European Union Agency for Network and Information Security

ENISA’s Head of Core Operations today at the final of the Austrian Cybersecurity Challenge

Wed, 10/12/2016 - 13:02

ENISA’s Head of Core Operations, Steve Purser, visits the final of the Austrian Cybersecurity Challenge, which is being held in St. Johann, Austria today.

This competition started with an online qualifying round held from, 9th May - 31st August, resulting in the twenty finalists, ten school students, ten undergraduate students, that compete at the final this week. The five best from each group will form the team that will represent Austria at the European Cyber Security Challenge 2016 final that will take place in  Dusseldorf between 7th -10th November 2016.

The European Cyber Security Challenge leverages on competitions from Member States, like the one currently taking place at Austria, adding a pan-European layer to them.

Top cyber talents from each Member State collaborate and compete against each other to win the ECSC prize. Contestants solve security related challenges from domains such as web security, mobile security, crypto puzzles, reverse engineering and forensics and collect points for solving them.

 

Website of the Austrian Cybersecurity Challenge http://www.verbotengut.at/ <http://www.verbotengut.at/>  

Website of the European Cybersecurity Challenge

 

Follow on Twitter: @enisa_eu,  #EUCSC2016

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

ECSM 2nd Week: Cyber Safety

Tue, 10/11/2016 - 14:15

Test your knowledge on privacy and security by taking the NIS Quiz!

The quiz has been updated by ENISA in-line with new privacy rules. For the first time, the quiz is now available in all 23 languages of the EU.


Visit the dedicated ECSM website: https://cybersecuritymonth.eu/ 

Follow the campaign on Twitter #CyberSecMonth, #OctoberNIS, #CyberAware

 

"Cyber security is a shared responsibility – Stop. Think. Connect."

European Cyber Security Month: get in the driving seat of your own online security

 

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

European Cyber Security Month: Join us online for "Ask me Anything" session on 4th October

Mon, 10/03/2016 - 12:10

F-Secure Cyber Security Advisor Erka Koivunen and ENISA's NIS expert Cosmin Ciobanu, will answer questions about #CyberSecMonth, creating a culture of security, and what you, your boss, and your boss' boss need to know about being hacked.


Join them  for a Reddit "Ask me Anything" session,  answering questions about #CyberSecMonth.

When:
4 October, 2016 15:00 EET

Where: Online at the following link 

https://safeandsavvy.f-secure.com/2016/09/30/ask-erka-koivunen-anything-for-european-cyber-security-month/

Country: Finland
 

The goal of the month is to raise awareness of cyber security threats, promote cyber security among citizens and provide up to date security information, through education and sharing of good practices. In other words, it's about not getting hacked! 

Follow: #CyberSecMonth

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

European Cyber Security Month: Join us online for "Ask me Anything" session today

Mon, 10/03/2016 - 12:10

F-Secure Cyber Security Advisor Erka Koivunen and ENISA's NIS expert Cosmin Ciobanu, will answer questions about #CyberSecMonth, creating a culture of security, and what you, your boss, and your boss' boss need to know about being hacked.


Join them today for a Reddit "Ask me Anything" session,  answering questions about #CyberSecMonth.

When:
Today, 4 October, 2016 15:00 EET

Where: Online at the following link 

https://safeandsavvy.f-secure.com/2016/09/30/ask-erka-koivunen-anything-for-european-cyber-security-month/

Country: Finland
 

The goal of the month is to raise awareness of cyber security threats, promote cyber security among citizens and provide up to date security information, through education and sharing of good practices. In other words, it's about not getting hacked! 

Follow: #CyberSecMonth

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

A week to go for the European Cyber Security Month launch!

Fri, 09/23/2016 - 12:55

 


When:
30 September 2016

Time: 9.30 -14.00 (including networking lunch)

Where: European Banking Federation

Avenue des Arts, 56, B-1000 Brussels

 

At the launch event three discussion panels with specialists from public and private sectors and academia, introduce the four themes of the ECSM 2016 edition:

Week 1 October 3-7: Security in Banking

Week 2 October 10-14: Cyber Safety

Week 3 October 17-21: Cyber Security Training

Week 4 October 24-28: Mobile Malware

 

The event offers an excellent opportunity for all actors in cyber security to interact and discuss together matters of common interest.

To find out more about the activities and how to get involved visit – www.cybersecuritymonth.eu

Follow the campaign on Twitter @CyberSecMonth @enisa_eu #CyberSecMonth, #OctoberNIS, #Cyberaware


'Cyber security is a shared responsibility – Stop. Think. Connect.'

For interviews and press enquiries please contact press@enisa.europa.eu Tel. +30 2814 409576

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Udo Helmbrecht at Munich Security Conference on connectivity and security in critical infrastructures

Tue, 09/20/2016 - 03:45

Udo Helmbrecht participates at the fourth Cyber Security Summit hosted by the Munich Security Conference in Silicon Valley, where on the 19th and 20th September he joins around a hundred key representatives from both the EU and the US scene, from diverse fields of the public and private sphere to debate on trending cyber challenges.

Among the speakers at the MSC panel on "Connectivity vs. Security? Critical Infrastructure under Cyber Attack", ENISA’s Executive Director, Udo Helmbrecht said that while modern economies rely on the newly developed cyber infrastructures assuring their security has become the main priority of many actors such as governments and companies, as this may have implications on the economies and business. “Dependencies of critical infrastructure across the EU increase the attack surface and the potential impact of cyber incidents”. Furthermore, critical infrastructures - such as electricity generation plants, transportation systems, manufacturing facilities – are controlled and monitored by Industrial Control Systems (ICS), including SCADA systems. The importance of continuous improvement of ICS-SCADA[1] security for critical service providers is increasingly recognized as a high priority area among European critical infrastructure operators due to its strategic impact on processes essential for uninterrupted functioning of the EU industries and economy.

It is noted that the most expensive attacks are considered to be insider threats, while DoS/DDoS and malicious insiders attack, are the two types which collectively constitute approximately half the annualized cost of all cybercrime. In terms of country loss, the costs can reach up to 1.6% of GDP in some EU countries[2] while for the global economy, loss is estimated between 330 to 506 billion euros.[3] Finance, ICT and energy sectors display the highest incident costs.

In this context it was explained how mandatory incident reporting from the telecom sector (Art. 13a of the Telecom Package) and trust service providers (Art. 19 of the eIDAS Regulation) provides an aggregated overview of incidents of significant impact. “National cyber security strategies and the recent NIS Directive help enhance cyber security from a policy perspective, setting the foundations for increased EU-level cooperation, risk management and incident reporting obligations, for operators of essential services and digital service providers. Government and the private sector can cooperate more proactively in order to not just respond, but also better deter and defend against potential cyberattacks”.

Livestream of the Cyber Security Summit in Stanford

For more infor visit: https://www.securityconference.de/en/

 

For interviews and  more on the subject please contact press@enisa.europa.eu Tel. +30 2814 409 576


[1] ICS-SCADA: Industrial Control and Supervisory Control and Data Acquisition Systems

[2] Cost of Cyber Crime Study: France, Ponemon Institute, 2014

[3] Net Losses: Estimating the Global Cost of Cybercrime, McAfee, 2014

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Discussion on implementing the NIS Directive and enhancing competitiveness

Mon, 09/12/2016 - 08:20

Udo Helmbrecht met together with representatives from the political and business sphere including Saskia Esken (MP,SPD), Bodo Meseke, (Ernst & Young), Prof. Dr. Michael Waidner, (Director, Fraunhofer SIT) and Olaf Siemens (DCSO) to discuss on  ‘New European rules on IT security - new demands on the business’ at the Berliner Digital Dialog.

Udo Helmbrecht shared insights into the costs caused by cyber-attacks. Determining the real economic impact of incidents on EU’s economy can help in defining proper, coherent and cost effective mitigation policies.  Costs can reach up to 1.6% of GDP in some EU countries[1] while for the global economy, loss is estimated between 330 to 506 billion euros[2]. Finance, ICT and energy sectors display the highest incident costs.

The requirements deriving from the NIS Directive for industry and what is expected from Digital Services Providers (DSPs) and Essential Service Operators (ESOs) – from the energy, banking, healthcare, transport sector - on incident reporting were discussed. Furthermore, the contribution of standardisation strategies was looked into as a component to increase EU competitiveness, trust, provide a functional operational framework for emerging technologies, and ultimately security.

“Many of the most costly attacks are considered to be insider threats. It is important to protect our industry and preserve the smooth functioning of the internal market and our economy.  The provisions of the NIS Directive can act as a tool for businesses, for improved risk management and more resilient operation systems” commented Udo Helmbrecht.

 


[1] Cost of Cyber Crime Study: France, Ponemon Institute, 2014

[2] Net Losses: Estimating the Global Cost of Cybercrime, McAfee, 2014

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

ENISA in 2015 - Annual Report

Fri, 09/09/2016 - 17:45

This past year was particularly active - given the agreements on the NIS Directive, the General Data Protection Regulation (GDPR) and the announcement of the Digital Single Market (DSM) initiative by the Commission, with the Agency working together with the EU institutions, contributing to the processes at the EU level and translating to stakeholders - and particularly industry - the new regulatory environment. These landmark agreements make the Agency’s work even more important within the EU on cybersecurity, and its stimulus to the internal market growth.

Highlights of the year, include best practices and recommendations in sectors such as e-health, finance, smart infrastructure and services, and cloud computing. The Agency continued work on renown activities such as Article 13a (disruption in the telecom sector) and Article 4 reporting (personal data breaches) and developing synergies between the two, and supported the implementation of the Article 19 (eIDAS), and CSIRTs training. Similarly, ENISA built on enhancing its presence further through key industry events and the increasing awareness through the annual Cyber Security Month (ECSM) and preparing for the pan-European cyber exercise in 2016. Article 14 requests - a mechanism which allows Member States and EU institutions to request specific items of work from the Agency beyond the work programme execution process - have grown in significance and demand, demonstrating an increase of 92%.

In 2015 the Agency successfully produced a total of fifty-three (53) deliverables on a variety of subjects. These range from national issues, such as the protection of critical infrastructures, to issues affecting citizens at an individual level such as privacy and data protection, and the annual report on cyber threats.

Throughout 2015 ENISA strengthened relations with the institutions, the public sector, industry and the research community, and assisted in making significant improvements to the state of cybersecurity throughout the EU – in areas such as standardisation, PETs, privacy by design (PbD) -responding to a rapidly developing threat environment and helping Member States to lay solid foundations for the information systems of the future, while promoting best practices and developing synergies towards a smooth cyber EU environment.

All activities carried out during the year resulted in various best practices and recommendations, available online ENISA’s website.

For more information on ENISA’s work contact press@enisa.europa.eu

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

ENISA's Annual Privacy Forum 2016 starts tomorrow

Tue, 09/06/2016 - 11:44

The event which takes place in Frankfurt am Main on the 7th and 8th September, is the fourth edition of the Annual Privacy Forum (APF), and is jointly organised by ENISA, DG CONNECT (European Commission Directorate General for Communications Networks, Content and Technology), Mobile business, the University of Goethe University as local host, and in partnership with the EDPS.

Among others, keynote speakers include Thomas Kremer (D.Telecom), Jacoba Sieders (ABNAMRO), and security and privacy expert Mikko Hypponen (F-Secure) who will speak on the current ‘State of the Net’. Full list of speakers is available here.

Scientific contributions during this year’s APF are published in the following link. Key focus themes include: eIDAS and data protection regulation; IoT and public clouds; and privacy policies and privacy risk presentation.

Stay connected with #APF16: follow #APF16 and #PrivacyForum_EU and @ENISA_eu on twitter, and the dedicated site http://privacyforum.eu/ and RSS feeds.

APF poster



 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

ENISA Validation Workshop - Market Study of NIS Products and Services

Mon, 09/05/2016 - 15:15

The meeting will take place in Brussels, on the 12th of October from 9:30 to 16:00 and will be hosted by the European Commission.

In addition to the study validation session, the agenda will include presentations on pertinent policy and industry topics by selected speakers:

  • Luigi Rebuffi Secretary General of ECSO (European Cyber Security Organisation)
  • Fabian Bahr, Head of Berlin Office at Giesecke & Devrient GmbH
  • Pascal Beglin, CEO at Streamwide
  • Helmut Fallmann, CEO at Fabasoft AG
  • Antonio Ramos, Founding Partner at Leet Security

 Information and Registration

 More information on the agenda, logistics and registration can be found in the following link:

ENISA Validation Workshop - Market Study of NIS Products and Services

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Young European white hat hackers meet for the 2nd Cyber Security Challenge competition

Mon, 08/22/2016 - 15:25

During the 2nd European Cyber Security Challenge, participants will have to discover vulnerabilities in web applications, binaries and document files, solve crypto puzzles and hack hardware systems. However, technical skills are just one part of the whole story. As the time and resources will be limited, teamwork skills are also extremely important. The competition will end with a presentation by each team. The complete skillset which is important for working in an IT security team, is thus tested.

The goal of the competition is to bring new people into professional IT security field, therefore the participants are limited to young people who do not yet have higher education in the field and who do not work in it professionally. The event will also include a conference and teambuilding exercises where connections between contestants and the industry are made and paths for a future career are forged.

If you wish to be among the competing teams in 2017, countries and organizers are invited to get in touch with ENISA who is organizing next year’s European Cyber Security Challenge.  Improve your skills and staying safe online! Who knows, it may lead to a career in cyber security!

For more information on the European Cyber Security Challenge 2016:
http://www.europeancybersecuritychallenge.eu/

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

COINS Research School visit to ENISA

Fri, 07/29/2016 - 14:56

Visitors had the opportunity to meet with ENISA experts and get updated on the latest policy themes and discuss developments in areas such as electronic ID, identity management, cross-border authentication, privacy-by-design, breach notifications and the EU NIS policy framework.

COINS brings together about 50 Ph.D. level students in information security, from six universities across Norway.

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Contribute to ENISA’s study on a Digital Single Market for NIS products and services

Thu, 07/21/2016 - 10:05

The aim of the study is to map NIS products and services produced by EU companies in specific sectors and look into how to leverage the opportunities and tools offered through the DSM to improve market growth.  

To participate in the online survey

To better understand the NIS product and services landscape, ENISA has launched an online survey targeted at decision makers, C-level executives (CISO, CIO, CSO, CFO, CTO), marketing directors, buyers and sales representatives from the following sectors:

  • Online banking
  • Online market places
  • Cloud storage
  • Wireless telecommunications equipment: manufacturers and main customers (service providers)
  • Online media services, in particular video streaming platforms
  • Suppliers of NIS products and services

Interested parties may participate through the following link.

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Join ENISA study on cloud security and eHealth

Thu, 07/14/2016 - 09:21

The objective of the study, is to identify both security opportunities and barriers to cloud adoption in the healthcare sector. One of the key elements to be focused on, is the current level of cloud adoption in the healthcare sector and to find examples of eHealth and healthcare services, already deployed in the cloud.


Participate in ENISA’s online survey

To understand the above mentioned challenges and opportunities involved, ENISA has launched an online survey which is targeted mainly at CIOs, CISOs, doctors, patients, healthcare providers and manufacturers, cloud providers, and public authorities that are involved within the healthcare sector. To participate follow the link.


For more information on the subject, please contact: eHealthSecurity@enisa.europa.eu

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Securing Smart Cars – Join ENISA study and workshop

Wed, 07/13/2016 - 10:45

The objective of this project is to establish a comprehensive list of cyber security policies, tools, standards, measures and provide recommendations to enhance the level of security of smart cars[1]. The study focuses on the assets inside the cars as well as on data exchanges related to safety.

Participate in ENISA’s study

To understand the cybersecurity challenges involved, ENISA is currently interviewing relevant stakeholders as car manufacturers, Tier 1 and Tier 2 suppliers. If you are interested to participate, please contact resilience@enisa.europa.eu

Workshop

To validate the findings of the study and discuss future challenges, ENISA is organising a workshop scheduled for the 10th October 2016 from 10:00 to 17:00 in Munich Germany.

Register

To register visit the link  to save your seats for the workshop in October. Due to limited availability of seats, the registrations will be served on first come first serve basis until the exhaustion of the allocated resources.

To participate as an expert to CaRSEC

If you are interested to provide your expertise in the area, please read the ToR and apply for the CaRSEC Expert Group.


For more info on the subject, please contact: resilience@enisa.europa.eu


[1] Smart cars can be defined by the integration of connected components in the car in order to bring added-value services to drivers and passengers.

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

ENISA meets ENCS

Thu, 07/07/2016 - 14:00

The meeting provided valuable insights into possible ways of mutual collaboration. A series of topics were presented by both sides and an open discussion was held on:

  • the NIS Directive
  • current studies by ENISA in the energy sector,  infrastructure security and resilience
  • trainings offered by ENISA and possible cooperation with ENCS
  • the main activities and services portfolio of ENCS    

   

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Getting ready for the European Cyber Security Month (ECSM)

Tue, 07/05/2016 - 09:41

During each week, ENISA and its partners will be publishing reports, organising events and activities centred on each of these themes. Events include training, strategy summits, and general presentations to users, online quizzes, and many more.

Kick-Off Event

Preparation for this year’s Cyber Security Month kick-off event is in collaboration with the European Banking Federation (EBF), Europol and ENISA. EBF will be hosting the kick-off event at their premises in Brussels on September 30th, 2016.

Check out the themes planned for this year’s ECSM:

Week 1: Oct. 3-7

Theme: Security in Banking

The theme of the week seeks to capture the most important challenges in the banking sector, whether protecting customer online accounts or financial institutions, as these become targeted due to the critical role they play in a functioning economy.

Week 2: Oct. 10-14

Theme: Cyber Safety

Guidelines are presented for staying safe on the internet, addressing the more vulnerable social groups such as students and children.

Week 3: Oct. 17-21

Theme: Cyber Security Training

This week’s theme promotes training to all citizens from internet users to IT professionals and security experts at all levels - from basic IT security skills to computer forensics, whether delivered via seminars, webinars or class room style.

Week 4: Oct. 24-28

Theme: Mobile Malware

This week aims at informing end users of how to protect their mobile devices from malicious actions by preventing malware that has been designed to infect them.

To find out more about the activities and how to get involved visit – www.cybersecuritymonth.eu

About ECSM: ECSM is the EU’s annual advocacy campaign taking place in October, which aims to raise awareness on cyber security threats, promote cyber security among citizens and provide up to date security information, through education and sharing of good practices.

October is #CyberSecMonth!

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

ENISA activities in support of Trust Services

Fri, 07/01/2016 - 12:30

The Regulation strengthens the provisions for interoperability and mutual recognition of electronic identification schemes across borders, enhances current rules for electronic signatures and also expands the scope of Directive 1999/93/EC to other trust services used in electronic transactions.

Trust services are a key element in increasing the confidence of EU citizens and businesses in electronic transactions. As such, the eIDAS Regulation establishes a stable legal framework for five types of trust services, namely electronic signatures, electronic seals, electronic time stamps, electronic registered delivery services and Website authentication certificates.

“Electronic identity is the backbone of security on the internet. This work therefore represents an important step forward for Europe” said ENISA’s Executive Director Udo Helmbrecht.

ENISA supports the implementation of the Regulation in two flows with:

1) Activities linked to supporting and providing guidelines for trust service providers. These include studies on:

  • Minimum security measures and good security practices for trust services providers
  • Common audit schemes for trust services providers in Member States
  • Analysis of standards related to TSPs and mapping them to the requirements of the eIDAS Regulation (new!)
  • Recommendations for the introduction on the market of qualified website authentication certificates

2) Activities linked to incident notifications, by providing mechanisms for reporting security breaches by the trust service providers to the competent bodies.

Furthermore the Agency in collaboration with the European Commission, organises annually the Trust Services Forum, a platform that brings together the communities of trust service providers from the EU Trusted List, conformity assessment bodies and supervisory authorities, providing the opportunity to discuss on issues related to the regulation.

Future work of ENISA in the field

In 2016 ENISA will publish a set of technical recommendations, aimed at facilitating the implementation of the provisions related to trust services in the areas not covered by adopted secondary legislation, which are foreseen to be applied on a voluntary basis by the Member States. These include:

  • Procedures for the interaction with trust service providers and conformity assessment bodies. (Article 17)
  • Procedures for granting qualified status to a Trust Service Provider. (Article 21)
  • Formats and procedures for the initiation of a qualified trust service. (Article 21)
  • Minimum content and formats for the conformity assessment report obligatory for the initiation of a qualified trust service. (Article 21)
  • Recommended standards to fulfil the requirements of the Trust Service Chapter of the eIDAS Regulation. (Articles 19.4, 24.5, 32.3, 33.2, 34.2, 44.2, 45.2, 28, 38, 42.)
  • Risk management and security measures for TSPs. (Article 19.a.) 

The Agency also plans on developing a series of documents and informative material to support relying parties and end users of qualified trust services included in the eIDAS Regulation to securely use these services.


* (EC) 910/2014 on electronic identification and trusted services for electronic transactions in the internal market)

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

ENISA discusses cyber challenges of the digital transformation

Wed, 06/22/2016 - 08:22

ENISA was at the Connected Citizens’ Summit today, June 21st, in Amsterdam with key figures from the public and private sphere, discussing on the digital transformation from smart cities, cybersecurity, and energy efficiency to e-health.

Udo Helmbrecht, ENISA Executive Director, was on the global cybersecurity panel on ‘keeping pace with emerging threats’, together with S.Dacaru (Ambassador, NATO) and H. Lindberg (MSB). Panellists looked into how ‘cyber’ constitutes an element of all aspects of daily life through industry 4.0, IoT and smart environments and the protection of critical infrastructure.

Udo Helmbrecht mentioned: “If you look at emerging technologies there is no doubt, room for many opportunities. But we also see the need to organise more efficiently, and take a closer look into the underlying technologies behind these new models, addressing for example technical challenges such as IT security by design. The NIS helps address key challenges through better exchange of information and prevention. We at ENISA are active in building capabilities and bringing together communities, through CSIRTs, National Cyber Security strategies, and cyber exercises”.   

 

A video of the discussion is available online, follow #CCSummit

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Discussing the impact of cybersecurity in DSM and EU growth

Fri, 06/17/2016 - 15:23

Paulo Empadinhas in his keynote speech gave an overview of the challenges of the DSM, highlighting there are still gaps to be addressed and a more joint-up approach is required to step up supply of more secure solutions by EU industry, and stimulate take-up by enterprises, public authorities, and citizens.

“We witness a lack of education regarding security: from school, academia and in private companies. Education should bring a stronger awareness about the need for security in products, both from the supplier side and the customer. Similarly, a lot of EU companies invest in IoT as a business enabler, however they don’t invest in security. In addition, security as we know it does not apply to the IoT environment, hence new frameworks are required to analyse risks” said Paulo Empadinhas.

ENISA through its work, supports EU Member States in implementing the requirements of the NIS Directive, and initiatives such as the eIDAS, GDPR, which stimulate trust across different stakeholders and support industry policy in cybersecurity. Furthermore, ENISA encourages the use of standardisation - a main pillar in creating the EU single market – which helps support market-based competition, removes market barriers and helps ensure interoperability.

The conference is the European extension of the Annual Security Conference taking place in Las Vegas (USA) for over a decade gathering participants from academia, government and industry to look into ‘the future of cybersecurity’.

For more @EuropeanSeC2015  #iseg

 

 

Stay updated - subscribe to RSS feeds of both ENISA news items & press releases!

News items:

http://www.enisa.europa.eu/media/news-items/news-wires/RSS

PRs:

http://www.enisa.europa.eu/media/press-releases/press-releases/RSS

Pages