-
Application for the Call 01/19 - Transposition of SOGIS MRA
-
In order to respond to this call, please fill in all the fields below in English.
Please do not use national characters.
Located in
Topics
/
…
/
Ad-hoc Working Groups calls
/
ahWG01
-
Auditing Framework for TSPs
-
This report provides an overview of the dedicated means of auditing for TSPs. It discusses specifically the following areas: standards applicable to TSPs and Conformity Assessment Bodies (auditors), methodology of auditing TSPs (off- and on-site), TSPs documentation (plans, policies and procedures) and implementation of TSPs services. This set of good practices can be used as reference for both, Trust Service Providers (preparing for audits), and Conformity Assessment Bodies (performing audits), in the field of external audits (internal assessments are part of company’s risk management procedures, therefore this topic is not covered here). It focuses on measures that can be taken at organizational level, drawing to norms and standards for technical details.
Located in
Publications
-
Conformity assessment of Trust Service Providers - Technical guidelines on trust services
-
Through this document, ENISA is supporting both Trust Service Providers and Conformity Assessment
Bodies in the audit activities by presenting the auditing framework. It aims at helping Trust Service
Providers fulfil the requirements defined by the eIDAS Regulation (Articles 20 and 21) as requested by
Supervisory Bodies in order to grant the qualified status to a Trust Service Provider and its provided trust service(s).
Located in
Publications
-
Cross recognition of national eID schemes in the EU: one-step forward
-
As from 29 September 2018, the eIDAS Regulation creates new impetus across EU Member States (MS) as the latter will be obliged to recognise national systems of other MS, which have been notified to the European Commission and comply with eIDAS.
Located in
News
/
ENISA News
-
Cybersecurity and Data Protection Standards in support of European policy - Agenda and presentations
-
Located in
Events
/
Cybersecurity and Data Protection Standards in support of European policy
-
Die EU Agentur für Netz- und Informationssicherheit ENISA fordert sicheres E- Banking und E-Payment: Nicht replizierbare, einmalige Anmeldedaten für Web Identitäten sind in der Finanzbranche erforderlich
-
Unterschiedliche Token, Geräte, Mobiltelefone, elektronische Signaturen, etc. werden verwendet, um unsere E- Identitäten zu authentifizieren. Dennoch gibt es Finanzinstitute, die die Gefahren eines unzureichenden Authentifizierungsmechanismus immer noch nicht berücksichtigen, wie eine neue Studie der EU Agentur ENISA belegt.
Located in
News
/
ENISA News
/
PR's in DE
-
E-CODEX Representatives meet with ENISA
-
Located in
News
/
ENISA News
-
eIDAS legislative process
-
Andrea Servida (European Commission)
Located in
Events
/
Workshop on Security Aspects of TSPs 2013
/
proceedings
-
ENISA at “Trust Service Provider Summit” in Berlin
-
ENISA's Head of Secure Infrastructure and Services Unit, Dr. Evangelos Ouzounis, participated in an international workshop on trusted services, organised by TUEV IT in Berlin on 16th January. Dr. Ouzounis presented ENISA's work and lessons learnt in the area of mandatory incident reporting.
Located in
News
/
ENISA News
-
EU cyber security Agency ENISA calls for secure e-banking and e-payments: non-replicable, single-use credentials for e-identities are needed in the financial sector
-
Different tokens, devices, mobile phones, e-signatures, etc. are used to authenticate our e-identities. Yet, some financial institutions are still not considering the risk of inadequate authentication mechanisms according to a new study by the EU Agency ENISA.
Located in
News
/
ENISA News