Step by step on the way to a digitally secure Switzerland - this is our story:
Cybersecurity expert team growing at Zug location
Since Tobias Castagna started as Head of Test Experts in November 2022, a strong team has grown at the Test Institute site in Zug. The build-up of the staff will continue and qualified applicants are always welcome.
Security vulnerabilities in public electric mobility charging infrastructure
Serious security vulnerabilities were identified at around 30 organizations. Die Schwachstellen wurden den Herstellern gemeldet und von diesen behoben. These were reported to the manufacturers, who then rectified them. The findings were also used to create general recommendations for the industry.
A legal opinion on criminal liability for ethical hacking
The publication of this legal opinion constitutes a contribution by the NTC toward the Confederation’s current national cyberstrategy, which seeks to institutionalize ethical hacking. The legal opinion shows that ethical hacking can only be exempt from prosecution if certain framework conditions are met.
Technical security analysis of the mobile app “TikTok”
No concrete indications were found that users were being monitored. However, the use of applications with extensive permissions in business and government contexts should generally be questioned.
NTC builds up a competence network
In its initial phase, the NTC is inviting domestic and foreign experts to collaborate in assessing networked products and digital applications for vulnerabilities. As of now, local and international cybersecurity experts are invited to register for the competence network.
Unanimous positive decision of Cantonal Council of the Canton of Zug
The Cantonal Council of Zug decided positively and unanimously on 31 March 2022 to allocate CHF 7.55 million to support and establish the National Cyber Security Test Institute NTC.
The first orders
On behalf of the National Cyber Security center NCSC, the NTC audits the functionalities and security of the Swiss Covid certificate system. On behalf of an IT service provider for medical, the security of its services was audited.