ENISA
https://www.enisa.europa.eu
Trust Service Forum 2022: Deepdive into Digital Identity Wallets and Web Certificates
https://www.enisa.europa.eu/news/trust-service-forum-2022-deepdive-into-policy-developments-digital-identity-wallets-and-web-certificates
The European Union Agency for Cybersecurity (ENISA) gathered experts from trust services providers, standardisation bodies and national authorities around the discussion tables of the Trust Services Forum organised on 27 and 28 October in Berlin.No publisherTrust ServicesTrust service providersIdentity & TrusteIDAS Incident Reporting2022/11/09 17:15:00 GMT+2News ItemDigital Identity: Leveraging the SSI Concept to Build Trust
https://www.enisa.europa.eu/publications/digital-identity-leveraging-the-ssi-concept-to-build-trust
The maintenance of continuity in social life, businesses and administration has accelerated the reflection on the possibility of a need for such decentralised electronic identity. This report explores the potential of self-sovereign identity (SSI) technologies to ensure secure electronic identification and authentication to access cross-border online services offered by Member States under the eIDAS Regulation. It critically assesses the current literature and reports on the current technological landscape of SSI and existing eID solutions, as well as the standards, communities, and pilot projects that are presently developing in support of these solutions. This study takes a wide view of decentralised electronic identity, considers possible architectural elements and mechanisms of governance, and identifies security risks and opportunities presented by SSI in view of cross-border interoperability, mutual recognition, and technology neutrality as required by eIDAS.No publisherIdentity & Trust2022/01/20 12:00:00 GMT+2Report/StudyRemote Identity Proofing - Attacks & Countermeasures
https://www.enisa.europa.eu/publications/remote-identity-proofing-attacks-countermeasures
Remote identity proofing is a crucial element in creating trust for digital services. The present study analyses the collection and validation of evidence provided by the applicant to complete the verification of his or her identity. More specifically, we focus on face presentation attacks that aim to fool the facial recognition systems. Through an analysis, which consisted of a review of the literature, a survey and interviews, major attacks are identified and classified: photo attack, video of user replay attack, 3D mask attack, deepfake attack; and applicable countermeasures presented.No publisherIdentity & Trust2022/01/20 12:00:00 GMT+2Report/StudyWorkshop - Remote Identity Proofing: Attacks & Countermeasures
https://www.enisa.europa.eu/events/workshop-remote-identity-proofing/remote-identity-proofing-attacks-countermeasures
In this workshop participants will showcase some remote identity attack scenarios, discuss the attacks and countermeasures, as well as develop the general direction and key aspects of a related report. Registrations close the 14 July 2021 at 13:00 CETNo publisherIdentity & Trust2021/07/01 23:00:00 GMT+2EventSeminar on Blockchain-based Digital Identity Solutions
https://www.enisa.europa.eu/events/workshop-on-blockchain-based-digital-identity-solutions
ENISA, helped by Delft Blockchain Lab, organises a seminar on blockchain solutions, delving into the basic concepts and pro & cons, presenting also current initiatives and some practical examples.No publisherIdentity & Trust2021/04/26 10:00:00 GMT+2EventRemote ID Proofing
https://www.enisa.europa.eu/publications/enisa-report-remote-id-proofing
This report provides an overview of the most common methods for identity proofing with some examples received by stakeholders, presents the current legal / regulatory landscape and supporting standards at the international and EU level and provides the status quo in the European Countries of their remote identity proofing laws, regulations and practices. It provides a practical approach to risk management on the basis of examples. The report also discusses the input received though questionnaires from different stakeholders which use, offer or evaluate identity proofing solutions. Finally, it presents a preliminary gap analysis on existing standards and regulations, stresses the need for a harmonised adoption and cross-recognition of remote identity proofing and provides a number of legal and technical recommendations. No publisherIdentity & Trust2021/03/11 13:00:00 GMT+2Report/StudySupporting the fight against cybercrime
https://www.enisa.europa.eu/news/enisa-news/supporting-the-fight-against-cybercrime
The map to the road less traveled: CSIRTs & Law Enforcement cooperationNo publisherCybersecurityLaw Enforcement AutoritiesIdentity & TrustCSIRTsCyber Crisis Cooperation2020/04/02 12:00:00 GMT+2News ItemTrust Services Forum - CA Day 2019
https://www.enisa.europa.eu/events/tsforum-caday-2019
On the 25th September, ENISA in collaboration with the European Commission has organised organizing, for the fifth consecutive year, the Trust Services Forum. On the 26th September, Bundesdruckerei/D-TRUST, in cooperation with TÜViT has held the eleventh CA-Day.No publishereIDIdentity & TrusteIDAS2019/07/10 10:55:00 GMT+2EventTrust Services Forum - CA Day 2018
https://www.enisa.europa.eu/events/tsforum-caday-2018/tsforum-caday-2018
ENISA has organised the fourth edition of the Trust Services Forum on the 23rd October 2018. On the 24th October, the Bundesdruckerei/D-TRUST, in cooperation with TÜViT has held the tenth CA-Day on the subject of "TSP Compliance Info Day on eIDAS, ETSI and CA/B-Forum Requirements“.No publishereIDIdentity & TrusteIDASEventA digital Europe built on trust – ENISA supports relying parties and end users to implement the eIDAS Regulation
https://www.enisa.europa.eu/news/enisa-news/a-digital-europe-built-on-trust
No publisherTrust service providersIdentity & Trust2017/06/29 17:20:00 GMT+2Press ReleaseSecurity guidelines on the appropriate use of qualified website authentication certificates
https://www.enisa.europa.eu/publications/security-guidelines-on-the-appropriate-use-of-qualified-website-authentication-certificates
This document addresses qualified certificates for website authentication and is one out of a series of five documents which aim to assist parties wishing to use qualified electronic signatures, seals, time stamps, eDelivery or website authentication certificates to understand the subject correctly as-well-as the potential benefits, amongst others, by giving examples of possible application. This series of documents also targets to give those parties some advice on how to correctly use the related qualified trust services.No publisherTrust service providerseIDIdentity & Trust2017/05/07 23:00:00 GMT+2Report/StudySecurity guidelines on the appropriate use of qualified electronic registered delivery services
https://www.enisa.europa.eu/publications/security-guidelines-on-the-appropriate-use-of-qualified-electronic-registered-delivery-services
This document addresses qualified electronic registered delivery services and is one out of a series of five documents which aim to assist parties wishing to use qualified electronic signatures, seals, time stamps, eDelivery or website authentication certificates to understand the subject correctly as-well-as the potential benefits, amongst others, by giving examples of possible applications. This series of documents also aims to give those parties some advice on how to correctly use the related qualified trust services. No publisherTrust service providerseIDIdentity & Trust2017/05/07 23:00:00 GMT+2Report/StudySecurity guidelines on the appropriate use of qualified electronic time stamps
https://www.enisa.europa.eu/publications/security-guidelines-on-the-appropriate-use-of-qualified-electronic-time-stamps
This document addresses qualified electronic time stamps and is one out of a series of five documents which target to assist parties aiming to use qualified electronic signatures, seals, time stamps, eDelivery or website authentication certificates to understand the subject correctly as-well-as the potential benefits, amongst others, by giving examples of possible application. This series of documents also targets to give those parties some advice on how to correctly use the related qualified trust services. No publisherTrust service providerseIDIdentity & Trust2017/05/07 23:00:00 GMT+2Report/StudySecurity guidelines on the appropriate use of qualified electronic seals
https://www.enisa.europa.eu/publications/security-guidelines-on-the-appropriate-use-of-qualified-electronic-seals
This document addresses qualified electronic seals and is one out of a series of five documents which target to assist parties aiming to use qualified electronic signatures, seals, time stamps, eDelivery and website authentication certificates to understand the subject correctly as-well-as the potential benefits, amongst others, by giving examples of possible application. This series of documents also targets to give those parties some advice on how to correctly use the related qualified trust services.No publisherTrust service providerseIDIdentity & Trust2017/05/07 23:00:00 GMT+2Report/StudySecurity guidelines on the appropriate use of qualified electronic signatures
https://www.enisa.europa.eu/publications/security-guidelines-on-the-appropriate-use-of-qualified-electronic-signatures
This document addresses qualified electronic signatures and is one out of a series of five documents which target to assist parties aiming to use qualified electronic signatures, seals, time stamps, eDelivery or website authentication certificates to understand the subject correctly as-well-as the potential benefits, amongst others, by giving examples of possible application. This series of documents also targets to give those parties some advice on how to correctly use the related (qualified) trust services. No publisherTrust service providerseIDIdentity & Trust2017/05/07 23:00:00 GMT+2Report/Study