Submitted Proposals


Organization: Global Internet Policy Initiative
Title :
Cybersecurity: An overview of the issue space and the outlook for remediation
Provide a concise formulation for the proposed workshop theme including its importance and relevance to the IGF.
Security threats to the Internet are both evolving and increasing in number and sophistication.  Almost every form of human behavior has now manifested itself on the Internet, ranging from productive and altruistic behavior on the one hand to aberrant, destructive and psychopathic behavior on the other hand.  While the latter behavior is modest in scope relative to the beneficial uses to which the Internet is put, it can undermine the confidence of Internet users by supporting harmful and criminal activity.

Absolute security is not achievable, either in real life or in cyberspace.  The issue in both realms is to understand the assets that need to be protected and to behave and implement policies so as to minimize the risk to and maximize the security of those assets, whether they be lives, property, or information.  While such risk analysis and management are very important in making cyberspace a good realm in which to operate, it has not been taken seriously enough by a critical mass of the organizations that are affected by such bad behavior, especially those organizations in a position to adopt effective policy measures against it.

Security of any type, including cybersecurity, is a shared responsibility, but it is often not regarded as such, especially by the average Internet user.  The problem is exacerbated by lack of knowledge, a perverse incentive structure, and the lack of a well-understood and widely accepted framework in which to understand the scope of cybersecurity and the individual issues, and implement effective risk mitigation measures with which to improve it.

This workshop will provide a taxonomy of cybersecurity issues, examine the risk profile associated with them, and discuss and evaluate policies for various sectors that will ameliorate threats to the security of the Internet.  In particular, the various institutions that have responsibility for cybersecurity  will be examined to determine the extent to which their mandate and their resources allow them to fully discharge their responsibilities.  A gap analysis will identify those areas for which effective organizational responses to threats do not exist, and will discuss policies to fill such gaps.

Provide the names and affiliations of the panellists you are planning to invite. Describe the main actors in the field and whether you have you approached them about their willingness to participate in proposed workshop.
Participants will be invited from the following organizations.  Specific names are not available right now; we will invite one of the most qualified individuals from each organization.

OECD
Interpol
ICANN
Government of Japan (policy person - connected with spam successes?)
ITU
Center for Democracy and Technology
FIRST
Council of Europe?

Provide the name of the organizer(s) of the workshop and their affiliation to various stakeholder groups. Describe how you will take steps to adhere to the multi-stakeholder principle, including geographical diversity.
Internet Society of Bulgaria
GIPI
Internet Society

Does the proposed workshop provide different perspectives on the issues under discussion?
Yes, very much so.  The workshop will blend technical, legal, policy and civil society points of view in discussing the different dimensions of security and their societal effects.

Please explain how the workshop will address issues relating to Internet governance and describe how the workshop conforms with the Tunis Agenda in terms of substance and the mandate of the IGF.
Trust in the network is an essential element in ensuring its increased use.  Ameliorating security issues throughout the network will provide a more trusted medium, over which the objectives of individuals, business and society can more effectively be attained.

List similar events you and/or any other IGF workshops you have organized in the past.
The Internet Society of Bulgaria has conducted a three day international cybercrime workshop workshop in Sofia in 2003. The other sponsors have been responsible for a number of IGF workshops both in 2006 and 2007

Were you part of organizing a workshop last year? Which one? Did you submit a workshop report?
The Internet Society workshops in 2007 have produced reports that have been submitted to the Secretariat.