Navigation path: European Commission > Information Society

POLICIES :: NIS :: Activities

Workshop on the EU policy dimension of vulnerability management and disclosure process

The Commission organised a workshop in Brussels on 31.03.2009 in the framework of the recently adopted initiative on Critical Information Infrastructure Protection (CIIP).

The objectives of the workshop were to

• i) exchange between participants experiences regarding current vulnerability management and disclosure approaches and discuss lessons learnt;
• ii) discuss the need and merits to promote vulnerability management activities throughout the EU;
• iii) identify priority areas and possible mechanisms for policy actions to enhance the preparedness in handling and coordinating vulnerability management and disclosure at the EU level and in cooperation with international partners.

The audience was composed of officials and experts from Member States involved in designing and operating policies to enhance the level of network and information security and the protection of critical information infrastructures in their country, experts from the private sector and academia as well as European Commission officials.

• Terms of reference of the workshop including the final agenda.
• Available presentations:
  • Setting the scene
    • Update on the CIIP policy initiative, Andrea Glorioso, European Commission
    • State of play on vulnerability disclosure - Prof. Juha Röning, Oulu University Secure Programming Group Department of Electrical and Information Engineering
  • Exchange of experiences and lessons learnt

  • Erka Koivunen - CERT-FI
  • Stanislas de Maupeou - CERTA-FR
  • Konstantin Knorr - CT IC CERT SIEMENS
  • Camillo Särs - F-SECURE
  • Damir Rajnovic - CISCO
  • Eric Luiijf – TNO NL

• Summary report of the workshop

Return to CIIP main page

Last updated: 07.05.2009

Home | News | Calendar | Library | RSS | XML | Search | Contact | Help