ISO/IEC

My work aims to rationalise the resulting compliance efforts through a dedicated Technical Report (TR) under ETSI CYBER. This report will help reduce legal ambiguity, support standardisation across sectors, and ensure proportional and efficient compliance.

The work I am leading in European Standardisation through the CEN and CENELEC JTC 21 WG 2, answers directly the main operational pillars of the Standardisation request received from the European Commission as to provide technical specifications through standards (candidate for harmonization) in support of the EU AI Act.

In this fellowship, the main priority focuses on helping organisations to drive innovation and technological transformation using the Centre of Excellence (CoE) as the best management mechanism in a context of a shortage of professional profiles with expertise in Artificial Intelligence and other disruptive technologies.

My fellowship focuses on researching the feasibility of developing an international (e.g. ISO) standard for deploying Artificial Intelligence (AI) in climate action, culminating in a Technical Report following consultation with chairs of relevant ISO technical committees. 

Artificial Intelligence (AI) is a key component of the Rolling Plan for ICT standardisation, supporting the European Commission’s Standardisation Request issued to back the AI Act. My contribution is aligned with the objectives of the AI Key Enablers, particularly in the areas of Cybersecurity in AI and the Data Economy.

The use of digital identity wallets is foreseen to be the best appropriate solution to support an age verification method, which uses the date of birth of the individual without disclosing it.

A strong priority for this work is to contribute to standards to enable consideration of the support for data management in the cloud. Data spaces can only be fully realised with the application of strong quality management controls through standardisation at multiple levels. 

There is currently no standard addressing the cybersecurity of AI systems. In ISO/IEC JTC1 SC27 WG4  27090 is under development; and I contribute directly to this work.

Annegrit's priority is the Convenorship of CEN CENELEC JTC21 WG 5,  the organisation and project support to work on the AI Act standardisation request for Cybersecurity. This includes a close collaboration with other groups within JTC 21, JTC 13, ISO IEC SC 42 and SC 27 to collect all information of existing and work under development. The main challenge is that JTC 21 and also our WG5 has a diverse structure of experts and knowledge, which makes the work, the effort and efficiency very difficult. In this case, the challenge in addition is the collaboration with other existing standardisation groups within JTC 21 as well as with JTC 13 for Cyber Resilience Act, with ETSI and their view, with ISO IEC SC 27 and SC 42.

My work aims to develop robust frameworks for the verification of cryptographic protocols within the security of ICT products, services, and processes, thereby enhancing resilience against cyber threats.

This is a project with ISO/IEC JTC 1/SC 27/WG 5 addressing Identity Management and Privacy Technologies. It feeds into broader standardisation activity around digital identity (including the EUDI Wallet), child protection, prevention of exploitation and abuse, data minimisation, privacy preservation and security objectives.

This project, towards enabling a fairer marketplace for rights holders and remuneration of authors and performers, initiated work on a new standard ISO/IEC 23000-23 Decentralised Media Rights Application Format currently at the Working Draft (WD) stage.