Search results

229 items matching your search terms.
Filter the results.
Item type

New items since

Sort by relevance · date (newest first) · alphabetically
Press Release Legacy technologies as a threat to EU’s telecommunications infrastructure
EU level assessment of the current sets of protocols used in interconnections in telecommunications (SS7, Diameter).
Located in News / ENISA News
Report/Study Resilience Metrics and Measurements: Challenges and Recommendations
As part of the study run by ENISA, a set of metrics-specific questions was sent to a group of stakeholders. These questions concerned how resilience is measured on a sector basis (the surveyed participants were from public and private organisations, as well as national regulators, academia, etc.). This document presents the results of that study and aims to provide a non-technical overview to policy experts in the area of resilience. The key challenges to resilience measurements and the most interesting aspects of the answers received are summarised and analysed in this document. This report also summarises a number of recommendations arising from the analysis of the information received. The rest of the report is organised as follows. Section 2 presents the main challenges impeding the adoption of a commonly accepted framework for resilience metrics and measurements. In section 3, we summarise the main recommendations for future actions in the area of network and service resilience metrics and measurements. Finally section 4, includes all the detailed input we received from the questionnaires and interviews with stakeholders.
Located in Publications
Report/Study Troff document Resilience Metrics and Measurements: Technical Report
During the ENISA survey study on 'Resilience Metrics and Measurements: Challenges and Recommendations' it was found that there is lack of a standardised framework or good metrics. Resilience was not considered to be a well-defined term and depending on the context, it encompassed several interpretations and viewpoints. Additionally, there was consensus on the fact that information sharing and sources of consolidated information on resilience metrics were not readily available. These challenges were recognised as serious obstacles towards the adoption of resilience metrics. Addressing these concerns, this report represents an attempt to create a single technical source of information on resilience metrics, the taxonomies and the open issues. It puts together work that has been done in the areas of security, dependability and specific taxonomy research under the single umbrella of resilience. It is intended to become a source of information for the community interested on resilience and measurements, but also the cause to initiate more in depth works on the subject. This version is a discussion draft! (for comments please see contact details in the report.)
Located in Publications
Report/Study ECMAScript program Ontology and taxonomies of resilience
Existing standards in the field have so far only addressed resilience indirectly and thus without detailed definition of the taxonomy and thus of the semantics of security. The primary purpose of an ontology and taxonomies defined in this context is to use them as the basis of definitions and processes in the future work. A taxonomy is most often defined as a classification of terms and has close a relationship with the use of ontology.
Located in Publications
Report/Study Good Practice Guide on Incident Reporting
Given strong commitment by the EU institutions and the Member States to the resilience of public communications networks, ENISA was asked to help Member States and EU institutions to identify good practices in incident reporting schemes. This document addresses many of the issues that Member States will face as they debate, take stock, establish, launch, develop and harmonize their incident reporting systems at national level. The report discusses schemes for reporting incidents that may harm or threaten the resilience and security of public eCommunication networks. It examines the whole lifecycle of a reporting scheme, from the first steps in designing the scheme, through engaging the constituency’s cooperation, setting the reporting procedures, and then management and improvement of the scheme.
Located in Publications
Report/Study Technical Guideline on Incident Reporting
This guideline gives guidance to NRAs about the implementation of Article 13a (of EU Directive 2009/140/EC) and, in particular, the two types of incident reporting mentioned in Article 13a: the annual summary reporting of significant incidents to ENISA and the EC and ad hoc notification of incidents to other NRAs in case of cross-border incidents. This document defines the scope of incident reporting, the incident parameters and thresholds.
Located in Publications
Report/Study ECMAScript program Technical Guideline on Minimum Security Measures
In this document we give guidance to NRAs about the implementation of Article 13a and in particular about the security measures that providers of public communications networks must take to ensure security and integrity of these networks. It lists the minimum security measures NRAs should take into account when evaluating the compliance of public communications network providers with paragraph 1 and 2 of Article 13a.
Located in Publications
Report/Study ECMAScript program Schemes for auditing security measures
Across society there are now critical services which rely on computers, networks and servers. Protecting the security of this information infrastructure is not easy. Often the information infrastructure is run by several organisations and uses different types of information technology from different companies. This report deals with the issue of how to enforce an adequate level of security across a sector of service providers. ENISA in this report presents an overview of the auditing schemes on security measures that exist across the globe: twelve different audit frameworks or certification schemes for auditing security measures, used in different settings and sectors, at ensuring that providers comply with certain security requirements. The conclusion introduces a single auditing model that captures the most common features, creating a preliminary meta-framework.
Located in Publications
Report/Study Protection of Underground Electronic Communications Infrastructure
This document aims to provide recommendations to Member States (MS) that wish to protect their underground electronic communications infrastructure against disruption due to civil works. This document shall help MS to assess their need to deploy an automated information system for damage prevention, and eventually assist them in the development of such tool through a number of recommendations.
Located in Publications
Report/Study Communication network interdependencies in smart grids
This study focuses on the evaluation of the interdependencies and communications between all the assets that make up the new power grids, their architectures and connections in order to determine their importance, threats, risks, mitigation factors and possible security measures to implement. To obtain this information, experts in the fields and areas related directly with smart grids were contacted to gather their know-how and expertise.
Located in Publications

We use cookies on our website to support technical features that enhance your user experience.
We also use analytics. To opt-out from analytics, click for more information.

I've read it More information