UK National Authority for Counter Eavesdropping explained

The UK National Authority for Counter-Eavesdropping (UK NACE) is one of the three specialist UK National Technical Authorities in the UK Government Security ecosystem,[1] alongside the National Cyber Security Centre and National Protective Security Authority. UK NACE specialises in technical security, the practice of protecting sensitive information and technology from close access acquisition by hostile threat actors, as well as from any other form of technical manipulation.[2] The aim of UK NACE is to help develop the standards for UK government technical security, provides training and mentoring to national and international partners and carries out research and development of new threats and countermeasure technologies.[3] UK NACE sits under the umbrella of the UK's Foreign, Commonwealth and Development Office, as part of FCDO Services.

History

UK NACE evolved from the Diplomatic Wireless Service of Bletchley Park in the 1940s.[4] It started in 1945 after it was found that British embassies in the USSR had been subject to technical espionage. The Foreign Secretary at the time, Ernest Bevin, sent a group of Post Office engineers to certain locations to do "conservative electrical maintenance" on the telephone and telegraphy systems, and "some preventative work such as anti-eavesdropping".

In 1958, UK NACE was recognised as a national authority by the Cabinet Office. From 1960, UK NACE was a part of MI5 before moving back to the Foreign, Commonwealth and Development office in 1969. In 2008, FCDO Services became a trading fund, allowing UK NACE to offer their services to other government departments, law enforcement and some List X companies.[5]

In 2020, UK NACE became a public authority under Schedule 4 of the Investigatory Powers Act, with the power to authorise collection of communications data in support of national security.[6]

Operations

UK NACE's main aims are to ensure that the most sensitive, classified areas within the UK government estate are protected.[7] Their services include:

UK NACE's operational officers primarily focus on three areas of technical security for the UK government and its partners:[8]

TEMPEST training

UK NACE provides specialist training to individuals working in the field of technical security, or who may have need to identify threats and put in place countermeasures to combat them.[9] The training is open to people who are either a UK citizen, or citizen of a NATO / EU member country and who work in a role that requires access to NATO TEMPEST policy standards.[10] It is assured under the National Cyber Security Centre's Certified Training scheme.[11]

Notes and References

  1. Web site: Government . UK . 2019-11-06 . Introducing Government Security . 2023-04-13 . UK Government Assets Publishing.
  2. Web site: Government . UK . 2019-11-06 . Protecting Government Security . 2023-04-13 . UK Government Assets Publication.
  3. Web site: NACE . UK . 2020-08-28 . UK NACE . 2023-04-13 . UK NACE.
  4. Web site: 2021-10-12 . 'Cutting edge' or a 'security nightmare'? Government anti-espionage unit on the tech behind Bond gadgets . 2022-04-14 . PublicTechnology.net . en.
  5. Web site: UK NACE History . 2022-04-14 . FCDO Services . en-GB.
  6. Web site: Legislation.gov.uk .
  7. Web site: NACE . UK . 2023-08-28 . UK NACE . 2023-04-14 . UK NACE.
  8. Web site: NACE . UK . 2020-08-28 . UK NACE Operations . 2023-04-14 . UK NACE Operations.
  9. Web site: NACE . UK . 2021-10-20 . uk-nace-academy/tempest-training/ . 2023-04-14 . TEMPEST training.
  10. Web site: NACE . UK . 2021-10-20 . UK NACE Academy TEMPEST Training . 2023-04-14 . UK NACE Academy TEMPEST Training.
  11. Web site: CyberSecurity Centre . National . 2023-04-14 . National Cyber Security Centre, Organisations . 2023-04-14 . NCSC.