Search results

80 items matching your search terms.
Filter the results.
Item type


















































New items since



Sort by relevance · date (newest first) · alphabetically
Report/Study Standardisation in support of the Cybersecurity Certification
The document presents the value of the cybersecurity standardisation efforts for certification, the roles and responsibilities of Standards Developing Organisations (SDOs) in this context, and discusses various ways how standardisation can support efficiently the process of certification schemes creation by following a step by step methodology. The methodology described in this study can be used as guidelines for new certification schemes or standards authors. It will help setting up KPIs, useful for all stakeholders involved in the preparation or operational phase of a certification scheme. The qualification system proposed can be used also to define more precisely the requirements associated with the different assurance levels mentioned in article 52 of the Cybersecurity Act. With regard to standardisation activities, the study proposes a set of recommendations for the Standards Developing Organisations and the prospective authors of certification schemes.
Located in Publications
Report/Study Standardisation in the field of Electronic Identities and Trust Service Providers
This paper explains why standards are important for cyber security, specifically in the area of electronic identification and trust services providers. A number of challenges associated with the definition and deployment of standards in the area of cyber security are discussed. This is followed by a brief overview of several key EU initiatives in this area and a number of ENISA recommendations. The paper also discusses concrete standardisation activities associated with electronic IDs and trust service providers, providing an overview of standards developed under the mandate m460 from the European Commission and others, related to eIDAS Regulation. It concludes with a proposal of a standard on cryptographic suites for electronic signatures and infrastructures, put forward by ENISA and related to the ETSI TS 119 312.
Located in Publications
Standards flying: improving the recognition of ICT security standards
ENISA publishes a report that provides an assessment on the maturity of the implementation of the European Cyber Security Standardisation activities in the EU Member States with respect to the NIS Directive.
Located in News / ENISA News
Report/Study Standards Supporting Certification
This report explores five distinct areas, which have frameworks, schemes or standards that can potentially be evolved to EU candidate cybersecurity certification schemes. These five areas are Internet of Things (IoT), cloud infrastructure and services, threat intelligence in the financial sector, electronic health records in the healthcare and qualified trust services. The study reflects on the standards currently available on these five areas of interest and identifies existing gaps. It further proposes reasonable recommendations on how these gaps can be addressed, especially by standardisation bodies, and how the available standards could potentially be adapted to form the basis of future candidate EU cybersecurity certification schemes.
Located in Publications
File Theron
Located in Events / Cybersecurity and Data Protection Standards in support of European policy / Presentations
File Troff document Theuzeit
Located in Events / Cybersecurity and Data Protection Standards in support of European policy / Presentations
Press Release Towards the emerging EU framework on certification
On 1 March 2018, ENISA hosted a conference entitled “Towards the emerging EU framework on certification”.
Located in News / ENISA News
File Uhlherr
Located in Events / Cybersecurity and Data Protection Standards in support of European policy / Presentations
File Wiewiorowski
Located in Events / Cybersecurity and Data Protection Standards in support of European policy / Presentations
Workshop on a European ICT security certification framework
ENISA and the European Commission are organising a consultation workshop with industry and experts from Member States on ICT security certification.
Located in Events

We use cookies on our website to support technical features that enhance your user experience.
We also use analytics. To opt-out from analytics, click for more information.

I've read it More information