BPF Cybersecurity 2022



BPF Cybersecurity input to the Informal Inter-Sessional Meetings of the Open-Ended Working Group on security of and in the use of information and communications technologies 2021-2025 (6 December)

BPF Cybersecurity draft outputs  

BPF at IGF 2022 in Addis Ababa and online:

  • BPF Cybersecurity session at IGF 2022, Thursday 1 December, 6:30-8:00 am UTC, session details  


IGF 2022 Best Practice Forum Cybersecurity

Building on the so far work (see bottom page), the goal of the 2022 BPF on Cybersecurity is to continue identifying further cybersecurity initiatives, bring the voices of those most affected by cybersecurity events forward, and to analyze the complex interplay between norms and cybercrime legislation. The BPF on Cybersecurity will continue informing and supporting the discussion, development and assessment taking place in the UN GGE and OEWG* exercise and elsewhere (*e.g. BPF input to OEWG, 21 July).

Particularly, the work will continue developing around the following domains: 

  • Identifying further initiatives, their relative scope, and explore areas of disagreement exists between mapped cyber norms;
  • Recognize the voices of those most affected by cybersecurity events, bring them forward to learn where norms development would have benefited from their input;
  • Explore the complex interplay between norms and cybercrime legislation and  identify where these efforts support each other, collide, or impact the overall work of mitigating impacts major cybersecurity events. This aligns closely to the work currently happening under the auspices of the United Nations Ad Hoc Committee on Cybercrime.

The community engagement will continue to happen over a dedicated mailing list. All interested stakeholders are most welcome to subscribe through this link.  Earlier reports by the BPF that serve as the foundation for this year's work are listed at the bottom of this page.

Work plan 2022
Work stream I - "Agreements"

Work stream I identifies additional international cyber norms agreements to include with the 36 agreements analysed in 2021 in the updated report for 2022. 

Work stream II - "Events"

Work stream II identifies historic cybersecurity events to learn from the experiences of those affected by and involved in mitigating the event.

Work stream III - "Outreach"

Work stream III drives the community and stakeholder engagement in the work of the BPF

Extra - Myth-busting paper on Cybercrime versus Cybersecurity 

The paper clarifies the key policy differences between cybersecurity and cybercrime.  The draft paper is published (dowload here). / Feedback on the draft paper.



Join the BPF Cybersecurity mailing list (subscribe here) and the BPF Update calls (details below).  The work streams are welcoming community volunteers to help with the collection of information, analysis and drafting. Contact  [email protected] if interested in joining one of the work streams.

BPF Coordinating team
  • MAG BPF Facilitator: Ms Hariniombonana Andriamampionona

  • BPF Co-facilitator: Mr Markus Kummer
  • BPF Lead expert: Mr Maarten Van Horenbeeck
  • Lead Workstream 1: Mr John Hering, Mr Pablo Hinojosa
  • Lead Workstream 2: Ms Mallory Knodel
  • Lead Workstream 3: Ms Sheetal Kumar, Mr Markus Kummer
  • Consultant IGF Secretariat: Mr Wim Degezelle

contact [email protected]


BPF Activities & Updates 

Scheduled BPF Cybersecurity Update Sessions*:

(*additional meetings may be added if needed)

Past meetings

  • BPF Update, Tuesday 30 August, at 15:00 UTC - Meeting recording (Passcode:  Z9TDMm=7 )
  • BPF input to the OEWG Chair's Informal Dialogue, Thursday 21 July - speaking notes  
  • BPF Update, Tuesday 12 July at 06:00 AM UTC - Meeting recording (Passcode: 1X+k@E0W )
  • BPF Update, Tuesday 17 May at 15:00 UTC - Meeting recording (Access Passcode #sB69p+v  )
  • BPF Cybersecurity outreach session @ RightsCon - Thursday 9 June  at 21:15 UTC  (silde deck - session link for RightsCon registered participants)