Kaspersky, Dr. Web, Metascan and other Russian anti-virus solutions, as well as cyber security companies from Russia, appeared on a blacklist of products, services and organizations that will be banned from public institutions in Romania, according to an order made public. consultation of the Ministry of Digital.

In December of last year, the parliament adopted the law no. 354/2022 on the protection of IT systems of state authorities and institutions in the context of the invasion of the Russian Federation against Ukraine, but the list of prohibited products and services was compiled only now.

Obligation to compile and publish this list, in agreement with other institutions and authorities, including SRI and SIEby law belongs to the Minister of Digitalization, who must issue an order in this regard.

Which Russian antivirus solutions and companies from Russia producing services and solutions will be banned in Romania

On Tuesday, January 31, the Ministry of Digital Affairs published at a public hearing a draft order on the approval of the criteria for the creation and name list of goods, services and

directly or indirectly from prohibited manufacturers and/or suppliers

Russian Federation.

Russian antiviruses were blacklisted: Kaspersky, XSignal, Metascan, Dr. Webas well as companies that supply cyber security solutions, for example Infotex, RusBiTech (which produces the Astra Linux operating system used by the Russian military), These were Technopolis, Pasit, Neobit, Advanced System Technology and Positive Technologies.

• SEE THE ORDER WITH THE COMPLETE LIST HERE

60 days to remove these Russian solutions

At the same time, on Tuesday, the Ministry of Digital Affairs presented for public discussion another draft order on the procedure, methods and tools for stopping the use of products and services from Russia, which will be banned.

• SEE THE ORDER WITH THE ORDER HERE

The draft states that “subjects develop an internal procedure for the termination of use, accordingly, disconnection/uninstallation of software products and services prohibited by the Law and implement it within 60 days from the moment of entry into force of this order.”

Interested institutions should also develop their own plan to replace software products and services prohibited by the Law with legal and compatible ones from a technical and operational point of view, according to the needs of each entity.

In this respect, within 30 days from the date of entry into force of this order, the relevant institutions must start procedures for public procurement of compatible and legal software products and services, from which to exclude companies prohibited by law, respectively:

• a) business entities that are under the direct or indirect control of a natural or legal person from the Russian Federation;
• b) operators whose capital is formed with participation coming directly or through companies involved from the Russian Federation;
• c) business entities whose management bodies include persons from the Russian Federation.

To whom this procedure will apply

The order provides that this procedure applies to all state authorities and institutions at the central and local levels, as well as to individuals and legal entities that own networks and computer systems through which classified information is managed, hereinafter referred to as subjects.

This procedure is not mandatory for authorities and state institutions that have their own powers in the field of national security, cyber security, national defense and public order, unless the head of the relevant authority or institution decides otherwise.

• Read more: Kaspersky Anti-Virus and other Russian IT solutions will be banned in government institutions, as well as in private IT systems with classified information / Why DRI or STS will be released