<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40"><head><meta http-equiv=Content-Type content="text/html; charset=utf-8"><meta name=Generator content="Microsoft Word 14 (filtered medium)"><!--[if !mso]><style>v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style><![endif]--><style><!--
/* Font Definitions */
@font-face
{font-family:Cambria;
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Tahoma;
panose-1:2 11 6 4 3 5 4 4 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0cm;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman","serif";}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
p
{mso-style-priority:99;
mso-margin-top-alt:auto;
margin-right:0cm;
mso-margin-bottom-alt:auto;
margin-left:0cm;
font-size:12.0pt;
font-family:"Times New Roman","serif";}
p.MsoAcetate, li.MsoAcetate, div.MsoAcetate
{mso-style-priority:99;
mso-style-link:"Texto de globo Car";
margin:0cm;
margin-bottom:.0001pt;
font-size:8.0pt;
font-family:"Tahoma","sans-serif";}
span.EstiloCorreo18
{mso-style-type:personal-reply;
font-family:"Calibri","sans-serif";
color:#1F497D;}
span.TextodegloboCar
{mso-style-name:"Texto de globo Car";
mso-style-priority:99;
mso-style-link:"Texto de globo";
font-family:"Tahoma","sans-serif";
mso-fareast-language:ES;}
.MsoChpDefault
{mso-style-type:export-only;
font-family:"Calibri","sans-serif";
mso-fareast-language:EN-US;}
@page WordSection1
{size:612.0pt 792.0pt;
margin:70.85pt 3.0cm 70.85pt 3.0cm;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]--></head><body lang=ES link=blue vlink=purple><div class=WordSection1><p class=MsoNormal><span lang=EN-US style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>For the sharing information WG info. I´m in these ENISA WGs<o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal><span lang=EN-US style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal style='line-height:9.75pt'><b><span lang=ES-TRAD style='font-size:8.5pt;font-family:"Tahoma","sans-serif";color:black'>Iñigo Barreira</span></b><span lang=ES-TRAD style='font-size:8.5pt;font-family:"Tahoma","sans-serif";color:black'><br>Responsable del Área técnica<br><a href="mailto:i-barreira@izenpe.net">i-barreira@izenpe.net</a><o:p></o:p></span></p><p class=MsoNormal><span lang=ES-TRAD style='font-size:8.5pt;font-family:"Tahoma","sans-serif";color:black'>945067705</span><span lang=ES-TRAD style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p></o:p></span></p><p class=MsoNormal><span lang=ES-TRAD style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><img border=0 width=585 height=111 id="Imagen_x0020_1" src="cid:image001.png@01CFF425.3D52AF30" alt="Descripción: cid:image001.png@01CE3152.B4804EB0"></span><span lang=ES-TRAD style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p></o:p></span></p><p class=MsoNormal style='line-height:9.75pt'><span style='font-size:7.5pt;font-family:"Tahoma","sans-serif";color:#888888;mso-fareast-language:ES-TRAD'>ERNE! Baliteke mezu honen zatiren bat edo mezu osoa legez babestuta egotea. Mezua badu bere hartzailea. Okerreko helbidera heldu bada (helbidea gaizki idatzi, transmisioak huts egin) eman abisu igorleari, korreo honi erantzuna. KONTUZ!</span><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#888888;mso-fareast-language:ES-TRAD'><br></span><span style='font-size:7.5pt;font-family:"Tahoma","sans-serif";color:#888888;mso-fareast-language:ES-TRAD'>ATENCION! Este mensaje contiene informacion privilegiada o confidencial a la que solo tiene derecho a acceder el destinatario. Si usted lo recibe por error le agradeceriamos que no hiciera uso de la informacion y que se pusiese en contacto con el remitente.</span><span style='font-family:"Calibri","sans-serif";color:navy;mso-fareast-language:ES-TRAD'><o:p></o:p></span></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal><b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'>De:</span></b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'> Waldemar.Grudzien@bdb.de [mailto:Waldemar.Grudzien@bdb.de] <br><b>Enviado el:</b> lunes, 27 de octubre de 2014 18:26<br><b>Para:</b> bmhaemmerli@acris.ch; Maciej.Choczaj@asseco.pl; ogonda@checkpoint.com; alena.havlova@cer.be; Ulrich.Meuser@deutschebahn.com; pbrownel@redhat.com; ebltrustwin@gmail.com; gilbers@vnoncw-mkb.nl; johan.rambi@alliander.com; idontas@aratos.gr; Anne.Spoelstra@eneco.com; markatos@ics.forth.gr; ignacio.paredes@cci-es.org; pekka.jappinen@lut.fi; Joachim.Brandt@teliasonera.com; rob.kloots@trustingthecloud.eu; fenz@xylem-technologies.com; ulrich@lsec.be; ulrich@leadersinsecurity.org; dan.tofan@cert-ro.eu; cesma.vanwijnen@planet.nl; Donald_Edwards@Dell.com; Rainer.Koch02@telekom.de; mikko.karikyto@ericsson.com; adam.palmer@FireEye.com; iluengo@hi-iberia.es; martins@itrust.lu; Barreira Iglesias, Iñigo; hasse.degraaff@ncsc.nl; jramon.martinez@orange.com; rachael.bishop@bis.gsi.gov.uk; manel.medina@gmail.com; pascal.steichen@smile.public.lu; David.Francis@huawei.com; Csaba.Marosfai@humansoft.hu; christophe.gransart@ifsttar.fr; rafael.ortega@i4s.com; nikolaos.tsouroulas@telefonica.com; bouras@ubitech.eu; john.harris@vodafone.com; andy.de.petter@belgacom.be; ritab@bsa.org; jsalomon@fsisac.eu; merike.kaeo@mail.internetidentity.com; p@multiven.com; christoph.zurheide@deutschepost.de; RTD@rfsat.com; villagra@dit.upm.es; Margaret.ford@chyp.com; ashley.jelleyman@bt.com; leonardo.fiocchetti@selex-es.com; paolo.venturoni@Finmeccanica.com; fetler@itrust.lu; stefan@lew.ro; michael.montag@nsn.com; martin.peylo@nsn.com; mhargis@strategyanalytics.com; Inah.Omoronyia@glasgow.ac.uk<br><b>CC:</b> Aristotelis.TZAFALIAS@ec.europa.eu; Ann-Sofie.RONNLUND@ec.europa.eu<br><b>Asunto:</b> NIS-Platform: WG2 further work on Chapter 3<o:p></o:p></span></p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal><span style='font-size:10.0pt;font-family:"Arial","sans-serif"'>Dear WG2 Colleagues,</span> <br><span style='font-size:10.0pt;font-family:"Arial","sans-serif"'>Below you receive question of which we want to know your opinion, such that the final chapter 3 of WG2 can be drafted. Please answer to the points A .. E by stating what should be added or suppressed. Please propose also additional points or suggest to eleiminate points.</span> <br><span style='font-size:10.0pt;font-family:"Arial","sans-serif"'>Furthermore, please answer also the Question in capitals “WHY, WHAT, WHO, HOW, HOW to JOIN) for Blue Chips and SME. Without your active participation our chapter will not represent Europeans expert opinion.<br>Please answer soon, but<span style='color:red'> no later than Friday Oct 31, 2014 24:00h. </span>Your Answer might be just a few well selected words and do not need to be long!</span> <br><span style='font-size:10.0pt;font-family:"Arial","sans-serif"'>We are very grateful, for your active contribution such that we can close down the activity in time by the end of the year, with a good and representative chapter.</span> <br><span style='font-size:10.0pt;font-family:"Arial","sans-serif"'>Kind regards and until soon via email or in Person in Brussels at our meeting Nov 24/25, 2014.</span> <br><span style='font-size:10.0pt;font-family:"Arial","sans-serif"'>Waldemar Grudzien</span> <br><span style='font-size:10.0pt;font-family:"Arial","sans-serif"'> </span> <br><span style='font-size:10.0pt;font-family:"Arial","sans-serif"'>ð Please put your answer in line – when short, or as text file (WRD) when longer. Send these file to our rapporteur Prof. Dr. Bernhard M. Hämmerli (drafting the report) and to me.<br>The two emails are: </span><a href="mailto:bmhaemmerli@acris.ch"><span style='font-family:"Calibri","sans-serif";color:#0082BF'>bmhaemmerli@acris.ch</span></a><span style='font-family:"Calibri","sans-serif"'>; </span><a href="mailto:Waldemar.Grudzien@bdb.de"><span style='font-family:"Calibri","sans-serif";color:#0082BF'>Waldemar.Grudzien@bdb.de</span></a><span style='font-family:"Calibri","sans-serif"'> </span><br><span style='font-family:"Calibri","sans-serif"'> </span> <o:p></o:p></p><p><b><span style='font-size:24.0pt;font-family:"Cambria","serif"'>Chapter 3 Voluntary information sharing</span></b> <o:p></o:p></p><div><p class=MsoNormal><b><span style='font-family:"Calibri","sans-serif"'>Setup:</span></b><span style='font-family:"Calibri","sans-serif"'> Voluntary information sharing can be seen as a part of good risk management. Being informed about the evolution of threats and vulnerabilities enables organisations to take appropriate preventive measures. The voluntary information sharing is particularly developed in the financial and banking sector. The recommendation could therefore build upon good practices identified within NISP, with the financial sectors serving as a pilot (FS-ISAC/FI-ISAC and other relevant initiatives). This would be beneficial in extending those practices across the value chain within the financial sector, from mainly big organisations today to involving also smaller organisations, but also in looking at how good practices could be spread to other sectors that are currently looking at how to better share information and to engage in real-time sharing of information. </span><br><b><span style='font-family:"Calibri","sans-serif"'>The Chapter will have at least these five parts:</span></b> <br><b><span style='font-family:"Calibri","sans-serif";color:red'>Please comment with your expert opinion!</span></b> <br><b><span style='font-family:"Calibri","sans-serif";color:#004080'>A. Management Summary for Politician and CISO</span></b> <br><span style='font-family:"Calibri","sans-serif";color:#004080'>- Introduction in information sharing</span> <br><b><span style='font-family:"Calibri","sans-serif";color:#004080'> </span></b> <br><b><span style='font-family:"Calibri","sans-serif";color:#004080'>B. General</span></b> <br><span style='font-family:"Calibri","sans-serif";color:#004080'>- Introduction in information sharing</span> <br><span style='font-family:"Calibri","sans-serif";color:#004080'>- Classification and forms of information sharing</span> <br><span style='font-family:"Calibri","sans-serif";color:#004080'>- Prerequisites and ruling of information sharing</span> <br><span style='font-family:"Calibri","sans-serif";color:#004080'>- Borders of information sharing</span> <br><span style='font-family:"Calibri","sans-serif";color:#004080'>- Background on benefits of information sharing</span> <br><span style='font-family:"Calibri","sans-serif";color:#004080'>- Motivation for joining scheme</span> <br><span style='font-family:"Calibri","sans-serif";color:#004080'>- Voluntary vs. Mandatory information sharing: In which case which one is the preferred one?</span> <br><span style='font-family:"Calibri","sans-serif";color:#004080'>- … (The points which you as expert bring in)</span> <br><b><span style='font-family:"Calibri","sans-serif";color:#004080'> </span></b> <br><b><span style='font-family:"Calibri","sans-serif";color:#004080'>C. Blue Chip Information sharing</span></b> <br><span style='font-family:"Calibri","sans-serif";color:#004080'>- WHY: Highlight good practices that have emerged and proven to work in the financial and banking sector over the past years with regard to voluntary information sharing; give examples of cases; quantify the benefit, or the losses that could have been avoided with good information sharing mechanisms. </span><br><span style='font-family:"Calibri","sans-serif";color:#004080'>- WHAT: Are there particular kinds of information that are more useful than others to focus information sharing on: threat actors or patterns, or vulnerabilities, or O-days, or all. </span><br><span style='font-family:"Calibri","sans-serif";color:#004080'>- WHO: Who are the necessary actors for information sharing mechanisms: operators, vendors, researchers, CSIRTs; role of regulators/authorities?</span> <br><span style='font-family:"Calibri","sans-serif";color:#004080'>- HOW: How could financial and banking sector good practices be extended to other sectors; how to overcome barriers to information sharing (trust, reputation, resource constraint, governance, non-standardised formats etc.); what about the tools used to engage in information sharing and their configuration.</span> <br><span style='font-family:"Calibri","sans-serif";color:#004080'>- Use-case (pilot financial sector)</span> <br><span style='font-family:"Calibri","sans-serif";color:#004080'>- … (The points which you as expert bring in)</span> <br><span style='font-family:"Calibri","sans-serif";color:#004080'> </span> <br><b><span style='font-family:"Calibri","sans-serif";color:#004080'>D. SME specific information sharing</span></b> <br><span style='font-family:"Calibri","sans-serif";color:#004080'>- WHY: What is the benefit for SMEs for participating in information sharing mechanisms; what is the benefit for bigger companies of SME participation?</span> <br><span style='font-family:"Calibri","sans-serif";color:#004080'>- WHAT: Do SMEs need all the information that is circulating; how to channel it?</span> <br><span style='font-family:"Calibri","sans-serif";color:#004080'>- HOW: What particular arrangements need to be done to accommodate SME participation; free membership; irregular participation; clustering; directly or via their downstream clients/system integrators etc.</span> <br><span style='font-family:"Calibri","sans-serif";color:#004080'>- HOW TO JOIN: Who should SMEs turn to join a scheme.<br>on benefits of information sharing. Motivation for joining scheme.</span> <br><span style='font-family:"Calibri","sans-serif";color:#004080'>- … (The points which you as expert bring in)</span> <br><span style='font-family:"Calibri","sans-serif";color:#004080'> </span> <br><b><span style='font-family:"Calibri","sans-serif";color:#004080'>E. Findings / Recommendation</span></b> <br><span style='font-family:"Calibri","sans-serif";color:#004080'>- …</span> <br><span style='font-size:10.0pt;font-family:"Arial","sans-serif"'><br>Mit freundlichen Grüßen<br><br>Dr. Waldemar Grudzien<br>Direktor<br>Bundesverband deutscher Banken e.V. (Association of German Banks)<br>Geschäftsbereich Retail Banking und Banktechnologie<br>Burgstraße 28<br>10178 Berlin<br><br>Tel: 030-1663-2314<br>Fax: 030-1663-2399<br>E-mail: <a href="mailto:Waldemar.Grudzien@bdb.de">Waldemar.Grudzien@bdb.de</a><br>Internet: </span><a href="http://www.bankenverband.de/"><span style='font-size:10.0pt;font-family:"Arial","sans-serif"'>http://www.bankenverband.de</span></a><span style='font-size:10.0pt;font-family:"Arial","sans-serif"'> (</span><a href="www.germanbanks.org"><span style='font-size:10.0pt;font-family:"Arial","sans-serif"'>www.germanbanks.org</span></a><span style='font-size:10.0pt;font-family:"Arial","sans-serif"'>)</span><o:p></o:p></p></div></div></body></html>