Archived data from 2016-2023

94. Uzbekistan 36.36

94th National Cyber Security Index
70th Global Cybersecurity Index
95th ICT Development Index
N/A Networked Readiness Index
Population 31.6million
Area (km2) 447.4thousand
GDP per capita ($) 7.0thousand
NCSI FULFILMENT PERCENTAGE
NCSI DEVELOPMENT TIMELINE 3 years All data
RANKING TIMELINE
NCSI Update Data source
8 Mar 2022 Public data collection

Version 8 Mar 2022

GENERAL CYBER SECURITY INDICATORS
BASELINE CYBER SECURITY INDICATORS
  • 5. Protection of digital services 1/5 20%
    1
    5 20%
  • 6. Protection of essential services 0/6 0%
    0
    6 0%
    • 6.1. Operators of essential services are identified 0
      0
      1
      Requirements
      Criteria

      There is a legal act that allows to identify operators of essential services.

      Accepted references

      Legal act

      Evidence
    • 6.2. Cyber security requirements for operators of essential services 0
      0
      1
      Requirements
      Criteria

      According to the legislation, operators of essential services must manage cyber/ICT risks.

      Accepted references

      Legal act

      Evidence
    • 6.3. Competent supervisory authority 0
      0
      3
      Requirements
      Criteria

      The government has a competent authority in the field of cyber/information security that has the power to supervise operators of essential services, regarding cyber/information security requirements.

      Accepted references

      Official website or legal act

      Evidence
    • 6.4. Regular monitoring of security measures 0
      0
      1
      Requirements
      Criteria

      Operators of essential services must regularly (at least once every 3 years) provide evidence of the effective implementation of cyber/information security policies (e.g. audit result, documentation, specific report).

      Accepted references

      Legal act

      Evidence
  • 7. E-identification and trust services 7/9 78%
    7
    9 78%
    • 7.1. Unique persistent identifier 1
      1
      1
      Requirements
      Criteria

      The government provides a unique persistent identifier to all citizens, residents, and legal entities. For example, the identifier remains the same after document expiration and name change.

      Accepted references

      Legal act

      Evidence

      Resolution of the Cabinet of Ministers (of March 11, 1997 No. 130) on the system of assignment and application of taxpayer identification numbers in the Republic of Uzbekistan

    • 7.2. Requirements for cryptosystems 0
      0
      1
      Requirements
      Criteria

      Requirements for cryptosystems in the field of trust services are regulated.

      Accepted references

      Legal act

      Evidence
    • 7.3. Electronic identification 1
      1
      1
      Requirements
      Criteria

      Electronic identification is regulated.

      Accepted references

      Legal act

      Evidence

      Resolution of the Cabinet of Ministers of the Republic of Uzbekistan No. 679 of October 30, 2020

      Background: 

      “The Cabinet of Ministers adopted Resolution No. 679 of October 30, 2020 "On measures to further develop the personal identification system when providing e-government services to the population. (...) 

      (...) the Unified Information System for the identification of users of the "Electronic Government" system (hereinafter - the identification system). In this case, the system should provide the following additional features:

      • creation of the possibility of registration, identification, authentication and authorization of individuals and legal entities based on digital signature, mobile phone number and other information
         

      • creating the possibility of remote identification (authentication) of individuals and legal entities in the process of providing electronic services by government agencies, banks, financial and other entities.

      The document approved:

      • architecture of the Unified information system for identifying users of the "Electronic government" system;

      • an action plan for the modernization of the Unified information system for identifying users of the "Electronic government" system;

      • a list of information provided to the identification system through cross-industry electronic cooperation"

      Cited source can be accessed here


      Resolution of the Cabinet of Ministers of the Republic of Uzbekistan (dated 17.12.2015 No. 365) on measures for the formation of central databases of individuals and legal entities and the introduction of a unified information system for identifying users of the "Electronic Government" System, Annex 1, Chapter 3


    • 7.4. Electronic signature 1
      1
      1
      Requirements
      Criteria

      E-signature is regulated

      Accepted references

      Legal act

      Evidence

      Law of the Republic of Uzbekistan (dated 11.12.2003, No. 562-II) on Electronic Digital Signature

    • 7.5. Timestamping 0
      0
      1
      Requirements
      Criteria

      Timestamping is regulated.

      Accepted references

      Legal act

      Evidence
    • 7.6. Electronic registered delivery service 1
      1
      1
      Requirements
      Criteria

      Electronic registered delivery service between state entities, citizens and private sector entities is regulated. The service provides legally binding data exchange and guarantees the confidentiality and integrity of information.

      Accepted references

      Legal act

      Evidence

      Resolution: Cabinet of Ministers of the Republic of Uzbekistan on measures to further improve the activities of the government portal of the Republic of Uzbekistan on the internet, taking into account the provision of interactive state services

    • 7.7. Competent supervisory authority 3
      3
      3
      Requirements
      Criteria

      There is an authority responsible for the supervision of qualified trust service providers.

      Accepted references

      Official website or legal act

      Evidence

      “Specially authorized body” 

      Law of the Republic of Uzbekistan (dated 11.12.2003, No. 562-II) on Electronic Digital Signature, see article 5

  • 8. Protection of personal data 4/4 100%
    4
    4 100%
    • 8.1. Personal data protection legislation 1
      1
      1
      Requirements
      Criteria

      There is a legal act for personal data protection.

      Accepted references

      Legal act

      Evidence

      Law of Uzbekistan of 2 July 2019 No. ЗРУ-547 on Personal Data

    • 8.2. Personal data protection authority 3
      3
      3
      Requirements
      Criteria

      There is an independent public supervisory authority that is responsible for personal data protection.

      Accepted references

      Official website or legal act

      Evidence

      State Center for Personalization

      Law of Uzbekistan of 2 July 2019 No. ЗРУ-547 on Personal Data, see article 8:

      “Article 8. Authorized state body in the field of personal data

      The authorized state body in the field of personal data is the State Center for Personalization under the Cabinet of Ministers of the Republic of Uzbekistan (hereinafter referred to as the authorized state body).”

       

INCIDENT AND CRISIS MANAGEMENT INDICATORS
Information Disclaimer

The information provided on the NCSI website is based on publicly available evidence materials. The appearance in the index and subsequent ranking is commensurate to the existence and public availability of such information. The NCSI links to third party websites and information. The NCSI and eGA are not responsible for the accuracy or completeness of third party website information.

What can I do to improve my country's data in NCSI?

Become a data contributor Update a specific indicator with evidence data