Cybersecurity

Netnod
Public policies and statements
Netnod provides expert input in policy, regulatory and governance discussions that directly impact the context within which we operate.
Netnod on the national cybersecurity strategy
During the spring of 2025 the Swedish government released the national strategy on cybersecurity. While the strategy itself is clear and detailed, it does not directly address the long-term consequences of short-term priorities, nor does it explore how to align the long-term incentives of for-profit actors to Sweden’s national security interests.
Netnod responds to the Swedish implementation of the CER Directive
Netnod has provided feedback on the draft legislation for critical services resilience, emphasizing concerns about the interplay between laws, the effectiveness of the all-risk approach, lack of clarity on the law's impact, and the need for positive incentives for cybersecurity.
Netnod response to public consultation on public service media system
Netnod argues for keeping content and distribution separate, ensuring that any content can be delivered across any platform. Netnod also stresses the need for robust and available services, especially in times of crisis.
Netnod responds to the national cybersecurity center consultation (2)
At a high level Netnod has three main concerns with the request for comments regarding a national cybersecurity center (NCSC) - part 2.
Netnod replies to EC act on NIS2 Cybersecurity risk management
Netnod believes that the act named Cybersecurity risk management & reporting obligations for digital infrastructure, providers and ICT service managers will not lead to the intended effect.
Netnod responds to the Swedish implementation of NIS2
At a high level Netnod has three main concerns with the NIS2 directive and its Swedish implementation in a cybersecurity context. 
Netnod responds to the national cybersecurity center consultation
At a high level Netnod has three main concerns with the request for comments regarding a national cybersecurity center (NCSC).
Netnod response to foreign ownership of critical services
Netnod sees several problems with introducing yet another definition of critical and important services, this one in the context of foreign ownership.
Netnod comments on models for contingency supply and planning
On 2 September 2023, Netnod was given the opportunity by Sweden’s Ministry of Defence to comment on an inquiry into models for contingency supply and planning (SOU 2023:50). Netnod is critical that the investigation did not thoroughly investigate the issue of long term infrastructure investments and costs.
Netnod and Internetstiftelsen responds to the EU Commission's proposed adoption of the Cyber Resilience Act
Netnod welcomes the additional attention brought to the important topic of cybersecurity by the Cyber Resilience Act. However, Netnod believes that approach is fundamentally suboptimal and effort should instead be put towards accountability in the digital world. That is, instead of laying down ex-ante design requirements for digital products, the regulation should improve ex-post accountability processes in a digital environment. 
Netnod response to SOU 2021:63 Sveriges säkerhet - behov av starkare skydd för nätverks- och informationssystem
In general Netnod believes the trust in certification is too high