ENISA
https://www.enisa.europa.eu
Life-logging risk assessment
https://www.enisa.europa.eu/publications/life-logging-risk-assessment
"To log or not to log?" Risks and benefits of emerging life-logging applicationsNo publisherNetwork and Information Security AwarenessEuropean Union InstitutionsIdentity & TrustRisk ManagementPrivacy2011/11/10 22:00:00 GMT+2FolderCyber-bullying and online grooming: helping to protect against the risks
https://www.enisa.europa.eu/publications/Cyber-Bullying%20and%20Online%20Grooming
Children are the most valuable part of every society, regardless of culture, religion and national origin. Given the rapidly increasing digitalisation of their lives, it seemed important to assess risks related to internet usage and, in particular, the risk of become a victim of online grooming and cyber bullying activities. Today’s kids are living in an environment that is radically different from that of their parents; virtual environments are increasingly prevalent in private and education environments. This development is detrimental to their physical activities, social skills and the behavioural model that prevailed in previous generations. ENISA has formed a Working Group consisting of international experts in various disciplines related to the area of children’s online protection. Interdisciplinary knowledge and relevant experience in the area were the criteria of their engagement. During the selection phase of the scenario to be assessed, the expert group has identified cyber bullying and online grooming as an area that requires further elaboration. With this assessment we aim to demonstrate how attacks based on misuse of data (i.e. data mining and profiling) can affect minors. Although the issue of children’s exposure to internet risks has been addressed in great depth by many organisations (also during the generation of this report), we have performed this risk assessment in order to point out emerging risks and issue non-technical recommendations for their mitigation. Thus, we believe that the findings of this assessment will help in triggering further activities at various levels of society, while contributing to the necessary awareness of the online protection of minors.No publisherRisk ManagementNetwork and Information Security AwarenessPrivacyOnline SafetyInternet of things2011/11/07 22:00:00 GMT+2Report/StudyCloser cooperation on Data Breach Notifications between ENISA & Art. 29 Data Protection Working Party
https://www.enisa.europa.eu/news/enisa-news/closer-cooperation-between-the-agency-art.-29-data-protection-working-party
The Agency and the Art. 29 Data Protection Working Party agreed to intensify their cooperation on Data Breach Notifications, at a meeting recently taking place in Brussels.No publisherTrainingsPrivacyEuropean Union Institutions2011/10/21 13:50:00 GMT+2News ItemΑσφάλεια καταστημάτων εφαρμογών – πέντε γραμμές άμυνας – Νέα έκθεση από τον Οργανισμό Κυβερνοασφάλειας ENISA
https://www.enisa.europa.eu/news/enisa-news/prs-in-gr/3913c33c63bb3b53b93b1-3ba3b13c43b13c33c43b73bc3c43c93bd-3b53c63b13c13bc3bf3b33bd-2013-3c03bd3c43b5-3b33c13b13bc3bc3c2-3bc3c53bd3b13c2-2013-39d3b1-3ba3b83b53c33b7-3b13c0-3c43bf3bd-39f3c13b33b13bd3b93c33bc-39a3c53b23b53c13bd3bf3b13c33c63bb3b53b93b13c2-enisa/view
Ο ENISA δημοσιεύει σήμερα μία νέα έκθεση σχετικά με την Ασφάλειατωνκαταστημάτων εφαρμογώνστην οποία τάσσεται υπέρ της υιοθέτησης μίας βασικής ομάδας 'Πέντε γραμμών άμυνας 'ενάντια στο κακόβουλο λογισμικό (malware).No publisherOnline SafetySMEsIdentity & TrustResiliencePrivacyResilience2011/09/13 15:09:03 GMT+2FileNew report: App-store security– the 'five lines of defence'
https://www.enisa.europa.eu/news/enisa-news/app-store-security2013-the-five-lines-of-defence-new-report-by-eu-cyber-security-agency-enisa
The Agency today publishes a new report on app-store security where it advocates for a baseline set of ‘five lines of defence ‘ against malware. No publisherSMEsResiliencePrivacyIdentity & TrustResilienceOnline Safety2011/09/13 00:00:00 GMT+2Press ReleaseUpgraded Agency access to restricted information
https://www.enisa.europa.eu/news/enisa-news/upgraded-agency-access-to-restricted-information
The Agency has concluded an administrative agreement with the EU Commission's Security Directorate on the use of the classification ‘’RESTREINT UE/EU RESTRICTED’’. This gives the Agency formal access to these documents and ensures that it applies the basic EU principles and standards to protect EU Classified Information.No publisherEuropean Union InstitutionsTrainingsPrivacy2011/07/28 10:20:00 GMT+2News ItemReporting data breaches - public consultation by the EU Commission
https://www.enisa.europa.eu/news/enisa-news/reporting-data-breaches-public-consultation-by-eu-commission
The European Commission has launched a public consultation on the procedures and formats for personal data breach notifications under the ePrivacy Directive. (2002/58/EC). This is an important development to increase the level of data security for citizens in Europe. The Agency’s role has been to develop guidelines for the technical implementation measures. No publisherPrivacy2011/07/21 09:50:00 GMT+2News ItemMobile malware attacks & the security of app-stores: Agency analysis
https://www.enisa.europa.eu/news/enisa-news/mobile-malware-attacks-the-security-of-app-stores-agency-analysis
The Agency has made a brief analysis of a recent spate of malware attacks on smartphone platforms, and presents a new 'top-ten-risks' for smartphones list.No publisherPrivacyIdentity & Trust2011/03/16 11:50:00 GMT+2News ItemeID & eGovernement: Mapping security services to authentication levels
https://www.enisa.europa.eu/news/enisa-news/authentication-and-mapping-of-eid
Online tax declaration by electronic means, or smart card identification to be able to use online health care services: it all requires secure authentication. The Agency has launched a report on the authentication levels proposed by the STORK project, and their mapping to public electronic services in Europe.No publisherTrainingsPrivacy2011/03/14 17:05:00 GMT+2News ItemPrivacy, Accountability and Trust – Challenges and Opportunities
https://www.enisa.europa.eu/publications/pat-study
In the study, we focus on some of the available technologies and research results addressing privacy and data protection and topics related to, or influencing privacy, such as consent, accountability, trust, tracking and profiling. The objective is to provide a comprehensive and realistic view of both limitations generated and possibilities provided by technologies in the case of personal data protection rights.No publisherIdentity & TrustPrivacy2011/03/08 16:30:00 GMT+2Report/StudyFacing the cyber-zombies – EU Agency gets tough on Botnets
https://www.enisa.europa.eu/news/enisa-news/facing-the-cyber-zombies-2013-eu-agency-gets-tough-on-botnets
The EU’s ‘cyber security’ Agency, ENISA today published a comprehensive study on the botnet threat (networks of ordinary computers controlled by cybercriminals),and how to address it. The report looks at the reliability of botnet size estimates and makes recommendations for all groups involved in the fight against botnets. Alongside the main report the Agency sets out the top 10 key issues for policymakers in- ‘Botnets:10 Tough Questions’No publisherOnline SafetyPrivacyCritical Information Infrastructure Protection (CIIP)Resilience2011/03/08 01:00:00 GMT+2Press Release‘Bittersweet cookies’: new types of ‘cookies’ raise online security & privacy concerns
https://www.enisa.europa.eu/news/enisa-news/2018bittersweet-cookies2019-new-types-of-2018cookies2019-raise-online-security-privacy-concerns
The EU’s ‘cyber security’ Agency ENISA has published a position paper on the security and privacy concerns regarding new types of online ‘cookies’. The advertising industry has led the drive for new, persistent and powerful cookies, with privacy-invasive features for marketing practices and profiling. The Agency advocates e.g. that both the user browser and the origin server must assist informed consent, and that users should be able to easily manage their cookies. The Agency recommends a thorough study of different interpretations in the Member States, once the Directive 2009/136/EC has been implemented, by 25 May 2011. No publisherPrivacy2011/02/18 01:00:00 GMT+2Press ReleaseSurvey of accountability, trust, consent, tracking, security and privacy mechanisms in online environments
https://www.enisa.europa.eu/publications/survey-pat
The study, using a survey, attempts to evaluate which are currently the mechanisms deployed in available online services for accountability, consent, trust, security and privacy. While the finding of this survey cannot be easily extrapolated to all online services, some trends are prominent and it is safe to assume that these are valid for most organisations that operate online. Besides these trends, we mention here the lack of a single coherent view on how to best achieve user privacy in online environments. An increase in awareness of privacy and security concepts within organisations and industry sectors appears to be desirable, in order to maintain a high level of security and confidence on the part of users and society in the ICT infrastructure and services provided within the EU. A major area of concern was how the EU would create and maintain a ‘level regulatory playing field’, especially with non-EU based multinationals entering the EU market without proper (privacy) compliance and rapidly establishing a significant user base. No publisherIdentity & TrustPrivacy2011/01/31 15:45:00 GMT+2Report/StudyGovernmental Cloud in the EU - New Agency Report
https://www.enisa.europa.eu/news/enisa-news/governmental-cloud-in-the-eu-new-agency-report
The EU’s ‘cyber security’ Agency ENISA has launched a new report on Govermental Cloud Computing. The report is targeted at senior managers of public bodies who have to make a security and resilience decision about how to ‘go cloud’, if at all. The main goal of the report is to support governmental bodies in taking informed risk based decisions regarding security of data, resilience of service and legal compliance on their way to the cloud. It highlights also security and resilience pros and cons of community, private and public cloud computing services for public bodies. No publisherPrivacyRisk ManagementResilienceOnline Safety2011/01/17 08:55:00 GMT+2Press ReleaseNew report: Data Breach Notifications in Europe
https://www.enisa.europa.eu/news/enisa-news/new-report-data-breach-notifications-in-europe
The EU’s ‘cyber security’ Agency ENISA, (the European Network and Information Security Agency) has today issued a report on Data Breach Notifications. The EU data breach notification (DBN) requirement for the electronic communications sector in the ePrivacy Directive (2002/58/EC) is vital to increase in the long term the level of data security in Europe. The Agency has reviewed the current situation and identified the key concerns of both the telecom operators and the Data Protection Authorities (DPA)s in its new report. No publisherPrivacyIncident ReportingEuropean Union Institutions2011/01/14 01:00:00 GMT+2Press Release