The European Union Agency for Network and Information Security (ENISA) is a centre of network and information security expertise for the EU, its member states, the private sector and EU citizens. ENISA works with these groups to develop advice and recommendations on good practice in information security. It assists member states in implementing relevant EU legislation and works to improve the resilience of Europe ’s critical information infrastructure and networks. ENISA seeks to enhance existing expertise in member states by supporting the development of cross-border communities committed to improving network and information security throughout the EU. More information about ENISA and its work can be found at www.enisa.europa.eu.


For queries in relation to this paper, please use isdp@enisa.europa.eu.
For media enquires about this paper, please use press@enisa.europa.eu.


Konstantinos Limniotis (Hellenic DPA), Marit Hansen (DPA Schleswig-Holstein)


Athena Bourka (ENISA), Prokopios Drogkaris (ENISA)


We would like to thank the following experts for reviewing this report and providing valuable comments:
Giuseppe D’Acquisto (Garante), Soerin Bipat (SIG), Mathieu Cunche (INRIA), Meiko Jensen (Kiel University)