Trust Services Security Incidents 2020
: Annual report : July 2021Autor(es):
Gogou, Vassiliki
| Vytogianni, Eleni | Dekker , Marnix
European Union Agency for Cybersecurity
Editor: [S.l.] : ENISA, 16 July 2021Descripción: 19 p. : gráf. ; 1 documento PDFTipo de contenido: texto (visual) Tipo de medio: electrónico
Tipo de soporte: recurso en líneaISBN: 978-92-9204-511-1Tema(s): Ciberseguridad y confianza
| data security | ensuring security | online privacy | trustRecursos en línea: 
Acceso al documento Resumen: This report provides an aggregated overview of the notified breaches for 2020, analysing root causes, statistics and trends. Marks the fifth round of security incident reporting for the EU’s trust services sector. In this round of annual summary reporting a total of 27 EU countries and 2 EFTA countries took part. They reported a total of 39 incidents.
This report concludes that: 1) A steady increase in notified incidents: in 2020 notified incidents increased by around 18%, suggests that authorities and TSPs are becoming more familiar with the breach reporting process and their obligations under eIDAS.
2) The number of incidents with a large impact has dropped: in 2020 only 3 incidents
were characterized as having had a “large impact” as opposed to 2019 when 10 such incidents had been reported
3) Τhe ratio of reported incidents concerning qualified and non-qualified trust services
remains high: in 2020, 69% of total incidents had an impact on qualified trust services
compared to approximately 33% of incidents reported on non-qualified trust services 4) The impact on subservices is mainly divided between certificate management (47% of the incidents) and certificate generation (42% of the incidents).
5) Approximately 66% (26 incidents) of the reported incidents were rated as minor
compared to 2019 when 60% (19 incidents) were rated as having had only a minor
impact. Only one incident had a very large (disastrous) impact, and only three incidents
had a large impact. Furthermore, a significant increase in minor incidents has been
observed, indicating that the incident reporting mechanism has become more familiar to
the providers and they are reporting more incidents regardless of their severity.
| Tipo de ítem | Ubicación actual | Colección | Signatura | Estado | Notas | Fecha de vencimiento | Código de barras |
|---|---|---|---|---|---|---|---|
Informes
|
CDO
El Centro de Documentación del Observatorio Nacional de las Telecomunicaciones y de la Sociedad de la Información (CDO) os da la bienvenida al catálogo bibliográfico sobre recursos digitales en las materias de Tecnologías de la Información y telecomunicaciones, Servicios públicos digitales, Administración Electrónica y Economía digital.
|
Colección digital | Acceso libre online | 1000020176877 |
This report provides an aggregated overview of the notified breaches for 2020, analysing root causes, statistics and trends. Marks the fifth round of security incident reporting for the EU’s trust services sector. In this round of annual summary reporting a total of 27 EU countries and 2 EFTA countries took part. They reported a total of 39 incidents.
This report concludes that: 1) A steady increase in notified incidents: in 2020 notified incidents increased by around 18%, suggests that authorities and TSPs are becoming more familiar with the breach reporting process and their obligations under eIDAS.
2) The number of incidents with a large impact has dropped: in 2020 only 3 incidents
were characterized as having had a “large impact” as opposed to 2019 when 10 such incidents had been reported
3) Τhe ratio of reported incidents concerning qualified and non-qualified trust services
remains high: in 2020, 69% of total incidents had an impact on qualified trust services
compared to approximately 33% of incidents reported on non-qualified trust services 4) The impact on subservices is mainly divided between certificate management (47% of the incidents) and certificate generation (42% of the incidents).
5) Approximately 66% (26 incidents) of the reported incidents were rated as minor
compared to 2019 when 60% (19 incidents) were rated as having had only a minor
impact. Only one incident had a very large (disastrous) impact, and only three incidents
had a large impact. Furthermore, a significant increase in minor incidents has been
observed, indicating that the incident reporting mechanism has become more familiar to
the providers and they are reporting more incidents regardless of their severity.
Haga clic en una imagen para verla en el visor de imágenes
No hay comentarios en este titulo.