Editorial | A major meltdown in key computer systems can bring catastrophe to Hong Kong
A new law to protect Hong Kong’s information infrastructure is crucial to safeguarding the well-being of our society
A computer system meltdown that brings the planet to a grinding halt can easily be the premise for a blockbuster Hollywood film. But take a look at the world we live in today and that scenario is not so far-fetched.
Hong Kong, thankfully, has yet to be hit by any serious cyberattack or system malfunction. Still, it is better to be safe than sorry. The passage of the Protection of Critical Infrastructures (Computer Systems) Ordinance, therefore, is an essential step to catching up with the rest of the world on this front.
The law mandates organisations designated as “critical infrastructure” operators to adopt measures to protect computer systems and reduce the impact in the event of a cyberattack.
The eight sectors deemed crucial to the normal functioning of society are energy, information technology, banking and finance, telecommunication and broadcasting, maritime, healthcare, as well as land and air transport.
Operators maintaining “critical societal and economic activities”, such as those managing major sports and performance venues, as well as research and development parks, are also included.
More than 100 institutions are expected to come under the regulation, with punishment for non-compliance reaching up to HK$5 million (US$640,000. The government says the law seeks to enhance cybersecurity rather than access private data.
Officials would not disclose the list of institutions covered for fear of making them targets. But we trust those organisations will take their legal responsibilities seriously.