European Union Agency for Network and Information Security

Countdown to launch: new ENISA web site is due in the following days

Mon, 04/11/2016 - 15:37

While a new ENISA web site is due for launch in the following days we are excited to announce some of the new features that are on the way. Coming soon on a URL near you:

  • New look and feel. A website that is interactive, responsive with a contemporary layout and a user friendly structure; optimised for use across multiple platforms.
  • New design. The Agency’s website has been redesigned to further improve ease of navigation, usability and user experience.
  • A dynamic architecture providing easy access to ENISA’s work programme, publications, careers, news, events and audio-visual material.
  • ENISA’s policy work on network and information security has been organised across a set of 16 re-aligned topics to reflect the way we work.

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

ENISA proposes PETs maturity assessment methodology

Fri, 04/01/2016 - 17:35

About the Report. ENISA has produced a report on maturity (i.e. quality and technology readiness) assessment of Privacy Enhancing Technologies (PETs). The report firstly, sketches a methodology for gathering expert opinions and measurable indicators as evidence for a two dimensional rating scale. Secondly, the report reviews two pilots to test the proposed scales and methodology.

The results of these pilots are presented in this study. In addition, a list of necessary steps towards a PET maturity repository is made available.

For Whom. This report is meant for Data Protection Authorities (DPAs), groups such as the Internet Privacy Engineering Network (IPEN), data controllers, data processors, developers of IT products, researchers, educators and their funding agencies, standardisation bodies, and policy makers.

What is next. In 2016 ENISA will further detail out this structured assessment process for PETs. ENISA will concentrate efforts on turning the methodology into a tool that supports a standardised step-by-step walk-through for the assessment of both readiness and quality of a PET.


Full report
available online

For technical information: Dr Stefan Schiffner, NIS Expert Stefan.Schiffner@enisa.europa.eu

For press and media enquiries please contact: press@enisa.europa.eu Tel +30 2814 409576

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

ENISA strategies for efficient incident response and coordination towards cyber threats

Fri, 04/01/2016 - 17:25
Working Group (WG2) 2 of the NIS Platform is tasked to address the sharing of cyber threat information and incident coordination in both the public and private segments of the EU. The aim of this document is to support and stimulate discussion between WG2 members on the topic of incident response and cyber crisis coordination.

This document introduces the basics of incident response on a high level. Key challenges are identified on the typical issues that slow incident response mechanisms, and proposes ways to address these challenges, and enhance incident handling cooperation while taking into consideration the overview of cyber threats and emerging trends.

Among its objectives of incident response is to identify the requirements and issue recommendations on sharing cyber threat information which are appropriate for incident management processes to prevent and best respond to cyber incidents. The work builds on previous work undertaken by ENISA in the field of CSIRT and CIIP.

For the full document: Strategies for incident response and cyber crisis cooperation

About NIS platform: The Network and Information Security (NIS) Platform was created in 2013 as part of the Cybersecurity Strategy of the European Union and aims to help EU stakeholders carry out appropriate risk management, establish good cyber security policies and processes and further adopt standards and solutions that will improve the ability to create safer market conditions for the EU. The expert work of the NIS Platform was divided into Working Groups (WGs), all dealing with a specific field of expertise in cyber security establishing three WGs: (1) WG1 on risk management; (2) WG2 on information exchange and incident coordination; (3) WG3 on secure ICT research and innovation. For more information on the NIS platform, please visit: https://resilience.enisa.europa.eu/nis-platform 

ENISA’s Cyber-Threat overview 2015

Increasing the resilience of Europe’s telecommunication infrastructures through Incident Reporting


For technical information
on the subject please contact

For press and media enquiries please contact press@enisa.europa.eu

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

ENISA proposes PETs maturity assessment methodology

Thu, 03/31/2016 - 15:04

About the Report. ENISA has produced a report on maturity (i.e. quality and technology readiness) assessment of Privacy Enhancing Technologies (PETs). The report firstly, sketches a methodology for gathering expert opinions and measurable indicators as evidence for a two dimensional rating scale. Secondly, the report reviews two pilots to test the proposed scales and methodology.

The results of these pilots are presented in this study. In addition, a list of necessary steps towards a PET maturity repository is made available.

For Whom. This report is meant for Data Protection Authorities (DPAs), groups such as the Internet Privacy Engineering Network (IPEN), data controllers, data processors, developers of IT products, researchers, educators and their funding agencies, standardisation bodies, and policy makers.

What is next. In 2016 ENISA will further detail out this structured assessment process for PETs. ENISA will concentrate efforts on turning the methodology into a tool that supports a standardised step-by-step walk-through for the assessment of both readiness and quality of a PET.


Full report
available online

For technical information: Dr Stefan Schiffner, NIS Expert Stefan.Schiffner@enisa.europa.eu

For press and media enquiries please contact: press@enisa.europa.eu Tel +30 2814 409576

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

ENISA strategies for efficient incident response and coordination towards cyber threats

Thu, 03/24/2016 - 16:43

Working Group (WG2) 2 of the NIS Platform is tasked to address the sharing of cyber threat information and incident coordination in both the public and private segments of the EU. The aim of this document is to support and stimulate discussion between WG2 members on the topic of incident response and cyber crisis coordination.

This document introduces the basics of incident response on a high level. Key challenges are identified on the typical issues that slow incident response mechanisms, and proposes ways to address these challenges, and enhance incident handling cooperation while taking into consideration the overview of cyber threats and emerging trends.

Among its objectives of incident response is to identify the requirements and issue recommendations on sharing cyber threat information which are appropriate for incident management processes to prevent and best respond to cyber incidents. The work builds on previous work undertaken by ENISA in the field of CSIRT and CIIP.

For the full document: Strategies for incident response and cyber crisis cooperation

About NIS platform: The Network and Information Security (NIS) Platform was created in 2013 as part of the Cybersecurity Strategy of the European Union and aims to help EU stakeholders carry out appropriate risk management, establish good cyber security policies and processes and further adopt standards and solutions that will improve the ability to create safer market conditions for the EU. The expert work of the NIS Platform was divided into Working Groups (WGs), all dealing with a specific field of expertise in cyber security establishing three WGs: (1) WG1 on risk management; (2) WG2 on information exchange and incident coordination; (3) WG3 on secure ICT research and innovation. For more information on the NIS platform, please visit: https://resilience.enisa.europa.eu/nis-platform 

ENISA’s Cyber-Threat overview 2015

Increasing the resilience of Europe’s telecommunication infrastructures through Incident Reporting


For technical information
on the subject please contact cert-relations@enisa.europa.eu

For press and media enquiries please contact press@enisa.europa.eu

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

 

Annual Privacy Forum 2016: Final call for papers

Wed, 03/16/2016 - 17:25

Submission of papers: To submit your paper you are requested to use the following link. The programme committee will provide extensive feedback to all authors.

Call for papers: Papers covering original work on the technological, economic, legal and societal aspects of the challenges that will come up with the implementation of the new framework. Opinion papers will reflect the opinion/position of the author(s) on the selected privacy-related topic.

Multidisciplinary papers are particularly welcome, making explicit how the presented work can contribute to bridging the gap between research and policy.

Contributions from policy makers, representatives of competent authorities, such as Data Protection Authorities, industry experts, NGOs and civil society associations. For detailed information and the aspects with which research and opinion papers should deal with are available at: http://privacyforum.eu/call-for-papers

Submissions must be written in English and need to comply with the Springer LNCS style guide. Authors must submit their papers by the deadline indicated on the conference web site and follow the requirements stated there. Papers will be published in the proceedings of the conference with a publishing house soon to be selected and announced.

About the event: ENISA’s Annual Privacy Forum (APF) is to be held on the 7th and 8th September 2016. The meeting is to be held in Frankfurt, at the Goethe University Frankfurt am Main. This year’s edition is organised in the light of the agreement on the data protection regulation and the European Digital agenda.

The European Commission Directorate General for Communications Networks, Content and Technology (DG CONNECT), the European Union Agency for Network and Information Security (ENISA), Mobile business and as local host, the University of Goethe University Frankfurt am Main and in partnership with the EDPS, organise the two-day event with the objective of providing a forum to academia, industry and policy makers

#APF16 poster: http://privacyforum.eu/admaterial/poster-pdf/download/en/1/APF%20final.pdf

Stay connected with #APF16: RSS feeds, follow #APF16 and #PrivacyForum_EU on twitter, and the dedicated site http://privacyforum.eu/

To contact the APF Committee through the link

For press enquiries please contact press@enisa.europa.eu

 

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Annual Privacy Forum 2016: Final call for papers

Wed, 03/16/2016 - 09:20

Interested parties are invited to submit their papers for this year's #APF16 conference until 31st March, 2016.

Submission of papers: To submit your paper you are requested to use the following link. The programme committee will provide extensive feedback to all authors.

Call for papers: Papers covering original work on the technological, economic, legal and societal aspects of the challenges that will come up with the implementation of the new framework. Opinion papers will reflect the opinion/position of the author(s) on the selected privacy-related topic.

Multidisciplinary papers are particularly welcome, making explicit how the presented work can contribute to bridging the gap between research and policy.

Contributions from policy makers, representatives of competent authorities, such as Data Protection Authorities, industry experts, NGOs and civil society associations. For detailed information and the aspects with which research and opinion papers should deal with are available at: http://privacyforum.eu/call-for-papers

Submissions must be written in English and need to comply with the Springer LNCS style guide. Authors must submit their papers by the deadline indicated on the conference web site and follow the requirements stated there. Papers will be published in the proceedings of the conference with a publishing house soon to be selected and announced.

About the event: ENISA’s Annual Privacy Forum (APF) is to be held on the 7th and 8th September 2016. The meeting is to be held in Frankfurt, at the Goethe University Frankfurt am Main. This year’s edition is organised in the light of the agreement on the data protection regulation and the European Digital agenda.

The European Commission Directorate General for Communications Networks, Content and Technology (DG CONNECT), the European Union Agency for Network and Information Security (ENISA), Mobile business and as local host, the University of Goethe University Frankfurt am Main and in partnership with the EDPS, organise the two-day event with the objective of providing a forum to academia, industry and policy makers

#APF16 poster: http://privacyforum.eu/admaterial/poster-pdf/download/en/1/APF%20final.pdf

Stay connected with #APF16: RSS feeds, follow #APF16 and #PrivacyForum_EU on twitter, and the dedicated site http://privacyforum.eu/

To contact the APF Committee through the link

For press enquiries please contact press@enisa.europa.eu

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Slovak Republic - New Cyber Security Concept published

Thu, 03/10/2016 - 14:20

The new Concept was established on the basis of the cooperation of the Government Office of the Slovak Republic, the National Agency for Network and Electronic Services and the National Security Authority. Since January 1, 2016 the National Security Authority was determined as the main body of state administration for Cyber Security. The core strategic aim of the Concept is to establish open, secure and protected cyber space.

The Concept is mainly focused on:

  1. Building of Institutional Framework for Cyber Security Administration - The Concept emphasizes the establishment of a National Incident Resolution Unit and several incident resolution units.
  2. Creation and Adoption of a Legal Framework for Cyber Security.
  3. Development and Application of Basic Mechanisms Providing for the Administration of Cyber Space.
  4. Support, Formulation and Implementation of an Education System in the Area of Cyber Security.
  5. Determination and Application of Risk Management Culture and Communication System Between Stakeholders.
  6. International Cooperation.
  7. Support of Science and Research in the Area of Cyber Security.


You can download the English translation of the “Cyber Security Concept of the Slovak Republic”

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Guidelines on assessing the impact of incidents in the telecom sector

Wed, 03/09/2016 - 10:40

Economic development is strongly related to the well-functioning of telecommunication networks which have become the backbone of modern economies. Disruptions due to incidents in these networks, can truly impact the business, the overall wealth of the economy, other providers and possibly affect other nations.

Measuring the impact of incidents has become one of the toughest challenges nowadays, given the multitude of factors and indicators that must be taken into consideration. To address this issue, indicators are used, accompanied by thresholds, to assess the impact of incidents. This approach allows the evaluation of incidents from various perspectives, such as the business perspective, compliance with regulations, root causes, impact on customers and others.

Measuring the impact of incidents has become a necessity nowadays due to legal and business requirements. ENISA's new report provides a useful list of common indicators for measuring the impact of incidents. The report was compiled by collecting ideas from both NRAs and providers. Indicators are provided for the following areas:

  • User/connection related indicators
  • Time/duration related indicators
  • Geographic area related indicators
  •  infrastructure and services affected related indicators
  • Root cause dependent indicators
  • Economic impact related indicators
  •  Cyberattacks related indicators

Full report is available here

For technical information: Dan Tofan, NIS Expert, email: Dan.Tofan@enisa.europa.eu

For media and press enquiries please contact press@enisa.europa.eu, Tel: +30 2814 409576

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Guidelines on assessing the impact of incidents in the telecom sector

Wed, 03/09/2016 - 08:29

Economic development is strongly related to the well-functioning of telecommunication networks which have become the backbone of modern economies. Disruptions due to incidents in these networks, can truly impact the business, the overall wealth of the economy, other providers and possibly affect other nations.

Measuring the impact of incidents has become one of the toughest challenges nowadays, given the multitude of factors and indicators that must be taken into consideration. To address this issue, indicators are used, accompanied by thresholds, to assess the impact of incidents. This approach allows the evaluation of incidents from various perspectives, such as the business perspective, compliance with regulations, root causes, impact on customers and others.

Measuring the impact of incidents has become a necessity nowadays due to legal and business requirements. ENISA has published a study that aims at providing guidelines to national regulatory authorities (NRAs) and telecommunications providers within EU Member States, for measuring the impact of security incidents affecting electronic communication services.

The report provides a useful list of common indicators for measuring the impact of incidents. The report was compiled by collecting ideas from both NRAs and providers. Indicators are provided for the following areas:

  • User/connection related indicators
  • Time/duration related indicators
  • Geographic area related indicators
  •  infrastructure and services affected related indicators
  • Root cause dependent indicators
  • Economic impact related indicators
  •  Cyberattacks related indicators

 

Full report is available here

For technical information: Dan Tofan, NIS Expert, email: Dan.Tofan@enisa.europa.eu

For media and press enquiries please contact press@enisa.europa.eu, Tel: +30 2814 409576

 

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

 

Key security challenges and mitigation measures on Big Data security

Tue, 03/08/2016 - 10:33

 ENISA publishes today the report on Big Data Security presenting the key security challenges and mitigation measures.

The report categorises the security challenges based on three use cases:

  • Big Data system for use in advanced Security Incident Event Management (SIEM)
  • Big Data in Industrial control systems, and
  • Big Data in the Telecoms


The report is available here

For technical information: Rossen Naydenov, NIS expert email: Rossen.Naydenov@enisa.europa.eu

For media enquiries: press@enisa.europa.eu Tel. +30 2814 409576

 

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Call for advisory group: Personal data security in small and medium organizations

Mon, 02/29/2016 - 14:34

Small and medium organizations (SMOs) in Europe are becoming increasingly concerned about the risks introduced by processing automatically clients’ and/or users’ information and how they can protect it adequately. However, deciding the appropriate security measures to implement, adapted to the organization’s existing risk environment, is not trivial for them.

ENISA, based on the existing need for guidance in the area, seeks to engage a group of advisors which will help to improve the quality of the recommendations by evaluating the guidelines. The Agency is looking, preferably for information security officers and/or data protection officers in small and medium organizations. The project output will consist of a series of manuals, targeted to support SMOs in the selection of appropriate controls to protect personal data based on the assessed level of risk.

Further information about the project and to express your interest to join the group, please visit the link:  Terms of Reference

To contact ENISA’s Information Security and Data Protection Unit please email:  isdp (at) enisa.europa.eu   

This call is open until March 31st 2016

 

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

 

The NIS Directive and National CSIRTs

Fri, 02/26/2016 - 14:55

In December 2015 the EU institutions reached an agreement on an EU wide legislation on cybersecurity. In the proposal for a Directive, special reference is made to CSIRTs. With this informative note, ENISA looks into the provisions of the upcoming Directive and how it may translate for CSIRTs. The document, contains references to parts of the Directive, including our comments and proposals.

The document should be regarded as a primer for future discussions, and by no means should it be considered as fixed or final.


The full document is available here

For more on the subject please contact: cert-relations (at) enisa.europa.eu  

Relevant links:

ENISA welcomes the agreement of EU Institutions on the first EU wide cybersecurity Directive and Agency’s extended role

Commission welcomes agreement to make EU online environment more secure

MEPs close deal with Council on first ever EU rules on cybersecurity

 

 

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Sign up for the European Cyber Security Challenge competition!

Thu, 02/25/2016 - 12:10

The European Union Agency for Network and Information Security - ENISA is honoured to coordinate the European Cyber Security Challenge, a pan-European competition designed to encourage young talent to get advanced skills in cyber security. This competition targets young people that did not study Information Security as main specialization during various educational degrees.

The competition is designed to involve teams in a multilevel process. The winners of national competitions will meet during  7th -11th November in Dusseldorf, Germany for the European final. There they will compete in solving security related tasks from domains such as web security, mobile security, crypto puzzles, reverse engineering and forensics which will determine the European winner of 2016 edition.

 

To register for the competition or just to inquire about more information, please send an email to: cert-relations@enisa.europa.eu
For more details visit: http://www.europeancybersecuritychallenge.eu/
General overview:
https://cybersecuritymonth.eu/cyber-security-challenge-competition

Follow on twitter: @ENISA_EU  #EuropeanCyberChallenge

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Call for experts for TRANSSEC - Intelligent Public Transport Resilience and Security Expert Group

Wed, 02/17/2016 - 09:13

In smart cities, Intelligent Public Transport (IPT) rely on IoT and cyber-physical systems to retrieve, process, and exchange data. These technologies bring improvements in the service and the quality of life of citizens. Intelligent public transport is defined as the usage of information and communication technologies (e.g. embedded computers, networks, SCADA systems, etc.) to operate and optimise a public transport system.

To further enhance its work in the area, ENISA launches this call for participation inviting experts in security of intelligent public transports in the context of smart cities. ENISA’s Transport Resilience and Security Expert Group (TRANSSEC) aims to gather experts in the domain of intelligent public transports.

Experts of the TRANSSEC group shall have expertise in one or several of the following domains:

  • Operators and infrastructure owners of Intelligent Public Transports systems with an interest in cyber security
  • Manufacturers or integrators of Intelligent Public Transports systems with a focus on cyber security
  • Suppliers and developers of transport hardware and/or software with a focus on cyber security
  • Associations and not-for-profit organisations involved in Intelligent Public Transports security
  • Relevant authorities, academia, standardisation bodies and policy makers


The objective is to cover cybersecurity expertise for local public transport networks, including metro, buses, light rail and other modes of mass public transport found in Smart Cities.


For details
please read the terms of reference and apply through the dedicated page.


Related material
recently published by ENISA:

 

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

E-learning platform by ENISA on National Cyber Security Strategies

Mon, 02/15/2016 - 09:44

ENISA launches today the National Cyber Security Strategies e-learning platform.The platform is appropriate for experts involved in the process of creating or implementing a strategy at a national level.

Launching a cyber security strategy involves collaboration of many key stakeholders. The platform aims to provide interactive training courses in order to facilitate the process of:

  • designing a national cyber security strategy
  • implementing a national action plan
  • evaluating the cyber security awareness after the end of the timeframe
  • raising awareness on cyber security topics
  • offering advice to the public bodies that need to take over the initiative

 

To receive access to ENISA's tool please register here.

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Cryptographic tools are important for civil society and industry

Fri, 02/12/2016 - 08:56

The availability of strong and trustworthy cryptographic tools is an important building block of a society and economy that is more than ever depending on electronic services. The legitimate need to protect communication among individuals and public and private organizations has often been depicted as threat to business models or even public security. At the same time, the lack of trust in digital services has been identified as an inhibiting factor for the digital market. This has a particular weight in view of the new agreements on the NIS directive and General data protection regulation, which foster the trust of public and private sector to digital networks and services at a national and EU level. However, in the light of terrorism and crime prevention, opinions have been voiced that cryptographic tools need to be regulated.

ENISA’s paper on the subject looks into several aspects of crypto regulation and their difficulties from a technical perspective. Key points ENISA focuses on are:

  • The use of cryptography might make lawful interception harder and by this less efficient or even ineffective. While key recovery and escrow might enable lawful interception, it introduces new technological risks to IT infrastructure and it might even damage the gathered evidence.
  • It is easy to bypass systems that allow key escrow or recovery; evidence for bypassing will only be found during investigation.
  • Vulnerabilities that where left from legacy policy have been abused to attack systems. Further, policy that limits the use of cryptography in commercial products can damage IT industry.


Cryptography provides the tools necessary to protect assets in a highly computerised world. In the light of terror attacks and organized crime, law enforcement and intelligence services have requested to create means to circumvent these protection measures. While their aims are legitimate, limiting the use of cryptographic tools will create vulnerabilities that can in turn be used by criminals and terrorists, and lower the trust in electronic services, which eventually will damage industry and civil society in the EU.

The issues mentioned are mere examples of currently widely used protection measures. Emerging privacy enhancing technologies might introduce even more challenges. To overcome these issues, ENISA is eager to support the Member States and competent EU bodies to perform further analyses and to define a balanced approach to move forward.


ENISA's paper is available here

For more on the subject please contact Dr Ikonomou, email: isdp@enisa.europa.eu

For press enquiries please contact press@enisa.europa.eu

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

#APF16: Call for Papers open until March 15th

Thu, 02/11/2016 - 13:05

ENISA’s Annual Privacy Forum (APF) is to be held on the 7th and 8th September 2016. The meeting is to be held in Frankfurt, at the Goethe University Frankfurt am Main. This year’s edition is organised in the light of the agreement on the data protection regulation and the European Digital agenda.

Get involved to:

  • learn from the professionals in the field
  • participate in a high level debate
  • discover the trends for the future
  • network with key players in privacy and NIS


The call for papers is open until 15th March
. To submit your paper you are requested to use the following link. The programme committee will provide extensive feedback to all authors.

Call for papers: Papers covering original work on the technological, economic, legal and societal aspects of the challenges that will come up with the implementation of the new framework. Opinion papers will reflect the opinion/position of the author(s) on the selected privacy-related topic.

Multidisciplinary papers are particularly welcome, making explicit how the presented work can contribute to bridging the gap between research and policy.

Contributions from policy makers, representatives of competent authorities, such as Data Protection Authorities, industry experts, NGOs and civil society associations. For detailed information and the aspects with which research and opinion papers should deal with are available at: http://privacyforum.eu/call-for-papers

Submissions must be written in English and need to comply with the Springer LNCS style guide. Authors must submit their papers by the deadline indicated on the conference web site and follow the requirements stated there. Papers will be published in the proceedings of the conference with a publishing house soon to be selected and announced.


To receive the latest news and updates sign up for the
RSS feeds, follow #APF16 and #PrivacyForum_EU on twitter, and the dedicated site http://privacyforum.eu/

For information please contact the APF Committee via the following link

For press enquiries please contact press@enisa.europa.eu


About APF:
The European Commission Directorate General for Communications Networks, Content and Technology (DG CONNECT), the European Union Agency for Network and Information Security (ENISA), Mobile business and as local host, the University of Goethe University Frankfurt am Main and in partnership with the EDPS, organise the two-day event with the objective of providing a forum to academia, industry and policy makers.

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

ENISA plays its part for a better internet!

Sun, 02/07/2016 - 22:05

Safer Internet Day 2016 is celebrated on Tuesday 9 February 2016, with this year’s theme being 'play your part for a better internet’.

The dedicated website https://www.saferinternetday.org/  , twitter account @safeinternetday and hastags #SID2016,  #Iplaymypart and #playyourpart showcase the many events and activities taking place across the globe to mark the day.

Safer Internet Day is organised by Insafe in February of each year to promote safer and more responsible use of online technology and mobile phones, especially among children and young people across the world.

ENISA celebrates the day sharing some of its work in the field of education and awareness as a central broker of best practices in terms of NIS materials and tools. Check out ENISA’s page on saferinternetday for more tips! ENISA also supports the initiative on thunderclap

Four new
posters are released and available online as part of our educational campaign (#Netiquette) for all EU citizens interested in a secure and safe digital life:


Download in your language clicking on the flags below:

October is the European Cyber Security Month! Call for partners!

With this opportunity, ENISA invites public and private organisations to signal their interest to take part in this year advocacy campaign by filling in this web-form. Find out more:


We also recommend for consultation:

  • Education reports
  • Pin a course on this interactive map
  • Search National Cyber Security Strategies on this interactive map
  • Adopt PETs! ENISA promotes awareness and the uptake of PETs (privacy enhancing technologies) which refer to technologies/tools that can support users in safeguarding their privacy and personal data, especially when using online applications and services. Examples of PETs include tools that can offer protection against online tracking, as well as tools providing encryption and secure messaging functionality. Download ENISA’s new ‘Time to adopt PETs’ poster!
  • Get involved as researcher: Submit your paper to the Annual Privacy Forum (APF) 2016 until March 15 2016
  • Training on technical topics at ENISA
  • Play the quiz by ENISA
  • A collection by ENISA with cyber security awareness material available online     


User Education is key in cyber security! So play your part too! Follow
#CyberEDU #CyberSecMonth #ECSM

Follow the live chat on twitter #ChatSTC

#SID2016 #Iplaymypart  #playyourpart @safeinternetday

Safer Internet Day 2016 release

For media and press enquiries
please contact press@enisa.europa.eu, Tel: +30 2814 409576

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

 

ENISA - Telefonica Workshop on Big Data

Fri, 02/05/2016 - 14:10

The use of big data in critical sectors was the theme of the workshop hosted by ENISA and Telefonica hosted in Madrid on February 2nd 2016. The invitation only event welcomed participants from the private sector, banks and cloud service providers.

Manuel Carpio, Telefonica’s Director of Information Security and Fraud Prevention, and ENISA’s Evangelos Ouzounis, Head of Secure Infrastructures and Services, gave the welcoming notes. Speakers included colleagues from Google and IBM, as well as representatives from Spain’s Data Protection Office.

The workshop aimed at providing valuable insights on the current status of big data security and privacy, and  identified challenges and risks and the potential ways to address the expressed concerns. ENISA’s experts gave an overview of the findings as identified in its upcoming report on ‘Big Data Security” and the recently published 'Privacy by design in Big Data' report.

The event hosted open discussions on topics such as encryption, current technical tools to protect security and privacy of big data systems, company organisational structure, as well as privacy policy covering the use of personal information in big data systems.

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Pages