ENISA, Europol, strike info-sharing deal

Watch out, cyber-crooks, TWO European agencies are chasing you now

Secure remote control for conventional and virtual desktops

Europe's peak information security body will join forces with the continent's criminal intelligence sharing outift in order to beat down on carders and crackers plaguing Europe.

Heads of the European Union Agency for Network and Information Security (ENISA) signed a deal with Europol at the Hague last Thursday to give a capability kick to Europol and its cyber crime centre (EC3).

The two agencies will share insights that can help shed light on cyber crime cases, strategic analyses and best practice, and training.

The new alliance is part of broader work by ENISA to ensure computer emergency response teams (CERTs) scattered across Europe were regularly talking and sharing info.

In a joint statement ENISA executive director Professor Udo Helmbrecht and Europol boss Rob Wainwright said information sharing between the agencies was important to help fight online crime.

"This agreement is an important step in the fight against ever more skilled cyber criminals who are investing more time, money and people on targeted attacks," the chiefs wrote in a canned statement.

"Cyber crime is estimated to cost the global economy more than $400 billion annually [and] by cooperating more closely together and sharing expertise, we strengthen Europe’s capacity to combat cyber criminals.”

The deal did not include the exchange of personal data.

Information-sharing is a perennial problem for crime-fighting agencies. Countless statements have been released on the back of deals and memoranda promising to formalise what often amounted to an exchange of tip offs through causal phone calls between industry friends.

The road blocks for information sharing were diverse. It included departmental territory guarding, a lack of personal ties between agency staff that often led to tip offs, and an absence of trust by the private sector in exposing sensitive but valuable data to governments.

There were also technical and legal constraints, according to an October 2013 ENISA report dubbed Detect, SHARE, Protect [PDF].

"Despite fruitful cooperation between many CERTs bringing visible results in improving cyber security in EU member states, the teams still face obstacles that work against seamless security information exchange and sharing [including] legal and technical barriers, as well as lack of interest from cyber security stake holders in sharing information," it said in the report.

"The 'perfect' scenario for enhancing sharing practices in the CERT community would include building a bridging platform that would extend existing communities and broker information across these communities."

Communication tools should be interoperable and open source, backed by solid threat intelligence and correlation engines, advanced incident analytics and visualisation, and automatic prioritisation.

Such an effort would be run by the European CERTs and supported by ENISA, it said. ®

Choosing a cloud hosting partner with confidence

More from The Register

next story
Bono apologises for iTunes album dump
Megalomania, generosity and FEAR of irrelevance drove group to Apple deal
HBO shocks US pay TV world: We're down with OTT. Netflix says, 'Gee'
This affects every broadcaster, every cable guy
Facebook, Apple: LADIES! Why not FREEZE your EGGS? It's on the company!
No biological clockwatching when you work in Silicon Valley
French 'terror law' declares WAR on the INTERNET itself, say digi-rights folks
Liberté, Égalité, Fraternité: Two out of three ain't bad
SCREW YOU, EU: BBC rolls out Right To Remember as Google deletes links
Not even Google can withstand the power of Auntie
Arab States make play for greater government control of the internet
Nerds told to get lost in last-minute power grab bid at UN meeting
Zippy one-liners, broken promises: Doctor Who on the Orient Express
Series finally hits stride, but Clara's U-turn is baffling
Don't bother telling people if you lose their data, say Euro bods
You read that right – with the proviso that it's encrypted
prev story


Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Win a year’s supply of chocolate
There is no techie angle to this competition so we're not going to pretend there is, but everyone loves chocolate so who cares.
Why cloud backup?
Combining the latest advancements in disk-based backup with secure, integrated, cloud technologies offer organizations fast and assured recovery of their critical enterprise data.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.