|
IGF 2014 sub theme that this workshop fall under
Enhancing Digital Trust
|
|
Description
What makes protecting the public from cybersecurity risks such a challenge for governments, private sector and civil society? The governance frameworks and diversity of interest that comprise the Internet infrastructure are complex and no one institution, agency or organization can solve these issues on their own and every digital citizen plays a role in protecting themselves and the Internet. The sheer breadth and depth of these issues can be daunting because of the ever-changing nature of the threats. As a result, no one entity has “the answer.”
The session will discuss the multistakeholder approach to addressing cybersecurity issues: Why should a multistakeholder approach be used and what are the elements of a successful public private governance model. The damage done to the culture of trust that had been developing among governments, private sector and civil society - key players in cyber security and the question becomes - Can multistakeholder efforts continue to succeed in a post Snowden World?
These questions lend themselves to a more interactive session with lots of discussion.
The anticipated participants, NCSA, NorSIS and DSCI will add perspectives of successful programs from both the developing and developed worlds. Microsoft will add the private-sector perspective and government representatives from India and Australia will share their unique insights.
Our goal for this workshop is to have industry, governments and civil society come together in countries where the multistakeholder approach is not present and look at ways to replicate and implement these program. Agenda is as follows:
·Introduction
·Two Brief Scene Setting Presentations
·Short Responses from Discussant
·Audience Q&A/Discussion
|
|
Name(s) and stakeholder and organizational affiliation(s) of institutional co-organizer(s)
- Mr. Michael Kaiser
- Civil Society
- National Cyber Security Alliance
|
|
Has the proposer, or any of the co-organizers, organized an IGF workshop before?
no
|
|
Type of session
Roundtable
|
|
Duration of proposed session
90
|
|
Subject matter #tags that describe the workshop
#cybersecurity, #multistakeholder, #snowden, #partnership, #security
|
|
Names and affiliations (stakeholder group, organization) of speakers the proposer is planning to invite
- Mr. Michael Kaiser
- Civil Society
- National Cyber Security Alliance, Executive Director and Organizer (UNITED STATES, Western Europe and Others Group - WEOG)
- Have you contacted the speaker? Yes
- Has the speaker been confirmed? Yes
- Mr. Jayantha Fernando
- Government
- Information and Communication Technology Agency of Sri Lanka
- Have you contacted the speaker? Yes
- Has the speaker been confirmed? Yes
- Ms. Jacqueline Beauchere
- Private Sector,
- Microsoft, Chief Online Safety Officer and Chair of NCSA, (UNITED STATES, Western Europe and Others Group - WEOG)
- Have you contacted the speaker? Yes
- Has the speaker been confirmed? Yes
- Ms. Subi Chaturvedi
- Academia/Civil Society
- Lady Shri Ram College For Women, Delhi University/Media For Change
- Have you contacted the speaker? Yes
- Has the speaker been confirmed? Yes
- Mr. Adli Wahid
- Technical
– APNIC (AUSTRALIA)
- Have you contacted the speaker? Yes
- Has the speaker been confirmed? Yes
- Ms. Yurie Ito
- Technical
– Japan Computer Emergency Response Team Coordination Center (JAPAN)
- Have you contacted the speaker? Yes
- Has the speaker been confirmed? No - pending travel confirmation
- Ms. Daria Catalui
- Government
– European Union Agency for Network and Information Security
- Have you contacted the speaker? Yes
- Has the speaker been confirmed? Yes
|
|
Name of Moderator(s)
Mr. Michael Kaiser
|
|
Name of Remote Moderator(s)
to be provided prior to session
|
|
Description of how the proposer plan to facilitate discussion amongst speakers, audience members and remote participants
The goal of this session is to share experiences of some of the discussion participants and to encourage others to engage in the discussion to learn best practices and hopefully avoid pitfalls when embarking on their own multistakeholder approach to these important issues.
There will be no panels for this session nor formal presentations. There will be some questions we propose to audience members to spur conversation but the flow of the conversation will be dictated by the audience.
|
|
Description of the proposer's plans for remote participation
Since one of our goals with the session is to educate and inspire representatives of the multistakeholder model from across the globe about the successes of the multistakeholder approach to cybersecurity, we not only want a robust in-person attendance but want to also ensure that the program is available to remote participants as well.
Prior to the events in Istanbul, we will work through our networks and social media, including Microsoft’s 1.4 million + and NCSA’s close to 500,000 followers on Facebook and Twitter to publicize the session among likely interested audiences to not only drive participation but to also gather inputs for use by the session participants.
|
|
Background paper
No background paper provided
|
|
Brief substantive summary of the workshop and presentation of the main issues that were raised during the discussions
The session was designed to be a highly interactive discussion among not only the discussants but also audience members. We were able to achieve this by limiting presentations and directly engaging the audience resulting in over 20 people speaking and sharing their experience with implementing multistakeholder approaches to Cyber Security Efforts.
Daria Catalui kicked off the session with an overview of the approach taken by the European Network Information Security Agency. Two key take away from her presentation were 1) To get the message out about cyber awareness you need to make your materials available for any organization to use in their own efforts. 2) Using “multipliers” – groups who have networks of networks can help you reach a very broad and diverse audience in an efficient manner. Jacqueline Beauchere shared Microsoft’s successful experience with collaborative public – private partnerships. She also stressed the importance of having a single actionable message such as “Stop. Think. Connect”. Other discussants shared their experiences based upon their unique background and perspectives – Jayantha Fernando spoke about the role of Governments, Subi Chaturvedi shared her experience in rolling out a Stop. Think. Connect. campaign in India; Adli Wahid shared the perspective from CERTs ; and Yurie Ito shared a similar CERT perspective but with a focus on Internet Healthiness.
A wide ranging discussion followed with representatives from various governments, civil society organizations and private sector, participants sharing their insights and asking for more information on how to possibly kick start a similar effort in their region. After the session, there was significant networking and exchanging of contact information for follow on activity.
|
|
Conclusions drawn from the workshop and possible follow up actions
When implementing a public-private partnership approach to cybersecurity, there are a few elements you should consider:
1) While having a centralized resource database of materials can be helpful, there needs to be the opportunity for localization of the materials. This not only helps address cultural issues but also technological issues (e.g. primary web access via mobile as opposed to traditional fixed internet).
2) It helps if organizations can leave their differences at the door. There can sometimes be tension between the various parties in the multistakeholder model in approaching these issues. In order to be successful, these differences need to be suppressed and focus needs to be place on the objective. This also helps build trust between participants. An “honest broker” can drive cooperation and build strategies between partners with potentially competing agents and interests.
3) The use of “multipliers” is a key element to success. This helps rapidly spread the message in a very efficient manner.
4) There has to be a shared responsibility between various parts of the multistakeholder community that will drive ownership of the single actionable message.
|
|
Estimation of the overall number of participants present at the workshop
80
|
|
Estimation of the overall number of women present at the workshop
about half of the participants were women
|
|
Extent to that the workshop discuss gender equality and/or women’s empowerment
it was not seen as related to the workshop’s theme and was not raised
|
|
A brief summary of the discussions in case that the workshop addressed issues related to gender equality and/or women’s empowerment
N/A
|
|
Reported by
Tiffany Barrett
|
|
Workshop transcript
transcript
|
|
Youtube video
video
|
|
Attachments
No attachments provided
|