-
- Logic used for the forward of incident notifications to the observer. E.g. in Luxembourg:
- CIRCL : NIS2 AND private AND NOT critical infrastructure
- GovCERT : [NIS2 AND (PUBLIC OR (private A…
-
Create an extension for modelling concepts from EU NIS2
-
De NIS2 is duidelijk over risicomanagement maar in de BIO2 zie ik maar bitter weinig vragen die ingaan op het beschikken over een geïmplementeerd risicomanagementproces terwijl dit de basis is voor in…
-
**Basisniveau -> Technische reikwijdte**
Als elke kop een lezersvraag representeert, dan is dit de technische reikwijdte. Dit in tegenstelling tot de voorgaande paragraaf. Dat is de organisatorische …
-
### Specs
RISK, EU-GDPR, EU-DGA, EU-NIS2, EU-AIAct, EU-Rights
### New Concept(s)
The RISK taxonomy should provide a taxonomy for rights impacts e.g. right is prevented from being exercised, is not …
-
As of 2023-08-01, the CRA has been voted through ITRE. There are two compromise documents that came out of this, one for the Parliament, and one for the Council:
* [Parliament compromise](https://pad…
-
Hi, as maintainer of a VB6 project and upcoming law in the EU (NIS2) we are obliged to have an SBoM. WOuld love to be able to integrate https://github.com/microsoft/sbom-tool (which uses the component…
-
### Specs
DPV, EU-NIS2, EU-AIAct
### New Concept(s)
Currently, there are concepts for Sectors in EU AI-Act, e.g. Law Enforcement and "Critical Infrastructure". To avoid definining these again and a…
-
De huidige tekst is: “*De set overheidsmaatregelen vormen de basishygiëne op gebied van informatiebeveiliging van elke (overheids)organisatie en worden zonder meer getroffen, los van hoge of lage risi…
-
OWASP recommends that organizations adopt an [Open Source Policy](https://scvs.owasp.org/scvs/guidance-open-source-policy/) that takes Open Source dependencies into their security considerations.
I'm…