According to the Directive (EU) 2016/1148 issued by the European Parliament and the Council, hereafter referred to as 'Network and Information Security (NIS) Directive', specific types of entities which provide essential services to the European internal market, shall be identified by the Member...

As it has been stated in the recent Joint Communication on Resilience, Deterrence and Defence: Building strong cybersecurity for the EU (European Commission and High Representative of the Union for Foreign Affiairs and Security Policy, 2017, p. 13), "Finding useful information for cybercrime...

As it has been stated in the recent Joint Communication on Resilience, Deterrence and Defence: Building strong cybersecurity for the EU (European Commission and High Representative of the Union for Foreign Affairs and Security Policy, 2017, p. 13), "Finding useful information for cybercrime...

The European Union's Directive on security of network and information systems (NIS Directive) asserts that "network and information systems and services play a vital role in society", and that the "magnitude, frequency and impact of security incidents are increasing, and represent a major...

The NIS Directive is the first piece of EU legislation specifically aimed at improving cybersecurity throughout the Union. By ratifying a definite number of obligations across the EU, the Directive will help ensure a con-sistent approach to cybersecurity "with a view to achieving a high common...

In this report ENISA defines smart cars as systems providing connected, added-value features in order to enhance car users experience or improve car safety. It encompasses use cases such as telematics, connected infotainment or intra-vehicular communication. The report excludes Car-to-car as...

The purpose of this report is to understand and learn from the key developments of CSIRTs, ISACs, as well as relevant initiatives on information sharing on cyber security incidents in the energy sector. In particular, this report covers a number of subsectors of the energy sector, as follows:...

Security certification is very limited in industrial environments despite the growing cyber attacks to what is considered EU Member State Critical Information Infrastructure (CII). There are "good" reasons for this situation, however, the community questions around the contribution of...

In May 2015 the European Commission (EC) published its 'Digital Single Market Strategy for Europe', outlining 16 legislative and non-legislative initiatives designed to create a single market in digital goods and services across the European Union. As part of this Strategy, the Commission drew...

To meet current and emerging cyber security threats, EU Member States need to constantly develop and adapt their cyber security strategies. National cyber security strategies (NCSS) are the main documents of nation states to set strategic principles, guidelines, and objectives and in some cases...