Building on the success of Trust 2009 (held at Oxford, UK) and Trust 2008 (Villach, Austria), this conference focuses on trusted and trustworthy computing, both from the technical and social perspectives. The conference itself has two main strands, one devoted to technical aspects and one devoted to the socio-economic aspects of trusted computing.
In this event, ENISA work in the area of Emerging and Future Risks will be presented within a special Workshop by means of assessment reports on Cloud Computing, Internet of Things / RFID and Data Mining/Data Profiling issues (see also link).
Presentations held as follows:
Cloud computing: ENISA, supported by a group of subject matter experts including representatives from Industry, Academia and Governmental Organizations, has conducted a risks assessment with regard to cloud computing. The assessment considers both possible business model for service provision and used technology. The result is an in-depth and independent analysis that outlines information security benefits and key security risks of cloud computing. The report provides also a set of practical recommendations. In this presentation, the results from this effort will be presented and follow up activities are going to be discussed.
Speaker: Slawomir Gorniak, ENISA
Internet of Things / RFID: ENISA undertook the task to identify and assess emerging and future risks of a particular IoT/RFID scenario, also in the context of ENISA's role in this specified in EC Communication "Internet of Things - An Action Plan for Europe. Within this work a risk assessment on a complex scenario involving Internet of Things (IoT) / Radio Frequency IDentification (RFID) technologies in future air travel has been carried out. Amongst the technologies, applications and devices considered in this scenario, in addition to RFID, are smart phones, netbooks and location-based services (LBS). The power of these technologies is greatly leveraged by their convergence and interoperability. This presentation refers to the result of this work and in particular to the identified risk and issued recommendations.
Speaker: Barbara Daskala, CISSP, CISA, ENISA
Risk assessment of a cyber bullying and grooming scenario: ENISA is currently assessing risks related to the internet use of teenagers and focuses on cyber bullying and cyber grooming. Data mining, together with identity issues are encountered fore within a scenario that demonstrates the use of online services by a teenager. Within this presentation, identified risks will be discussed, together with relevant threats and recommendations for mitigation of these risks.
Speaker: Dr. Louis Marinos, Risk Management, ENISA
Vision on Emerging and Future Risks: Future projections based on current ENISA work such as vision statements, possible next steps and activity areas in identification and managing of emerging and future risks are going to be presented and discussed. A representative from ENISA's "Emerging and Future Risks Stakeholder Forum" (EFR SF) is going to elaborate on these possibilities as these have been formulated by the Forum at the beginning of 2010. The presented positions are an important view to issues of emerging risks that can be taken up by different stakeholders in the area of Information Security.
Speaker: Clair Vishik, Intel