31 October, 15-18 Hours

Theme: Security

Sub-Theme: Creating trust and confidence through collaboration.

Moderator: Kenneth Cukier, The Economist

Panellist:

  • David Belanger, Chief Scientist, AT&T Labs
  • Lamia Chaffai, Director general, Tunisian certification agency (ANCE)
  • Ilias Chantzos – Symantec, Head of Government Relations, EMEA & Chair BSA  Europe
  • Chengqing Huang, Deputy Director, CNCERT/CC, China
  • Gus Hosein, Information Systems Group, LSE / Privacy International
  • Rikke Frank Joergensen, Danish Institute for Human Rights
  • Prof. Henrik W. K. Kaspersen, President of the Council of Europe Cybercrime Convention Committee
  • Arkady Kremer, Chairman, Russian Association of Networks and Services
  • Andrew Maurer, Dept of Communications IT and the Arts, Australia
  • Margaret Moran, MP, UK
  • Terayasu Murakami, Chief Counselor of Nomura Research Institute (NRI), Director of Tokyo Club Foundation for Global Studies, Acting Chairman of Electronic Commerce Promotion Working Group of Nippon Keidanren and Business Steering Committee Member of GBDe (Global Business Dialogue on electronic commerce)
  • Frederico Neves, CERT.br (Brasil), also member of the Security and Stability Advisory Committee (SSAC)
  • Richard Simpson, Director General, E-Commerce Branch, Industry Canada
  • Christiaan van der Valk, Vice President, Compliance Trustweaver

Issues:

  • Protecting users from spam, phishing and viruses while protecting privacy
  • Network Security

Description of Theme

The Internet has the potential to enable all users to communicate and access and generate a wealth of information and opportunity.  Achieving its full potential to support commercial and social relationships requires an environment that promotes and ensures users' trust and confidence and provides a stable and secure platform for commerce. Internet security is a key element of building confidence and trust among users of ICTs.

Each new device and interconnected network increases the capacity for users and their communities to make beneficial economic and social advances. However, each of them also increase the exposure of individuals and organizations to potential harm.  Threats such as phishing, malicious viruses and other forms of cybercrime and spam undermine users' confidence, while security and privacy breaches threaten users' trust. 

Solving these problems depends on a heightened awareness and understanding among all stakeholders of the importance of a secure Internet infrastructure. It will involve a combination of initiatives, first and foremost awareness raising among the different stakeholders at all levels dealing with legislative, regulatory, law enforcement, and technological aspects. It also requires enhancing the users’ abilities to control their data and personal information. One major concern is to find the appropriate balance between ease of use and openness and security. There is also need for a balance between ensuring freedom of expression, protecting privacy and fighting crime. Ultimately, the responsibility for ensuring Internet security rests with all stakeholders, including the end users, and requires cooperation among them.

What is the relevance of this theme to the IGF?

WSIS recognized that increasing confidence and security in the use of ICTs is a key principle for building an open Information Society. The Geneva Declaration calls for “building confidence and security in the use of ICTs and strengthening the trust framework, including information security and network security, authentication, privacy and consumer protection” as a key principle for the development of the Information Society.

Furthermore, the Geneva Declaration states that “a global culture of cyber-security needs to be promoted, developed and implemented in cooperation with all stakeholders and international expert bodies. These efforts should be supported by increased international cooperation. Within this global culture of cyber-security, it is important “to enhance security and to ensure the protection of data and privacy, while enhancing access and trade”.

In addition, the Tunis Agenda, expresses the resolve of governments to “effectively deal with the significant and growing problem posed by spam.”  It also calls on all stakeholders to adopt a “multi-pronged approach to counter spam” that would include consumer and business education, legislation and law enforcement, technical and self-regulatory measures, best practices, and international cooperation among the various institutions and initiatives working on these issues.  The consultations and the contributions received in the preparatory process of the Athens meeting emphasized the importance all stakeholders attach to this issue.

What are the objectives of this session?

The objective of this session is to focus on what the important issues are with respect to cybersecurity, and how collaboration between stakeholders can improve trust and confidence to combat phishing, viruses and other forms of cybercrime as well as spam and issues related to information and network security. The session will focus on some of the initiatives currently underway and build on the expertise of the academic, scientific and technical communities.  Lessons learned from various ongoing initiatives will be shared amongst all stakeholders. Participants will exchange in-depth information about the technologies, cross-border agreements, consumer education resources.

Panellists will examine the role of technology, legislation and greater awareness among end users and new models of cooperation across law enforcement agencies and business to address security issues.

The session will also look at the interlinkages between protecting the security of the Internet and protecting privacy.  It will highlight work being done by different stakeholders on privacy issues and provide information about what users can to do to ensure privacy protection.  This session will explore technology solutions and offer concrete examples of what has worked well and what has worked less well, taking into account different legal systems.