English
Magyar
![[TI: logo for TI accredited teams]](/sites/default/files/pages/ti-accredited.jpg "Trusted Introducer")
GOVERNMENT DECREE No. 223 of the year 2009
on the security of electronic public service
(published in the Official Gazette on October 14th)
(Excerpt of the articles relating to National Cybersecurity Centre)
National Cybersecurity Centre
Article 8
(1) For the protection of Hungarian critical information infrastructures and the security of the communication through the central governmental system, as well as the mitigation of virus and other attacks, the Hungarian Government operates a cybersecurity centre (hereinafter called: the Centre) with international co-operation.
(2) The Centre is an accredited member of the international organisations specialised in cybersecurity and the protection of critical information infrastructures, which protects the services of the central government system against attacks coming from the internet. In this scope, the Centre pursues activities relating to technical protection, prevention and awareness raising. Moreover, it represents Hungary in international co-operations and organisations specialised in cybersecurity and the protection of critical information infrastructures. The Centre also participates in the preparation of strategies and regulations relating to information and network security and the protection of critical information infrastructures.
(3) The Minister heading the Prime Minister’s Office exercises controll of the Centre, its operation is supervised by the Information Security Supervisor of the Government.
(4) The Centre is operated by the Theodore Puskás Government Foundation on the basis of a public service agreement, concurrently with the operation of the National Alert Service for Informatics and Communications.
(5) The Centre produces a yearly report on its activities, the potential dangers and their prevention, and makes it public until February 28th of every year.
(6) The protection of the following government networks does not fall within the scope of activities of the Centre:
a) special operation networks of the national security services;
b) military operation networks operated by the Ministry of Defence;
c) Single Digital Radio Communications System;
d) diplomatic information systems operated by the Ministry of Exterior Affairs in Hungary and abroad;
e) international networks operated by the Republic of Hungary on the basis of its international obligations.
Article 9
(1) The services of the Centre:
a) the Centre operates on a continuous basis as a National Point of Contact (hereinafter called: NPC) for Hungarian and international organisation responsible for cybersecurity and the protection of critical information infrastructures, as well as a governmental computer technology fast reaction force (hereinafter called: governmental CERT);
b) as NPC, the Centre manages the incidents using the Internet as channel of attack and co-ordinates the countermeasures for the Hungarian and international organisations responsible for cybersecurity and the protection of critical information infrastructures;
c) as NPC, the Centre manages the known and published software vulnerabilities for the Hungarian and international organisations responsible for cybersecurity and the protection of critical information infrastructures, publishes the software vulnerabilities on its website (www.cert-hungary.hu) in Hungarian language and makes the Hungarian software vulnerabilities available in English for its international partners;
d) on the basis of the information and data received from the operator of the central governmental system with the approval of the owner of the central governmental system, the Centre continuously monitors and analyses the internet traffic looking for data referring to malicious activities, moreover, in case it is needed, it informs the operator of the central governmental system and the Hungarian as well as international organisations responsible for cybersecurity and the protection of critical information infrastructures about malicious activities via its continuous duty service;
e) the Centre represents and enforces the interests of the Republic of Hungary in the international co-operations relating to information and network security as well as the protection of the critical information infrastructures;
f) the Centre participates in the preparation of strategies and regulations relating to cybersecurity and the protection of the critical information infrastructures.
(2) The activities of the Centre
a) the Centre produces education materials and holds trainings, organises awareness raising campaigns, moreover it creates and maintains an awareness raising website on the Internet;
b) the Centre co-operates with Hungarian law enforcement organisations, academia and industrial representatives in cybesecurity and the protection of critical information infrastructures, in this respect it organises exercises as well as operates and participates working groups.
Article 10
(1) The Centre provides the services determined by Article 9, paragraph (1) for the users and operators of the central governmental system on the basis of a public service agreement, without any further payment.
(2) Not affecting the fulfilment of its tasks contained in Article 9, the Centre is entitled to provide additional value-added services for payment in a manner determined by separate agreements for the users and operators of the central governmental system and the owners of critical information infrastructures. These activities need to be definitely separated from the public service activities.