On July 7 the European Commission moved advanced AI models inside the cybersecurity perimeter. Its Action Plan on Cybersecurity and Artificial Intelligence treats the model as a capability to be evaluated and access-controlled, not a black box you consume (European Commission, 2026).
The plan sets three aims. Promote the safe use of advanced AI. Reinforce Europe's cyber resilience. Build Europe's own AI capacity for cybersecurity (European Commission, 2026). Read together, they move one line. The model is now a security object, not only a productivity one.
Evaluation moves from paperwork to capability
The headline is institutional, not technical. The Commission will build Europe's capacity to evaluate AI models before they reach the EU market, in support of the AI Office (European Commission, 2026). The AI Act already asks for this. It requires advanced models to be assessed for risk before they are placed on the market (European Commission, 2026). What was written now gets an engine.
With ENISA, the Commission will define a European blueprint for secure access to advanced AI systems (European Commission, 2026). Access to models with advanced cyber capability becomes conditioned by who you are: a public institution, a critical operator, a research body. The model stops being a thing you simply buy.
The part written for regulated operators
One line in the plan is addressed to our clients. The Commission, with the Joint Research Centre, will stand up a secure platform to test AI for cybersecurity in critical sectors: energy, transport, health, finance and public administration (European Commission, 2026). These are the five perimeters where a model failure is not a support ticket.
The plan carries no firm dates. It states the Commission will help establish that capacity and will create that platform, in future tense, without a calendar (European Commission, 2026). That is the tell. The capacity is a direction, not a deadline. Waiting for the date is the error boards already made with the AI Act.
A model you cannot expose to evaluation is a model you cannot deploy in a regulated sector. Evaluability is not a property of the model. It is a property of your architecture. Hikari Blue · operator note
What this asks of the enterprise
For a board, this is a second gate. The AI Act governs whether your system is compliant. The cyber plan governs whether the model underneath can be evaluated and accessed at all. Both gates open onto the same sectors. Both close on a black box.
For a CISO, the direction is already set in binding law. Article 15 of the AI Act requires high-risk systems to withstand attempts by third parties to alter their outputs, and to defend against data poisoning, model poisoning and adversarial inputs (EU AI Act, Article 15). July's simplification deferred that duty to December 2027. The cyber plan moves the same logic upstream, to the model before it ships, and attaches no delay to it.
For a CTO, the design consequence is direct. A model consumed as an opaque endpoint, swapped by a vendor without notice, cannot be presented to an evaluator or tested on a shared platform. Model routing, prompt sovereignty, and an audit trail that records what was asked, of which model, on which data, for which outcome: that is what makes evaluability real. We build that layer. It is what keeps an enterprise audit-ready, regulator-ready, board-ready when the platform opens.
The question to bring to the next board
Do not ask whether the plan applies to you.
Ask whether you could put your production model on the EU's testing platform tomorrow, and prove what it did.
If the honest answer is no, the gate is already shut. The date it becomes visible is not one you get to pick.
Sources
- European Commission (2026). New EU plan to address the risks and opportunities of advanced AI for cybersecurity. July 7, 2026. Names an EU capacity to evaluate AI models before market placement, an ENISA blueprint for secure access to advanced AI systems, and a Joint Research Centre platform to test AI for cybersecurity in critical sectors. commission.europa.eu/news-and-media/news/new-eu-plan-address-risks-and-opportunities-advanced-ai-cybersecurity-2026-07-07_en
- European Commission (2026). EU Action Plan on Cybersecurity and Artificial Intelligence. Shaping Europe's digital future. Three objectives and named critical sectors: energy, transport, health, finance, public administration. digital-strategy.ec.europa.eu/en/library/eu-action-plan-cybersecurity-and-artificial-intelligence
- EU AI Act (2024). Article 15, Accuracy, robustness and cybersecurity. High-risk systems shall resist attempts by unauthorised third parties to alter their use, outputs or performance, including data poisoning, model poisoning and adversarial inputs. artificialintelligenceact.eu/article/15
The Hikari Blue team · Austin, July 2026