Welcome to the United Nations | Department of Economic and Social Affairs


During the IGF MAG meeting from 4-6 April[1], there was agreement that a 2016 BPF would be carried out on a cybersecurity related topic/theme, building upon the previous work of the CSIRTS and SPAM BPFs. The MAG meeting also acknowledged that the WSIS +10 review process has produced an outcome document with a strong focus on "building confidence and security in the use of information and communications technologies", making an IGF BPF related to cybersecurity even more relevant. 

Sign-Up to Participate and Contribute on the Mailing List: 



**List of Contributions: 2016 IGF Best Practice Forum (BPF) on Cybersecurity**(Contributions received by the community will be added here on a rolling basis)


Meeting Summary's:

Virtual Meeting Summary 24 May 2016

Virtual Meeting Summary 14 June 2016

Virtual Meeting Summary 8 July 

Virtual Meeting Summary 16 August


Call for contributions:

All stakeholders are invited to submit written contributions addressing the below questions and issues to the 2016 IGF BPF on Cyber security mailing list (subscribe: https://www.intgovforum.org/mailman/listinfo/bp_cybersec_2016_intgovforum.org) by 19 August 2016. While it is envisioned that initial drafting of the output document will begin on 19 August, this should be considered a soft deadline as contributions will be welcome after the 19th of August, particularly contributions from IGF National and Regional Initiatives (NRIs) and from other relevant entities or organisations who may be holding meetings relating to cybersecurity between the 19th of August and the IGF annual meeting in December. Contributions will then be compiled and synthesized by the Secretariat, and further circulated to the community for comment and further work towards an output document for the BPF to be presented at the 11th IGF in Guadalajara, Mexico from 6-9 December.

All individuals and organizations are asked to kindly try to keep their contributions to no more than 2-3 pages, and are encouraged to include URLs/Links to relevant information/examples/best practices as applicable. Please attach contributions as Word Documents (or other applicable non-PDF text).


Reviewing the outcomes of both the IGF Spam and CSIRT Best Practices Forums over the last two years, there has been an emerging consensus from the community that the 2016 cyber security BPF might most benefit from addressing cooperation and collaboration between stakeholder groups as a topic. The community has expressed that all stakeholders may benefit from having a multi-stakeholder discussion, including each of the major IGF stakeholder groups, on how to engage and communicate with each other on cyber security issues. There is also a feeling that this would be uniquely fit for an IGF BPF. There is also emerging agreement that the BPF for 2016 should not be seen in isolation, but should rather be seen in a long-term perspective and that capacity building would be an integral component for the work. End users, law enforcement agencies, policymakers, and all of the other range of actors involved in cyber security, can be reached out to and involved in the work. National and Regional IGF initiatives (NRIs)s may also wish to play an important role in feeding their discussions into the work, and vice versa.



      What are the typical roles and responsibilities of your/each of the stakeholder groups in making the internet a secure and safe place for people to socialize and conduct business?

      What are some of the typical communication mechanisms between stakeholder groups to discuss cyber security related concerns?

      How can cybersecurity cooperation and collaboration be enhanced particularly in developing and least developed countries?

      What are some common problem areas that stakeholders encounter when trying to enhance cooperation and collaboration?

      What are some notable existing best practices and examples of successful collaboration and cooperation amongst stakeholders and specific actors that have helped improve cybersecurity?

      What are some examples of best practices in ‘Cyber security Situational Awareness’ where different organizations have worked together, specifically with law enforcement agencies and other specialists?

      What are other related or different topics that your organization would like this BPF to address moving forward, both in 2016 and beyond?

[1] See 2016 IGF BPF on Cybersecurity Virtual Coordination Meeting Reports: http://www.intgovforum.org/cms/best-practice-forums/bpf-cybersecurity