Gaps in standardisation related to resilience of communication networks. The study provides five recommendations for future standardisation activities. In addition, the report identifies a number of detailed areas where the SDOs are expected to work in order to facilitate greater assurance of resilience in networks.
Study on "the costs of DNSSEC deployment". Deploying a new technology requires investment in software, hardware and human resources. In the case of DNSSEC the cost of these investments is not well defined and this uncertainty can hinder its deployment. This study analyses the costs involved in deploying DNSSEC in a registry, registrar, zone operator or recursive resolver operator.
"Resilience Features of IPv6, DNSSEC and MPLS and Deployment Scenarios". In this study an overview of the characteristics of the selected technologies is given, their public eCommunication network's resilience enhancing features are analysed and other properties that one has to be aware of in order to make a decision about their deployment are outlined. Furthermore, a number of deployment scenarios for the technologies are presented.
Privacy Features of European eID Card Specifications. The aim of this paper is to allow easy comparison between privacy features offered by European eID card specifications and thereby to facilitate identification of best practice.
Security Issues in the Context of Authentication Using Mobile Devices. Throughout this paper we will look at different use-cases for electronic authentication using mobile devices. We will identify the security risks which need to be overcome, give an opinion about their relevance, and present mechanisms that help mitigate these risks.
Mapping IDABC Authentication Assurance Levels to SAML v2.0. This report documents ENISA's evaluation of the feasibility of using SAML (as well as other alternative machine readable formats) to express IDABC Authentication Assurance Levels.
Pan-European eIDM initiatives. This report charts the origins and scope of the ambitions for European eID interoperability, and looks specifically at how these are reflected in three specific initiatives.
"How to strengthen the EU legislation, improve international cooperation and secure the growing market of internet services", January 2008. Position paper presented to the LIBE Committee of the European Parliament at the public hearing entitled "Data Protection and Search Engines on Internet (eg: the Google-DoubleClick case)". ENISA was asked to present a position statement on strengthening EU legislation, improving international cooperation and securing the growing market of internet services.
"Security Issues and Recommendations for Online Social Networks", October 2007. Several SNS are now among the top 10 most visited websites globally. The commercial success of the multi-billion Euro SNS industry depends heavily on the number of users it attracts. Combined with the strong human desire to connect, this encourages design and online behaviour where security and privacy are not always the first priority. Users are often not aware of the size or nature of the audiences accessing their information and the sense of intimacy created by being among digital friends often leads to a ‘digital hangover’ – disclosures and digital “memories” that cannot be forgotten the morning after.
"ENISA Activities", L. Marinos and D. Ikonomou at the Industry Seminar on Information Security, organised by ISO/IEC JTC1 SC27, Limassol, Cyprus, October, 2008
"Enisa 2008", International conference for ccTLD registries and registrars of CIS, Central and Eastern Europe, Sofia, Bulgaria, September 2008
