ENISA
https://www.enisa.europa.eu
Standards flying: improving the recognition of ICT security standards
https://www.enisa.europa.eu/news/enisa-news/standards-flying-improving-the-recognition-of-ict-security-standards
ENISA publishes a report that provides an assessment on the maturity of the implementation of the European Cyber Security Standardisation activities in the EU Member States with respect to the NIS Directive. No publisherStandardsCertification2018/02/01 17:17:04 GMT+2News ItemTowards the emerging EU framework on certification
https://www.enisa.europa.eu/news/enisa-news/towards-the-emerging-eu-framework-on-certification
On 1 March 2018, ENISA hosted a conference entitled “Towards the emerging EU framework on certification”. No publisherStandardsCertification2018/03/02 14:35:00 GMT+2Press ReleaseForest for the trees: an IoT security standards gap analysis
https://www.enisa.europa.eu/news/enisa-news/forest-for-the-trees-an-iot-security-standards-gap-analysis
No publisherInternet of thingsStandards2019/01/17 11:34:49 GMT+2News ItemPrivacy standards for information security
https://www.enisa.europa.eu/news/enisa-news/privacy-standards-for-information-security
Over the last decade, there has been a significant development of privacy standards, which aim at contributing to the integration of privacy requirements into information processes, systems and services. No publisherStandards2019/03/15 19:45:00 GMT+2News ItemNavigating through Challenges and Opportunities of Cybersecurity Standardisation
https://www.enisa.europa.eu/news/navigating-through-challenges-and-opportunities-of-cybersecurity-standardisation
On 5 March, the European Standardisation Organisations (ESOs), CEN, CENELEC and ETSI, joined forces with ENISA, the European Union Agency for Cybersecurity, to organise their 8th Cybersecurity Standardisation Conference.No publisherStandards2024/03/07 13:06:45 GMT+2News ItemCybersecurity Standardisation Conference 2023
https://www.enisa.europa.eu/events/cybersecurity_standardisation_2023
European Standardisation in support of the EU cybersecurity legislation.No publishercybersecurityStandardsCertification2022/02/03 12:00:00 GMT+2EventConference: Cybersecurity Standardisation 2022
https://www.enisa.europa.eu/events/cybersecurity_standardisation_2022
No publisherStandardsCertification2019/11/15 10:00:00 GMT+2FolderGaps in NIS standardisation - Recommendations for improving NIS in EU standardisation policy
https://www.enisa.europa.eu/publications/gaps-eu-standardisation
This report recommends that the European Commission, with the support of the Member States, pursuant to the NIS Directive, adopt a standards based framework for the exchange of threat and defensive measure information that impacts the functioning of Network Information Infrastructure (NII). The capabilities from this framework underscore NII as Critical Infrastructure of the EU and its Member States.No publisherStandards2017/05/07 23:00:00 GMT+2Report/StudyIndispensable baseline security requirements for the procurement of secure ICT products and services
https://www.enisa.europa.eu/publications/indispensable-baseline-security-requirements-for-the-procurement-of-secure-ict-products-and-services
This short paper can be of use to suppliers and procurement officers when planning, offering and purchasing ICT products, systems and services. It is meant as a practical, technologically neutral document with clear, simple and sector-agnostic minimum necessary indispensable requirements for secure ICT products and services.No publishercybersecurityStandardsProcurement2017/01/23 19:46:45 GMT+2Report/StudyConsiderations on ICT security certification in EU - Survey Report
https://www.enisa.europa.eu/publications/certification_survey
Over the last years, ENISA has engaged in a number of activities in pursuit of supporting the Commission and the Member States in identifying a way forward on the certification of ICT security products and services, which on the one hand seeks to boost competition and on the other to promote mutual recognition or harmonisation of certification practices up to a certain level. This online EU-wide survey on the topic of ICT Security Certification has been singled out as a suitable instrument to consult with stakeholders and seek structured feedback against the currently envisaged policy options. No publisherStandardsReport/StudyImproving recognition of ICT security standards
https://www.enisa.europa.eu/publications/improving-recognition-of-ict-security-standards
This report is a continuation and an extension of previously carried out ENISA work on approaches to the NIS Directive by Member States, which have provided recommendations on standardisation and have outlined the use and management of CSIRTs.No publisherStandardsReport/StudyIoT Security Standards Gap Analysis
https://www.enisa.europa.eu/publications/iot-security-standards-gap-analysis
This study analyses the gaps and provides guidelines for, in particular, the development or repositioning of standards, facilitating the adoption of standards and governance of EU standardisation in the area of NIS. No publisherStandardsInternet of things2019/01/17 00:00:00 GMT+2Report/StudyGuidance and gaps analysis for European standardisation
https://www.enisa.europa.eu/publications/guidance-and-gaps-analysis-for-european-standardisation
This study aims to a) explore how the standards-developing world is responding to the fast-changing, demanding realm of privacy by mapping existing available standards and initiatives in the area and b) provide insights on the “state-of-the-art” of privacy standards in the information security context through a relevant gap analysis. No publisherStandardsPrivacy2019/03/15 19:45:00 GMT+2Report/StudyStandardisation in support of the Cybersecurity Certification
https://www.enisa.europa.eu/publications/recommendations-for-european-standardisation-in-relation-to-csa-i
The document presents the value of the cybersecurity standardisation efforts for certification, the roles and responsibilities of Standards Developing Organisations (SDOs) in this context, and discusses various ways how standardisation can support efficiently the process of certification schemes creation by following a step by step methodology. The methodology described in this study can be used as guidelines for new certification schemes or standards authors. It will help setting up KPIs, useful for all stakeholders involved in the preparation or operational phase of a certification scheme. The qualification system proposed can be used also to define more precisely the requirements associated with the different assurance levels mentioned in article 52 of the Cybersecurity Act. With regard to standardisation activities, the study proposes a set of recommendations for the Standards Developing Organisations and the prospective authors of certification schemes.No publisherCybersecurityStandardsCertification2020/02/04 18:30:00 GMT+2Report/Studypdf
https://www.enisa.europa.eu/events/cybersecurity_standardisation_2022/pdf
No publisherStandards2022/03/22 19:15:05 GMT+2Folder