Electronic Commerce Working Group report
|
|
- Lynne Leonard
- 6 years ago
- Views:
Transcription
1 RESTRICTED CEFACT/ECAWG/97N012 4 December 1997 Electronic Commerce Ad hoc Working Group (ECAWG) Electronic Commerce Working Group report SOURCE: 10 th ICT Standards Board, Sophia Antipolis, 4 th November 1997 STATUS: for review ACTION:
2 page 2
3 ICT Standards Board ICTSB10(97)25 U Hartmann/gt 28 October 1997 page 3 10th ICT Standards Board Sophia Antipolis 4 th November 1997 Source: Title: Electronic Commerce Working Group Electronic Commerce Working Group report Agenda item: 4.2 Document for: Information 1 Background Following a request from ICTSB #9, members of the group were asked to provide updates of their activities to the Secretariat. Reports were received from CEN and ECBS as follows. 2 Report from CEN 2.1 Reorganization Since the last meeting of the ICTSB Electronic Commerce Group there has been a complete reorganization of the ICT work within CEN. The new framework of CEN/ISSS takes over the work that was previously done by CEN, EWOS, EBES and ECITC. In addition there has been a recent decision by the EBES Board to concentrate its activities on the support to the UN/ EDIFACT process and let the work of its Electronic Commerce Steering Group (ECTSG) be subsumed in the mainstream CEN/ISSS Workshop mechanism. 2.2 Electronic Commerce Workshop It is intended to establish a dedicated Electronic Commerce early in An open planning meeting will take place take place on 21 November in Brussels. Already there are 2 work items under consideration and for which calls for experts have been issued: Product and Data Harmonization The aim is to build a repository of objects in a human processable neutral format - i.e. in Phase I the format is not important, only the content - termed the Common Object Repository. Message implementation Guidelines (MIGs) The aim is to provide a single focus, open repository (such as a web site) which will index or hold MIGs in readable and/or processable formats.
4 page Related work Other work related to electronic commerce is also being undertaken or considered within the framework of CEN/ISSS Card related secure commercial and financial transactions on open networks This work, which is being undertaken jointly by a CEN/TC224 and ISO/TC68 study group, has been presented before to the ICTSB. It has just received funding from the European Commission and now has revised deadlines as follows: Interim report: May Final report: December Interoperable C-SET A meeting has been held under the auspices of CEN/ISSS with the C-SET Consortium (Cartes Bancaires and Banksys) at which various interested parties expressed their views. The consortium stated that it wished to input its work into the standardization process and it was agreed that this could form part of the activities of the Electronic Commerce Workshop - see 2.2 above. A resource requirement for such a workshop activity will be prepared for the preparatory meeting on 21 November. A further meeting of the interested parties will be held on 7 November. 3 Report from ECBS on electronic purchasing activities ECBS has become increasingly involved in the area of Electronic Commerce, which is expected to be one of the major topics for the future. The Technical Committee on security (TC4) focuses mainly on information security. The activity of this Technical Committee includes Certification Authorities (Trusted Third Parties) Financial transactions are mainly processed by automatic systems and exchanged in digital formats that need to be properly authenticated. A widespread use of digital signatures, however, is strongly dependent on economic solutions for key management problems. The use of a Certification Authority would significantly simplify this problem. The banking industry requires guidance and agreement on how to operate a Certification Authority for cryptographic keys, even more so now that public key algorithms are used more frequently for providing security for industry mechanisms. It is therefore desirable to ensure that the certification functions are managed properly by the financial sector. Conventionally Chambers of Commerce perform the work of Trusted Third Parties or Certification Authorities. A statement of the specific requirements for Certification Authority for the banking sector is still awaited. Progress on establishing a clear statement of requirements for the European banking sector in relation to Certification Authorities is under study. A working group studied the draft American standard, ANSI X9.57 on Certification Management as well as other relevant work in this area. A Technical Report on Certification Authorities will give guidelines on how to use a Certification Authority within the banking industry. Additionally, the report will specify the contents of the certificate and give recommendations on how to implement the available standards in this area. (DTR 402, Certification Authorities, to be published soon, draft available). Digital Signatures
5 page 5 An effective digital signature requires a public key algorithm, a secure hash algorithm, and a system of key management. To achieve interoperability requires agreement on standards for these items, plus agreement on the security procedures of a trusted third party (or certification agency). An ECBS standard for the use of a digital signature algorithm and the mode of operation is needed for interoperability between banks in Europe. A strong standard developed by the banking industry for its own use would be commercially extremely attractive for the bank to corporate environment. This standard would be optional, but would be available for use, as required, by members in circumstances such as those covered in the ECBS standard for a generic cross border credit transfer. The work includes an assessment of work being carried out at ISO/IEC JTC1 SC27 and ISO/TC68. Secure Banking over the Internet European banks must position themselves regarding: the use of Internet for global banking services; the use of Internet for internal purposes; new banking applications brought forward by global information infrastructures. The Technical Report provides a set of recommendations on how banks can securely execute banking transactions over the Internet and, secondly, it provides a set of recommendations on how banks can securely connect to the Internet. Security and business requirements have been specified. (TR 401, Secure Banking over the Internet, published in March 1997). ECBS will carefully monitor the work in this area carried out by other organisations and seek to influence the process when the outcome may have an impact on the banking industry. The work covers both software only solutions and solutions based on tokens and provides both a short term and a long-term recommendation. Additionally, migration from software only solutions to token solutions should be possible and will be examined. Key Escrow The use of strong cryptographic mechanisms is a prerequisite to the success of electronic commerce. Digital signature (and similar) mechanisms are required to provide proof of the origin and integrity of electronic data, while encryption is needed to protect personal information, static authentication data and other confidential information against unauthorised disclosure. While, in general, there is no problem with the use of strong cryptographic techniques to provide authentication and integrity mechanisms, many governments are concerned that the usage of unbreakable encryption technology by criminals would make their law enforcement and national security objectives difficult, even impossible, to achieve. Essentially, key escrow systems seek to provide law enforcement and national security agencies with access to the cryptographic key(s) necessary to decrypt encrypted telecommunications traffic that has been obtained from a telecommunications service provider via lawful intercept. The cryptographic keys in question are held in escrow by a Trusted Third Party. Generally, financial institutions have until now been the sole commercial users of strong cryptographic techniques. Some European countries have introduced, or are strongly considering, requirements for the escrow of confidentiality keys. However, there is no uniform approach, and some countries may not adopt key escrow. Financial institutions are naturally concerned to ensure that they can continue to provide adequate protection to financial services, both within national boundaries, and cross border. ECBS is planning a Technical Report on these issues. It will summarise the issues surrounding the use of strong cryptography to protect transmitted and stored information; provide a bibliography of sources of information on key escrow and related techniques;
6 page 6 review existing and emerging legislation controlling the use of strong cryptographic techniques in a number of European countries; propose a set of technical principles that ECBS can adopt for use by its members as a formal position statement. 4 Other information 4.1 Smart Card Forum for Europe A meeting of Smart Card interested parties was held under the auspices of the UK Department of Trade and Industry on 1 and 2 October The purpose of the meeting was to examine whether a European Forum to support the Smart Card Industry would be of sufficient benefit to justify the effort and cost involved. Some areas were highlighted as possibly needing consensus: Security and privacy Access Systems for the disabled Codes of Practice and Conduct Common items of Specifications and Standards Use of Biometrics Regulations and Legislation Multi-Application Cards Consumer Protection It was agreed that a EFORUM Start-up group should be set up (with CEN/ISSS on the membership) to put together draft terms of reference, membership, options for funding, methods of operating etc. Clearly there is potential for some of this work being directed towards the members of ICTSB.
Standardization mandate addressed to CEN, CENELEC and ETSI in the field of Information Society Standardization
Mandate/ 290 EN Standardization mandate addressed to CEN, CENELEC and ETSI in the field of Information Society Standardization 1 Title Mandate addressed to CEN, CENELEC and ETSI in support of the European
More informationINSPIRE status report
INSPIRE Team INSPIRE Status report 29/10/2010 Page 1 of 7 INSPIRE status report Table of contents 1 INTRODUCTION... 1 2 INSPIRE STATUS... 2 2.1 BACKGROUND AND RATIONAL... 2 2.2 STAKEHOLDER PARTICIPATION...
More informationETSI Security Standards Workshop January 2006
ETSI Security Standards Workshop Adrian Scrase ETSI CTO adrian.scrase@etsi.org 1 Welcome to ETSI 2 ETSI is A European standards organization Active in all areas of ICT Setting globally-applicable standards
More informationDecember 10, Statement of the Securities Industry and Financial Markets Association. Senate Committee on Banking, Housing, and Urban Development
December 10, 2014 Statement of the Securities Industry and Financial Markets Association Senate Committee on Banking, Housing, and Urban Development Hearing Entitled Cybersecurity: Enhancing Coordination
More informationEconomic and Social Council
United Nations Economic and Social Council ECE/TRANS/WP.29/2017/46 Distr.: General 23 December 2016 Original: English Economic Commission for Europe Inland Transport Committee World Forum for Harmonization
More informationEUROPEAN COMMISSION Enterprise Directorate-General
EUROPEAN COMMISSION Enterprise Directorate-General Services, commerce, tourism, e-business & IDA E-business, ICT industries and services Brussels, 21 October 2003 DG ENTR-D4 M 338 - EN Standardisation
More informationITU Asia-Pacific Centres of Excellence Training on Conformity and Interoperability. Session 2: Conformity Assessment Principles
ITU Asia-Pacific Centres of Excellence Training on Conformity and Interoperability Session 2: Conformity Assessment Principles 12-16 October 2015 Beijing, China Keith Mainwaring ITU Expert Agenda 1. Context
More informationElectronic signature framework
R E P U B L I C O F S E R B I A Negotation Team for the Accession of Republic of Serbia to the European Union Working Group for Chapter 10 Information society and media Electronic signature framework Contents
More informationETSI TCR-TR 006 TECHNICAL COMMITTEE October 1992 REFERENCE TECHNICAL REPORT
ETSI TCR-TR 006 TECHNICAL COMMITTEE October 1992 REFERENCE TECHNICAL REPORT Source: ETSI TC-ATM Reference: ATM (92) 79 ICS: 33.020, 33.040.40 Key words: Conformance testing, certification of conformity
More informationTrust Services for Electronic Transactions
Trust Services for Electronic Transactions ROUMEN TRIFONOV Faculty of Computer Systems and Control Technical University of Sofia 8 st. Kliment Ohridski bul., 1000 Sofia BULGARIA r_trifonov@tu-sofia.bg
More informationISO/IEC INTERNATIONAL STANDARD
INTERNATIONAL STANDARD ISO/IEC 15945 First edition 2002-02-01 Information technology Security techniques Specification of TTP services to support the application of digital signatures Technologies de l'information
More informationThe current status of Esi TC and the future of electronic signatures
SG&A ETSI FUTURE WORKSHOP Sophia Antipolis, 16th January 2006 The current status of Esi TC and the future of electronic signatures Riccardo Genghini, Chairman of Etsi Esi TC riccardo.genghini@sng.it The
More informationU.S. Japan Internet Economy Industry Forum Joint Statement October 2013 Keidanren The American Chamber of Commerce in Japan
U.S. Japan Internet Economy Industry Forum Joint Statement 2013 October 2013 Keidanren The American Chamber of Commerce in Japan In June 2013, the Abe Administration with the support of industry leaders
More informationEuropean Standards- preparation, approval and role of CEN. Ashok Ganesh Deputy Director - Standards
European Standards- preparation, approval and role of CEN Deputy Director - Standards 1 European Standarization why?, 2010-10-14 CEN-CENELEC 2010 2 What standards do enhance the safety of products allow
More informationFrequently Asked Questions
December 2001 Introduction International Standard ISO/IEC 17799:2000 Information Security Management, Code of Practice for Information Security Management Frequently Asked Questions The National Institute
More informationH2020 WP Cybersecurity PPP topics
Info Day 2017 SC7 Secure Societies 06-07/03/2017 H2020 WP 2017 - Cybersecurity PPP topics Rafael Tesoro Cybersecurity & Digital Privacy, DG CNECT Cyberspace: a backbone of digital society & economic growth
More informationThis document is a preview generated by EVS
INTERNATIONAL STANDARD ISO 17090-1 Second edition 2013-05-01 Health informatics Public key infrastructure Part 1: Overview of digital certificate services Informatique de santé Infrastructure de clé publique
More informationThis report was prepared by the Information Commissioner s Office, United Kingdom (hereafter UK ICO ).
REPORT TO THE 38 th INTERNATIONAL CONFERENCE OF DATA PROTECTION AND PRIVACY COMMISSIONERS - MOROCCO, OCTOBER 2016 ON THE 5 th ANNUAL INTERNATIONAL ENFORCEMENT COOPERATION MEETING HELD IN MANCHESTER, UK,
More informationThe Arab ICT Organization
The Arab ICT Organization UNCITRAL, 21-22 April, 2016 The Arab ICT Organization SUMMARY I. About AICTO : creation, organs, membership II. objectives III. Action Plan IV. Working groups V. Projects : the
More informationISO/IEC JTC 1 N Replaces: JTC 1 N ISO/IEC JTC 1 Information Technology
ISO/IEC JTC 1 N7751 2005-03-15 Replaces: JTC 1 N 7742 ISO/IEC JTC 1 Information Technology Document Type: Document Title: Other document (Defined) Contribution from JTC 1/SC 7/WG 2 on Current IT Accessibility
More informationSecurity Standardization
ISO-ITU ITU Cooperation on Security Standardization Dr. Walter Fumy Chairman ISO/IEC JTC 1/SC 27 Chief Scientist, Bundesdruckerei GmbH, Germany 7th ETSI Security Workshop - Sophia Antipolis, January 2012
More informationISO/IEC JTC 1/SC 27 N7769
ISO/IEC JTC 1/SC 27 N7769 REPLACES: N ISO/IEC JTC 1/SC 27 Information technology - Security techniques Secretariat: DIN, Germany DOC TYPE: officer's contribution TITLE: SC 27 Presentation to ITU-T Workshop
More informationCEN and CENELEC Position Paper on the draft regulation ''Cybersecurity Act''
CEN Identification number in the EC register: 63623305522-13 CENELEC Identification number in the EC register: 58258552517-56 CEN and CENELEC Position Paper on the draft regulation ''Cybersecurity Act''
More informationENISA s Position on the NIS Directive
ENISA s Position on the NIS Directive 1 Introduction This note briefly summarises ENISA s position on the NIS Directive. It provides the background to the Directive, explains its significance, provides
More informationThis document is a preview generated by EVS
TECHNICAL REPORT RAPPORT TECHNIQUE TECHNISCHER BERICHT CEN/TR 15449-5 April 2015 ICS 07.040; 35.240.70 English Version Geographic information - Spatial data infrastructures - Part 5: Validation and testing
More informationThe Africa Utilities Telecom Council Johannesburg CC, South Africa 1 st December, 2015
The Africa Utilities Telecom Council Johannesburg CC, South Africa 1 st December, 2015 Utilities Telecom Council Global Focus on Utility Information and Communications Technology (ICT) Formed more than
More informationDIGITAL AGENDA FOR EUROPE
DIGITAL AGENDA FOR EUROPE Talk overview Background Institutional framework Administrative capacities Electronic Communications Strategy, Information Society Strategy Current and future activities. Background
More informationETSI ESI and Signature Validation Services
ETSI ESI and Signature Validation Services Presented by: Andrea Röck For: Universign and ETSI STF 524 expert 24.10.2018 CA day ETSI 2018 Agenda Update on standardisation under eidas Signature validation
More informationThird public workshop of the Amsterdam Group and CODECS C-ITS Deployment in Europe: Common Security and Certificate Policy
Third public workshop of the Amsterdam Group and CODECS C-ITS Deployment in Europe: Common Security and Certificate Policy 14 February 2017 Amsterdam Gerhard Menzel European Commission - DG MOVE Scope:
More informationKick-off Meeting DPIA Test phase
Kick-off Meeting DPIA Test phase Directorate General for European Commission Brussels, 05/03/2015 Content Welcome and Introduction Upcoming Data Protection Reform Commission Recommendation Test Phase of
More informationValérie Andrianavaly European Commission DG INFSO-A3
Security and resilience in the Information Society: towards a CIIP policy in the EU Valérie Andrianavaly European Commission DG INFSO-A3 valerie.andrianavaly@ec.europa.eu Network and information security:
More informationUK-led international standards for BIM
UK-led international standards for BIM Kieran Parkinson Digital Transformation Standards Manager Built Environment Copyright 2018 BSI. All rights reserved 27/11/2018 1 BSI Group structure Policy, Engagement
More informationMotorola Mobility Binding Corporate Rules (BCRs)
Motorola Mobility Binding Corporate Rules (BCRs) Introduction These Binding Privacy Rules ( Rules ) explain how the Motorola Mobility group ( Motorola Mobility ) respects the privacy rights of its customers,
More informationNSAI s ICT standardization participation and consultation system and operation as ETSI/NSO. Dr. Ian J. Cowan, Technical Secretary, NSAI/ICTSCC
NSAI s ICT standardization participation and consultation system and operation as ETSI/NSO Dr. Ian J. Cowan, Technical Secretary, NSAI/ICTSCC Telecommunication standards a key component for business development
More informationCybersecurity & Digital Privacy in the Energy sector
ENERGY INFO DAYS Brussels, 25 October 2017 Cybersecurity & Digital Privacy in the Energy sector CNECT.H1 Cybersecurity & Digital Privacy, DG CNECT ENER.B3 - Retail markets; coal & oil, DG ENER European
More informationISO/TR TECHNICAL REPORT. Financial services Information security guidelines
TECHNICAL REPORT ISO/TR 13569 Third edition 2005-11-15 Financial services Information security guidelines Services financiers Lignes directrices pour la sécurité de l'information Reference number ISO/TR
More informationSecurity and resilience in Information Society: the European approach
Security and resilience in Information Society: the European approach Andrea Servida Deputy Head of Unit European Commission DG INFSO-A3 Andrea.servida@ec.europa.eu What s s ahead: mobile ubiquitous environments
More informationStandardization of Knowledge and Skills for IT Security
Standardization of Knowledge and Skills for IT Security Milan Friday, October 28th 2016 Veronica Salsano Overview Standardization in general Legislation Technical foundations Actors Current situation Security
More informationISO/IEC INTERNATIONAL STANDARD. Information technology Security techniques Information security management systems Overview and vocabulary
INTERNATIONAL STANDARD ISO/IEC 27000 Second edition 2012-12-01 Information technology Security techniques Information security management systems Overview and vocabulary Technologies de l'information Techniques
More informationPromoting accountability and transparency of multistakeholder partnerships for the implementation of the 2030 Agenda
2016 PARTNERSHIP FORUM Promoting accountability and transparency of multistakeholder partnerships for the implementation of the 2030 Agenda 31 March 2016 Dialogue Two (3:00 p.m. 5:45 p.m.) ECOSOC CHAMBER,
More informationPAA PKI Mutual Recognition Framework. Copyright PAA, All Rights Reserved 1
PAA PKI Mutual Recognition Framework Copyright PAA, 2009. All Rights Reserved 1 Agenda Overview of the Framework Components of the Framework How It Works Other Considerations Questions and Answers Copyright
More informationFriedrich Smaxwil CEN President. CEN European Committee for Standardization
Friedrich Smaxwil CEN President CEN European Committee for Standardization www.cen.eu www.cencenelec.eu Friedrich Smaxwil, CEN President 1. Standards & standardization 2. CEN s role in European Standardization
More informationISO/IEC JTC 1 N 13145
ISO/IEC JTC 1 N 13145 ISO/IEC JTC 1 Information technology Secretariat: ANSI (United States) Document type: Title: Status: Business Plan BUSINESS PLAN FOR ISO/IEC JTC 1/SC 40, IT SERVICE MANAGEMENT AND
More informationChina ITS Standardization
SESEC III Special Report Author: Betty XU Date of draft: 2015-01-16 China ITS Standardization Part 1: Main Organizations Jan 2015 Seconded European Standardization Expert in China Project (SESEC) Executive
More informationHow the European Commission is supporting innovation in mobile health technologies Nordic Mobile Healthcare Technology Congress 2015
How the European Commission is supporting innovation in mobile health technologies Nordic Mobile Healthcare Technology Congress 2015 Claudia Prettner, Unit for Health and Well-Being, DG CONNECT Table of
More informationThe NIST Cybersecurity Framework
The NIST Cybersecurity Framework U.S. German Standards Panel 2018 April 10, 2018 Adam.Sedgewick@nist.gov National Institute of Standards and Technology About NIST Agency of U.S. Department of Commerce
More informationBusiness Model for Global Platform for Big Data for Official Statistics in support of the 2030 Agenda for Sustainable Development
Business Model for Global Platform for Big Data for Official Statistics in support of the 2030 Agenda for Sustainable Development Introduction This note sets out a business model for a Global Platform
More informationResolution adopted by the General Assembly on 21 December [on the report of the Second Committee (A/64/422/Add.3)]
United Nations A/RES/64/211 General Assembly Distr.: General 17 March 2010 Sixty-fourth session Agenda item 55 (c) Resolution adopted by the General Assembly on 21 December 2009 [on the report of the Second
More informationENISA And Standards Adri án Belmonte ETSI Security Week Event Sophia Antipolis (France) 22th June
ENISA And Standards Adri án Belmonte ETSI Security Week Event Sophia Antipolis (France) 22th June European Union Agency for Network and Information Security Summary 01 What's ENISA? 02 Some challenges
More informationRegional and subregional approaches to the Digital Economy: Lessons from Asia-Pacific and Latin America
Regional and subregional approaches to the Digital Economy: Lessons from Asia-Pacific and Latin America CLT 217 - Cartagena, 21 June 217 Elena Scaramuzzi - Cullen International 216 comparison digital strategies
More informationThis document is a preview generated by EVS
CEN WORKSHOP CWA 15264-1 April 2005 AGREEMENT ICS 35.240.15 English version Architecture for a European interoperable eid system within a smart card infrastructure This CEN Workshop Agreement has been
More informationRaising standards for consumers
ANEC comments on European Commission Rolling Plan for ICT standardisation (review) Introduction ANEC is a member of the European multi-stakeholder platform on ICT standardisation, which collaborated in
More informationPost Disaster Needs Assessment Guide and
Post Disaster Needs Assessment Guide and Framework Guide International Platform Forum 2014 January 21, 2014 Kobe, Japan Post Disaster Needs Assessment Agreement between EU, UN and World Bank to collaborate
More informationISACA National Cyber Security Conference 8 December 2017, National Bank of Romania
C-PROC Cybercrime Programme Office Council of Europe, Bucharest, Romania ISACA National Cyber Security Conference 8 December 2017, National Bank of Romania The role of legislation in enhancing the cyber
More informationStandardization for DRR: Opportunities or barriers?
Standardization for DRR: Opportunities or barriers? 4 June, 2018 Stefan Tangen, stefan.tangen@msb.se Swedish Civil Contingencies Agency (MSB) IFAFRI ISO/TC 292 Security and resilience Example on cargo
More informationInternational Standard ISO/IEC 17799:2000 Code of Practice for Information Security Management. Frequently Asked Questions
November 2002 International Standard ISO/IEC 17799:2000 Code of Practice for Information Security Management Introduction Frequently Asked Questions The National Institute of Standards and Technology s
More informationScope of the Member State mechanism
FIRST MEETING OF THE MEMBER STATE MECHANISM ON SUBSTANDARD/SPURIOUS/FALSELY-LABELLED/ 2 November 2012 FALSIFIED/COUNTERFEIT MEDICAL PRODUCTS Provisional agenda item 4 Scope of the Member State mechanism
More information(Islamabad, March 2015) MEDIUM TERM VISION FOR ENERGY CONNECTIVITY IN THE SAARC REGION
The 8 th Japan-SAARC Energy Symposium (Islamabad, 10-11 March 2015) MEDIUM TERM VISION FOR ENERGY CONNECTIVITY IN THE SAARC REGION Ahmar Ismail Director, SAARC Secretariat Kathmandu, Nepal South Asian
More informationmr. sci. Suada Hadžović, dipl.ing.el. Communications Regulatory Agency Bosnia and Herzegovina Ohrid, Republic of Macedonia, May 24 26, 2017.
International Regulatory Conference The trend and regulatory issues in OTT mr. sci. Suada Hadžović, dipl.ing.el. Bosnia and Herzegovina,. Agenda 1. OTT definition and taxonomy 2. OTT - small companies
More informationM403 ehealth Interoperability Overview
CEN/CENELEC/ETSI M403 ehealth Interoperability Overview 27 May 2009, Bratislava Presented by Charles Parisot www.ehealth-interop.eu Mandate M/403 M/403 aims to provide a consistent set of standards to
More informationThe commission communication "towards a general policy on the fight against cyber crime"
MEMO/07/199 Brussels, 22 May 2007 The commission communication "towards a general policy on the fight against cyber crime" The use of the term cyber crime in this communication There is no agreed definition
More informationehealth Network ehealth Network Governance model for the ehealth Digital Service Infrastructure during the CEF funding
ehealth Network Governance model for the ehealth Digital Service Infrastructure during the CEF funding 1 The ehealth Network is a voluntary network, set up under article 14 of Directive 2011/24/EU. It
More informationBuilding an Assurance Foundation for 21 st Century Information Systems and Networks
Building an Assurance Foundation for 21 st Century Information Systems and Networks The Role of IT Security Standards, Metrics, and Assessment Programs Dr. Ron Ross National Information Assurance Partnership
More informationIndustry 4.0 and the importance of norms and standards within collaborative, digitized process networks
ProStep ivip Symposium 2017 Industry 4.0 and the importance of norms and standards within collaborative, digitized process networks DIN e. V., Dr. Michael Stephan, Dr. Stefan Weisgerber Essen, 2017-05-17,
More informationASD CERTIFICATION REPORT
ASD CERTIFICATION REPORT Amazon Web Services Elastic Compute Cloud (EC2), Virtual Private Cloud (VPC), Elastic Block Store (EBS) and Simple Storage Service (S3) Certification Decision ASD certifies Amazon
More informationStakeholder Participation Guidance
Climate, Community & Biodiversity Alliance, Verra Stakeholder Participation Guidance Guidance to support stakeholder participation in design, implementation and assessment of policies and actions May 2018
More informationCSTD Working Group on improvements to the IGF Summary of the 3 rd meeting
CSTD Working Group on improvements to the IGF Summary of the 3 rd meeting 31 October to 2 November Geneva Peter Major, Chairman CSTD WGIGF Special adviser, Permanent Mission of Hungary to the UN, Geneva
More informationPromoting Global Cybersecurity
Promoting Global Cybersecurity Presented to ITU-T Study Group 17 Geneva, Switzerland 6 October 2005 Robert Shaw ITU Internet Strategy and Policy Advisor ITU Strategy and Policy Unit 1 Agenda Critical Infrastructures
More informationGlobal Specification Protocol for Organisations Certifying to an ISO Standard related to Market, Opinion and Social Research.
CONTENTS i. INTRODUCTION 3 ii. OVERVIEW SPECIFICATION PROTOCOL DOCUMENT DEVELOPMENT PROCESS 4 1. SCOPE 5 2. DEFINITIONS 5 3. REFERENCES 6 4. MANAGEMENT STANDARDS FOR APPROVED CERTIFICATION BODIES 6 4.1
More informationISO/IEC INTERNATIONAL STANDARD. Information technology Security techniques Biometric information protection
INTERNATIONAL STANDARD ISO/IEC 24745 First edition 2011-06-15 Information technology Security techniques Biometric information protection Technologies de l'information Techniques de sécurité Protection
More informationOutsourcing personal data processing to the cloud
Outsourcing personal data processing to the cloud Session 28 Thursday, November 8, 2012 11:30-12:30 Chris Mitchell Professor of Computer Science Royal Holloway, University of London Agenda The cloud data
More informationStatus of activities Joint Working Group on standards for Smart Grids in Europe
Status of activities Joint Working Group on standards for Smart Grids in Europe Ralph Sporer Chairman JWG on standards for Smart Grids ETSI - Smart Grids Workshop 5-6 April 2011 Sophia-Antipolis Page 1
More informationCooperative Mobility and the importance of harmonised international standards
Cooperative Mobility and the importance of harmonised international standards 2 nd ETSI TC ITS Workshop Sophia Antipolis, 10-12/02/2010 Juhani Jääskeläinen Head of Unit, ICT or Transport European Commission
More informationASEAN e-authentication Workshop Balwinder Sahota
ASEAN e-authentication Workshop Balwinder Sahota Agenda ASEAN Single Window (ASW) What is ATIGA Form D The information flow of ATIGA Form D and related documents Security Requirements Challenges in Implementation
More informationGSME proposals regarding mobile theft and IMEI security
GSM Europe The European interest group of the GSM Association http://www.gsmeurope.org GSME proposals regarding mobile theft and IMEI security The question of mobile theft and ways of combating it has
More informationCHAPTER 13 ELECTRONIC COMMERCE
CHAPTER 13 ELECTRONIC COMMERCE Article 13.1: Definitions For the purposes of this Chapter: computing facilities means computer servers and storage devices for processing or storing information for commercial
More informationThis document is a preview generated by EVS
INTERNATIONAL STANDARD ISO/IEC 18013-3 Second edition 2017-04 Information technology Personal identification ISO-compliant driving licence Part 3: Access control, authentication and integrity validation
More informationCall for Expressions of Interest
Call for Expressions of Interest ENISA M/CEI/17/T01 Experts for assisting in the implementation of the annual ENISA Work Programme TECHNICAL DESCRIPTION CONTENTS TECHNICAL DESCRIPTION... 3 1. INTRODUCTION...
More information15412/16 RR/dk 1 DGD 1C
Council of the European Union Brussels, 12 December 2016 (OR. en) 15412/16 ENFOPOL 484 ENV 791 ENFOCUSTOM 235 OUTCOME OF PROCEEDINGS From: General Secretariat of the Council On: 8 December 2016 To: Delegations
More informationGuiding principles on the Global Alliance against child sexual abuse online
Annex to the Declaration on Launching the Global Alliance against child sexual abuse online, further setting forth the intent of the participants Guiding principles on the Global Alliance against child
More informationCEN & ETSI standards & eidas Compliance
CEN & ETSI standards & eidas Compliance Nick Pope - Thales Vice Chair, ETSI TC Electronic Signature & Infrastructures Jan Ulrik Kjærsgaard Cryptomathic Editor CEN EN 419 241-2 (Remote Signing) eidas and
More informationComprehensive Study on Cybercrime
Federal Ministry of Justice and 17 August 2016 Consumer Protection German Comments on the Comprehensive Study on Cybercrime (Draft February 2013) The United Nations Office on Drugs and Crime (UNODC) invited
More informationNIS Standardisation ENISA view
NIS Standardisation ENISA view Dr. Steve Purser Brussels, 19 th September 2017 European Union Agency for Network and Information Security Instruments For Improving Cybersecurity Policy makers have a number
More informationData Breach Notification: what EU law means for your information security strategy
Data Breach Notification: what EU law means for your information security strategy Olivier Proust December 8, 2011 Hunton & Williams LLP Key points 1. Introduction 2. Overview of data breach requirements
More informationcybersecurity in Europe Rossella Mattioli Secure Infrastructures and Services
Enhancing infrastructure cybersecurity in Europe Rossella Mattioli Secure Infrastructures and Services European Union Agency for Network and Information Security Securing Europe s Information society 2
More informationEstablishing Trust Across International Communities
Establishing Trust Across International Communities 6 Feb 2013 info@federatedbusiness.org www.federatedbusiness.org Proprietary - British Business Federation Authority 1 Strategic Drivers - Industry 1.
More informationNOTIFICATION TO THE PARTIES
CONVENTION ON INTERNATIONAL TRADE IN ENDANGERED SPECIES OF WILD FAUNA AND FLORA NOTIFICATION TO THE PARTIES No. 2014/035 Geneva, 4 August 2014 CONCERNING: Needs assessment for strengthening the implementation
More informationEUROPEAN DATA CENTRE STANDARDS
PRINT COVER EUROPEAN DATA CENTRE STANDARDS Mark Acton - CBRE Data Centre Solutions March 2018 EUROPEAN DATA CENTRE STANDARDS Genuine Standards are important to guide data centre design and legitimately
More informationTECHNICAL SPECIFICATION
TECHNICAL SPECIFICATION IEC/TS 62351-8 Edition 1.0 2011-09 colour inside Power systems management and associated information exchange Data and communications security Part 8: Role-based access control
More informationResolution adopted by the General Assembly. [on the report of the Second Committee (A/56/561/Add.2)]
United Nations A/RES/56/195 General Assembly Distr.: General 21 January 2002 Fifty-sixth session Agenda item 98 (b) Resolution adopted by the General Assembly [on the report of the Second Committee (A/56/561/Add.2)]
More informationTECHNICAL REPORT Electronic Signatures and Infrastructures (ESI); Guidance on the use of standards for cryptographic suites
TR 119 300 V1.2.1 (2016-03) TECHNICAL REPORT Electronic Signatures and Infrastructures (ESI); Guidance on the use of standards for cryptographic suites 2 TR 119 300 V1.2.1 (2016-03) Reference RTR/ESI-0019300v121
More informationInformation technology Security techniques Telebiometric authentication framework using biometric hardware security module
INTERNATIONAL STANDARD ISO/IEC 17922 First edition 2017-09 Information technology Security techniques Telebiometric authentication framework using biometric hardware security module Technologies de l information
More informatione-invoicing, the standards approach
e-invoicing, the standards approach Roma, 23/11/ 12 Ir. P. Potgieser Leader for Task 4 in the European e-invoice Multistakeholder Forum P.G.L. Potgieser, september 2012 Agenda Communication (2010) 712
More informationGoogle Cloud & the General Data Protection Regulation (GDPR)
Google Cloud & the General Data Protection Regulation (GDPR) INTRODUCTION General Data Protection Regulation (GDPR) On 25 May 2018, the most significant piece of European data protection legislation to
More informationWithin the meanings of applicable data protection law (in particular EU Regulation 2016/679, the GDPR ):
Privacy Policy Introduction Ikano S.A. ( Ikano ) respects your privacy and is committed to protect your Personal Data by being compliant with this privacy policy ( Policy ). In addition to Ikano, this
More informationAustralian/New Zealand Standard
AS/NZS ISO/IEC 18028.4:2006 ISO/IEC 18028-4:2005 AS/NZS ISO/IEC 18028.4:2006 Australian/New Zealand Standard Information technology Security techniques IT network security Part 4: Securing remote access
More informationInternet copy. EasyGo security policy. Annex 1.3 to Joint Venture Agreement Toll Service Provider Agreement
EasyGo security policy Annex 1.3 to Joint Venture Agreement Toll Service Provider Agreement This copy of the document was published on and is for information purposes only. It may change without further
More information10007/16 MP/mj 1 DG D 2B
Council of the European Union Brussels, 9 June 2016 (OR. en) 10007/16 OUTCOME OF PROCEEDINGS From: On: 9 June 2016 To: General Secretariat of the Council Delegations No. prev. doc.: 9579/16 + COR 1 Subject:
More informationNew CEN-CENELEC Technical Committees for Infosec and Data Protection Standardization (TC8) Brussels - 19 September 2017 Alessandro GUARINO Chair,
New CEN-CENELEC Technical Committees for Infosec and Data Protection Standardization (TC8) Brussels - 19 September 2017 Alessandro GUARINO Chair, CEN/CENELEC/TC 8 Privacy Management in Products and Services
More informationUN FREEDOM OF INFORMATION POLICIES INTERNATIONAL TELECOMMUNICATION UNION (ITU)
UN FREEDOM OF INFORMATION POLICIES INTERNATIONAL TELECOMMUNICATION UNION (ITU) 1. Does your organization have an access to information? If so, please provide a link or copy of it. Please also respond to
More information