Identity, Privacy and Trust

As society becomes increasingly dependent on information and communication technologies, Identity, Privacy and Trust are the parallel lanes of the road towards communication networks that safeguard the EU society.

The Declaration of the Future Internet Assembly (FIA) "Towards a European approach to the Future Internet” envisages the development and deployment of technologies ensuring the robustness and security of the networks, managing identities, protecting privacy and creating trust in the on-line world.

 ENISA is approaching this area with the following strategy:

• Facilitating rapid deployment of research results: focusing on alternative trust models such as reputation and web-of trust, as well as a stock-taking of authentication methods;
• Fostering a Pan-European approach to privacy: focusing on rights and obligations of users as well as service-providers. Providing guidelines on the use of available privacy enhancing technologies and their implications for anonymity;
• Development of guidelines for regulatory review and interpretation: focusing on identity and authentication in new scenarios (e.g. RFID, cloud computing). To avoid unrealistic requirements on commercial bodies and infringement of personal liberties.

With regard to Identity, Privacy and Trust, ENISA is working and achieving significant results in the following areas:

• Technologies that enhance the resilience of the networks and the trust on the infrastructures, and
• Security issues relating to the eID applications.

 In parallel, ENISA is publishing its Position Papers in various domains, such as Security in Social Networks, and, accordingly to its Regulation, is tracking standardisation activities in the area of network and information security.