Trust Services Security Incidents 2020

: Annual report : July 2021

Autor(es):
Gogou, Vassiliki | Vytogianni, Eleni | Dekker , Marnix
European Union Agency for Cybersecurity
Editor: [S.l.] : ENISA, 16 July 2021Descripción: 19 p. : gráf. ; 1 documento PDFTipo de contenido: texto (visual)
Tipo de medio: electrónico
Tipo de soporte: recurso en línea
ISBN: 978-92-9204-511-1Tema(s): Ciberseguridad y confianza | data security | ensuring security | online privacy | trustRecursos en línea: Acceso al documento Resumen: This report provides an aggregated overview of the notified breaches for 2020, analysing root causes, statistics and trends. Marks the fifth round of security incident reporting for the EU’s trust services sector. In this round of annual summary reporting a total of 27 EU countries and 2 EFTA countries took part. They reported a total of 39 incidents. This report concludes that: 1) A steady increase in notified incidents: in 2020 notified incidents increased by around 18%, suggests that authorities and TSPs are becoming more familiar with the breach reporting process and their obligations under eIDAS. 2) The number of incidents with a large impact has dropped: in 2020 only 3 incidents were characterized as having had a “large impact” as opposed to 2019 when 10 such incidents had been reported 3) Τhe ratio of reported incidents concerning qualified and non-qualified trust services remains high: in 2020, 69% of total incidents had an impact on qualified trust services compared to approximately 33% of incidents reported on non-qualified trust services 4) The impact on subservices is mainly divided between certificate management (47% of the incidents) and certificate generation (42% of the incidents). 5) Approximately 66% (26 incidents) of the reported incidents were rated as minor compared to 2019 when 60% (19 incidents) were rated as having had only a minor impact. Only one incident had a very large (disastrous) impact, and only three incidents had a large impact. Furthermore, a significant increase in minor incidents has been observed, indicating that the incident reporting mechanism has become more familiar to the providers and they are reporting more incidents regardless of their severity.
Lista(s) en las que aparece este ítem: Novedades Septiembre 2021 | Ciberseguridad
Etiquetas de esta biblioteca: Ingresar para agregar etiquetas.
    Valoración media: 0.0 (0 votos)
Tipo de ítem Ubicación actual Colección Signatura Estado Notas Fecha de vencimiento Código de barras
Informes Informes CDO

El Centro de Documentación del Observatorio Nacional de las Telecomunicaciones y de la Sociedad de la Información (CDO) os da la bienvenida al catálogo bibliográfico sobre recursos digitales en las materias de Tecnologías de la Información y telecomunicaciones, Servicios públicos digitales, Administración Electrónica y Economía digital. 

 

 

Colección digital Acceso libre online pdf 1000020176877

This report provides an aggregated overview of the notified breaches for 2020, analysing root causes, statistics and trends. Marks the fifth round of security incident reporting for the EU’s trust services sector. In this round of annual summary reporting a total of 27 EU countries and 2 EFTA countries took part. They reported a total of 39 incidents.
This report concludes that: 1) A steady increase in notified incidents: in 2020 notified incidents increased by around 18%, suggests that authorities and TSPs are becoming more familiar with the breach reporting process and their obligations under eIDAS.
2) The number of incidents with a large impact has dropped: in 2020 only 3 incidents
were characterized as having had a “large impact” as opposed to 2019 when 10 such incidents had been reported
3) Τhe ratio of reported incidents concerning qualified and non-qualified trust services
remains high: in 2020, 69% of total incidents had an impact on qualified trust services
compared to approximately 33% of incidents reported on non-qualified trust services 4) The impact on subservices is mainly divided between certificate management (47% of the incidents) and certificate generation (42% of the incidents).
5) Approximately 66% (26 incidents) of the reported incidents were rated as minor
compared to 2019 when 60% (19 incidents) were rated as having had only a minor
impact. Only one incident had a very large (disastrous) impact, and only three incidents
had a large impact. Furthermore, a significant increase in minor incidents has been
observed, indicating that the incident reporting mechanism has become more familiar to
the providers and they are reporting more incidents regardless of their severity.

No hay comentarios en este titulo.

para colocar un comentario.

Haga clic en una imagen para verla en el visor de imágenes

Copyright© ONTSI. Todos los derechos reservados.
x
Esta web está utilizando la política de Cookies de la entidad pública empresarial Red.es, M.P. se detalla en el siguiente enlace: aviso-cookies. Acepto