Dear Colleagues, at the last RIPE meeting we had an introduction of ENISA, the European Network and Information Security Agency. This is a new Agency of the European Union that started its work last year. One of the first activities of ENISA is a study of excisting security environments of ISPs. Below you will find the announcement of this study, together with the relevant documents. I strongly encourage you to have a look at it, and if you have operations inside the EU to take the time to answer and submit the questionaire. The deadline mentioned has been extended - so, go ahead :-) Best regards, Rob Blokzijl Chairman RIPE ---------- Forwarded message ---------- Dear Service Provider, We would appreciate if you could give us a few minutes of your attention. Your input is valuable during a study of legislation in the field of information security. We hope to be able to provide you with the results of our research in the first half of 2006. ENISA, the European Information and Network Security Agency, conducts a brief study on the technical and organizational measures that electronic communication services providers take with regard to IT security measures and countermeasures against spam. This addresses in particular the EU Directive 2002/58/EC, which has been transposed into national law by the EU Member States in an attempt to harmonize measures in Europe. You - as an electronic communication service provider - are also concerned about security and spam. ENISA would like to understand what specific measures you implemented to put national laws and regulations into practice. This is not an analysis of compliance with the law. The results of this study will merely be used to evaluate whether the EU Directive 2002/58/EC is effective and how it can be improved. Please see the attached questionnaire. You can fill it directly in Microsoft Word, by choosing your answers and then saving the document. You can also print the attached PDF file or you can go to our website. Filling the questionnaire will take you less than 10 minutes. There are several ways to send us your response: * Via fax to: +30.2810.39.1895 * With a web form: http://www.enisa.org.gr * Via email to: carsten.casper@enisa.eu.int marking your response by "Questionnaire EU Directive 2002/58/EC" on the subject line For any questions, please call Carsten Casper at +30.2810.39.1280 We ask you to provide contact details so that we can make sure that we do not receive multiple answers from the same provider. However, you may remain anonymous if you wish. In this case we reserve the right to not take your responses into account. Please note our deadline: Tuesday, January 17th, 2006 Thank you very much for your cooperation. Yours sincerely, Carsten Casper Security Policies / Technical Department ENISA www.enisa.eu.int