All news

All news

News

News

News

News

itrust consulting in quantum cryptography

itrust consulting referenced for an evaluation of progress in quantum cryptography in an IBM Qiskit report on simulation frameworks for quantum key distribution (QKD), August 19, 2020.

Link to the article 'India Is Amid a Quantum Boom'

itrust consulting renewed its ISO/IEC 27001 certification after adding a Privacy Information Management System including all ISO/IEC 27701 protection controls

itrust consulting renewed the certification of its Information Security Management System (ISMS) and extended it with the compliance of its Privacy Information Management System (PIMS), valid for three years as of July 9, 2020.


itrust consulting is the first LU company certified ISO/IEC 27001, under OLAS accreditation, for a scope including all ISO/IEC 27701 controls to protect privacy.

The new certification scope statement is the following:
‘Both the Information Security Management system (ISMS) and the Privacy Information Management System (PIMS) of itrust consulting cover all business services provided by itrust consulting to its customers as well as all assets owned or managed, including all customer related information, personal identifiable information, and services such as information security and computer security consulting, auditing, R&D, training, ICT, CERT, and pseudonymization; in accordance with the Statement of Applicability, version 3.4 of 5th of June, 2020 including all controls of ISO/IEC 27001 and 27701.’.

itrust consulting continues sponsoring a key event for information security in Luxembourg

Traditionally, itrust consulting continued its sponsorship for the 15th edition of ‘HACK.LU’ (22.-24/10/2019).

Links: HACK.LU

Protection of Intellectual Property (IP)

Dr. Carlo Harpes, founder and Managing Director of itrust consulting, presented on 10 October our experience in the 'Protection of Intellectual Property' at the 'Les Afterworks de la Propriété Intellectuelle', hosted at the Chambre de Commerce Luxembourg.

Links: Link to 'Les afterworks'

ISO/IEC JTC 1/SC 27 ‘IT Security techniques’

From 14 to 18 October 2019, Dr Carlo Harpes participated in the ISO/IEC JTC 1/SC 27 ‘IT Security Techniques’ subcommittee meeting in Paris, as a part of the Luxembourgish delegation.

Dr Carlo Harpes, Managing Director and founder of itrust consulting awarded with the ‘National Standards Delegate’ trophy

On 11 October 2019, ILNAS, in collaboration with the University of Luxembourg (Uni.lu), organized an information session to celebrate the 50th World Standardization Day.

This event provided participants with an overview of the normative developments carried out within the framework of the national normative strategy 2010-2020 and the normative perspectives for the next decade.

The award ceremony for the "National Standards Delegate" trophy was then held. This year, Dr. Jean-Philippe Humbert had the honor of awarding this prize to Dr. Carlo Harpes, Managing Director at itrust consulting Sàrl for his important contribution to technical standardization in the Grand Duchy of Luxembourg. Among other things, he represented Luxembourg in various plenary meetings of European and international organizations, led the creation of Luxembourg commentaries and was editor of normative documents.

Links: More details here

Thank you, Europe!

At the occasion of Europe’s Day, itrust consulting would like to thank the European Union, pointing out that 70 % of recruited employees since its foundation in 2007, are EU citizens, excluding the Luxembourgish citizens.
Over the years itrust consulting has benefited significantly from the European Research & Development programs (FP7, H2020, ESA): itrust’s participation in Liveline, LASP, MICIE, SPARC, CockpitCI, iGoing, TRESsPASS, bIoTope, ATENA was funded with 2 million Euros.
Furthermore, a turnover of more than 4 million Euros came from our consulting services towards European institutions.

Without the European Union, our growth and quality of service would not have been possible.

Happy Europe Day!

Your status on GDPR compliance?

More and more companies, including small organisation and ASBLs, have demonstrated compliance to GDPR .
This is far easier to achieve than generally thought.

itrust consulting has recently updated its service offer:

  1. GDPR templates: € 100 per language version to be filled in by yourself;
  2. A tailored 'privacy statement for ASBL' for fixed price of € 100:
    Send us your logo, statutes, website, and contact data. We will call you for a discussion on your current practices such as enrolment process, use of pictures of events… after which we will send a draft privacy declaration to be published on your website after review and addition of specific aspects;
  3. An introduction to GDPR: 1-day training at € 500 per participant (incl. licence to use the GDPR templates);
  4. Specialized GDPR training: 2 days on 'Foundations of the GDPR' (incl. exam) + 3 days on the role of DPO (incl. exam);
  5. GDPR support services: pay per day;
  6. DPOaaS: typically 2-5 days per year external support as Data Protection Officer.

We are prepared and eager to support you!

For more details, check our GDPR service offer description

itrust consulting applies ‘nudge’ theory to increase customer security

In 2017, Richard Thaler and Cass Sunstein, the founding fathers of 'nudge theory', received the Nobel prize in Economics. The essentials of nudge theory can be summed up in a few bullet points:

  • nudges are tiny hints or changes which suggest that one follow a certain direction, but leave all of one’s options open;
  • a default option is a very powerful nudge, as it requires one to actively object to it to choose a different path;
  • states and other large institutions can use nudges to improve whole societies.


The main New Year’s resolution of itrust consulting for 2019 is to incorporate nudging to the benefit of our customers’ security needs.

The main issue is that people decide emotionally without rationally considering security. Efforts to improve security take attention and resources away from their core business. Moreover, people have a strong tendency to reject constraints and authorities, as these give them the impression that they have lost the power to decide. Nudging rests on the idea that most decisions are actually taken unconsciously.

'Nudging for security' means therefore to prepare the environment so that people unconsciously, but freely, choose the right option for themselves and their security. A nice example of this are the privacy-by-default requirements of the GDPR. It is now up to us to come up with - and implement - others for our customers.

As a consequence, itrust consulting wishes to employ a social scientist to assist in this approach.

Happy nudging for better cybersecurity!

Archive