (SIs). An Impact Assessment allows those with an interest in the policy area to understand:

  • Why the government is proposing to intervene;
  • The main options the government is considering, and which one is preferred;
  • How and to what extent new policies may impact on them; and,
  • The estimated costs and benefits of proposed measures.
Close

Rhagor o Adnoddau

Defnyddiwch y ddewislen hon i agor dogfennau hanfodol sy’n cyd-fynd â’r ddeddfwriaeth a gwybodaeth am yr eitem hon o ddeddfwriaeth. Gan ddibynnu ar yr eitem o ddeddfwriaeth sy’n cael ei gweld gall hyn gynnwys:

  • y PDF print gwreiddiol y fel gwnaed fersiwn a ddefnyddiwyd am y copi print
  • slipiau cywiro

liciwch ‘Gweld Mwy’ neu ddewis ‘Rhagor o Adnoddau’ am wybodaeth ychwanegol gan gynnwys

  • rhestr o newidiadau a wnaed gan a/neu yn effeithio ar yr eitem hon o ddeddfwriaeth
  • manylion rhoi grym a newid cyffredinol
  • pob fformat o’r holl ddogfennau cysylltiedig
  • dolenni i ddeddfwriaeth gysylltiedig ac adnoddau gwybodaeth eraill

Mae'r data ar y dudalen hon ar gael yn y fformatau data amgen a restrir: