Tashkent, Uzbekistan (UzDaily.com) -- The Law on Cybersecurity was signed by the President of Uzbekistan.
According to the Law, protecting the interests of the individual, society and the state from external and internal threats in cyberspace is a priority in ensuring the cybersecurity of the state.
The unified state policy in the field of cybersecurity is determined by the President.
The State Security Service is an authorized state body in the field of cybersecurity.
According to the Law, state bodies and organizations have the right to receive information about cyber attacks, vulnerabilities in software, equipment and technologies from an authorized state body in order to ensure cyber security.
Ensuring the safety of data of information systems and resources of state bodies and organizations, as well as objects of important information infrastructure, is carried out by creating backup copies of data, the storage period of which should not be less than the last three months.
Examination of compliance with cybersecurity requirements is carried out on a mandatory basis or at the initiative of cybersecurity entities.
Examination for compliance with cybersecurity requirements is mandatory for:
information resources of state bodies;
information systems of state bodies;
information systems included in the category of critical information infrastructure objects.
The procedure for the examination is determined by the authorized state body.
Hardware and software used to ensure the cybersecurity of information systems and resources of state bodies and organizations are subject to mandatory certification.
Information about vulnerabilities, cyber threats, cyber attacks and other disruptive actions identified in information systems and resources, as well as about informatization objects, can be disclosed with the permission of the cyber security subject after taking appropriate measures to protect them.
This Law shall enter into force three months after its official publication.