Meeting Agenda
Description: At the start of the 21st century, modern societies have a growing dependency on information and communication technologies (ICTs) that are globally interconnected. However, this interconnectivity also creates interdependencies and risks that need to be managed at national, regional and international levels. Enhancing cybersecurity and protecting critical information infrastructures are essential to each nation’s security and economic well-being. At the national level, this is a shared responsibility requiring coordinated action related to the prevention, preparation, response, and recovery from incidents on the part of government authorities, the private sector and citizens. At the regional and international level, this necessitates cooperation and coordination with relevant partners. The formulation and implementation of a framework for cybersecurity and critical information infrastructure protection (CIIP) requires a comprehensive approach.
This workshop, one in a series of regional events jointly organized by the ITU Telecommunication Development Sector and ITU Telecommunication Standardization Sector,
was hosted by Secretaría de Comunicaciones, Argentina. The workshop aims to identify the main challenges faced by countries in the Americas region in developing frameworks for cybersecurity and CIIP, to consider best practices, share information on technical standards and development activities being undertaken by ITU as well as other entities, and review the role of various actors in promoting a culture of cybersecurity.
TUESDAY 16 OCTOBER 2007 |
08:00−09:00 |
Meeting Registration |
09:00−09:30 |
Meeting Opening and Welcome |
|
Welcoming Address: Arq. Carlos Lisandro Salas, Secretarío de Comunicaciones, Secretaría de Comunicaciones, Argentina
Opening remarks: Mario Maniewicz, Chief a.i., Policies and Strategies Department, Telecommunication Development Bureau, International Telecommunication Union |
09:30−10:45 |
Session 1: What is a Framework for Cybersecurity and Critical Information Infrastructure Protection? |
|
Session Description: The necessity of building confidence and security in the use of ICTs, promoting cybersecurity and protecting critical infrastructures at national levels is generally acknowledged. As national public and private actors bring their own perspective to the relevant importance of issues, in order to have a consistent approach, some countries have established cybersecurity/CIIP institutional framework structures while others have used a light-weight and non-institutional approach. This session will review, from a broad perspective, different approaches to such frameworks and their often similar components in order to provide meeting participants with a broad overview of the issues and challenges involved.
Session Moderator: Robert Shaw, ICT Applications and Cybersecurity Division, ITU Development Sector (ITU-D)
Speaker: Robert Shaw, ICT Applications and Cybersecurity Division, ITU Development Sector (ITU-D), “Overview of ITU-D Activities Related to Cybersecurity and Critical Information Infrastructure Protection”
Speaker: Daniel Hurley, Department of Commerce, National Telecommunications and Information Administration (NTIA), United States of America, “Building Cybersecurity Capacity: Overview of Best Practices for Cybersecurity”
Speaker: Phil Sodoma, Trustworthy Computing Group, Microsoft Corporation, “Resiliency Rules: 7 Steps for Resiliency in Critical Infrastructure Protection” |
10:45−11:15 |
Coffee/Tea Break |
11:15−12:45 |
Session 2: Development of a National Strategy |
|
Session Description: Increasingly, electronic networks are being used for criminal purposes, or for objectives that can harm the integrity of critical infrastructure and create barriers for extending the benefits of ICTs. To address these threats and protect infrastructures, each country needs a comprehensive action plan that addresses technical, legal and policy issues, combined with regional and international cooperation. What issues should be considered in a national strategy for cybersecurity and critical information infrastructure protection? Which actors should be involved? Are there examples of frameworks that can be adopted? This session seeks to explore in more detail various approaches, best practices, and identify key building blocks that could assist countries in the Americas region in establishing national strategies for cybersecurity and CIIP.
Session Moderator: Gonzalo Heredia, Coordinator for National Information Society Programs, Secretaría de Comunicaciones, Argentina
Speaker: Carlos Achiary, Oficina Nacional de Tecnologías de Información (ONTI),
Argentina, “Desarrollo de una Estrategia Nacional”
Speaker: Bradford Willke, CERT/CC SEI, United States of America, “Engineering National Cybersecurity and Critical Information Infrastructure Protection”
Speaker: Fred Clark, Superintendencia de Telecomunicaciones, Guatemala, “E-Readiness in Guatemala”
Speaker: Joseph Richardson, United States of America, “ITU National Cybersecurity/CIIP Self Assessment Toolkit” |
12:45−14:00 |
Lunch |
14:00−15:30 |
Session 3: Technical Standards for Cybersecurity |
|
Session Description: Standards-development bodies are an important player in addressing security vulnerabilities in ICTs. This session presents some of the main activities of standards development organizations (SDOs), focusing on ITU-T and considering topics such as security architecture, cybersecurity, security management, identity management, security baseline for network operators, and the ICT Security Standards Roadmap initiated by ITU-T Study Group 17.
Session Moderator: Paolo Rosa, ITU Standardization Bureau (ITU-T)
Speaker: Paolo Rosa, ITU Standardization Bureau (ITU-T), “ITU-T: Security and Standards”
Speaker: Mike Harrop, ITU-T Study Group 17 Rapporteur on
the Security Project, “ITU-T Network Security Initiatives”
|
15:30−16:00 |
Coffee/Tea Break |
16:00−17:00 |
Round Table Information Exchanges on a Framework for Cybersecurity and Critical Information Infrastructure Protection and the Development of a National Strategy; and Technical Standards. |
|
- Moderator for Information Exchanges
- Rapporteur for Information Exchange on Frameworks for Cybersecurity and CIIP
- Rapporteur for Technical Standards for Cybersecurity.
|
17:00−17:15 |
Daily Wrap-Up and Announcements |
|
Meeting moderator to provide wrap-up of discussions and announcements |
19:00-21:00 |
Workshop Cocktail Reception sponsored by CISCO |
WEDNESDAY 17 OCTOBER 2007 |
09:00−10:15 |
Session 4: Watch, Warning and Incident Response |
|
Session Description: A key activity for addressing cybersecurity at the national level requires preparing for, detecting, managing, and responding to cyber incidents through establishment of watch, warning and incident response capabilities. Effective incident management requires consideration of funding, human resources, training, technological capability, government and private sector relationships, and legal requirements. Collaboration at all levels of government and with the private sector, academia, regional and international organizations, is necessary to raise awareness of potential attacks and steps toward remediation. This session discusses best practices and related standards in the technical, managerial and financial aspects of establishing national or regional watch, warning, and incident response capabilities.
Session Moderator: Romulo Dantas, Inter-American Committee against Terrorism (CICTE) of the Organization of American States
Speaker: Ricardo Woolery, Conatel, Honduras,
“Honduras - An Overview”
Speaker: Jason Rafail, CERT/CC SEI, United States of America, “An Overview of the CERT/CC and CSIRT Community”
Speaker: Gastón Franco, ArCERT, Argentina, “ArCERT” |
10:15−10:45 |
Coffee/Tea Break |
10:45−12:00 |
Session 5: Watch, Warning and Incident Response (Continued) |
|
Session Moderator: Marcelo HP Caetano
Chaves, CERT-BR, Brazil
Speaker: Marcelo HP Caetano Chaves, CERT-BR, Brazil, “Using Honeypots to Monitor Spam and Attack Trends”
Speaker: Fred Clark, Superintendencia de Telecomunicaciones, Guatemala, “CSIRT-gt: El Equipo de Respuesta a Incidentes de Seguridad Informática de Guatemala”
Speaker: Suresh Ramasubramanian, Outblaze, India, “ITU Botnet Mitigation Toolkit” |
12:00−13:45 |
Lunch |
13:45−15:00 |
Session 6: Promoting a Culture of Cybersecurity and the Role of CSIRTS |
|
Session Description: United Nations General Assembly Resolution 57/239, adopted in 2002, called for the "Creation of a global culture of cybersecurity" and "to develop throughout their societies a culture of cybersecurity in the application and use of information technology". Effective national action requires the involvement of all participants and governments can take a leadership role in promoting a culture of cybersecurity and supporting the efforts of others. This session explores the concept of promoting a national culture of cybersecurity, offers specific examples such as the roles and activities of CSIRTs, and elaborates on possible best practices.
Session Moderator: Christine Sund, ICT
Applications and Cybersecurity Division, ITU
Telecommunication Development Bureau (ITU-D)
Speaker: Christine Sund, ICT Applications
and Cybersecurity Division, ITU Telecommunication
Development Bureau (ITU-D) “Promoting a Culture of Security”
Panelist: Bradford Willke, CERT/CC SEI,
United States of America, “CSIRT Contributions to National
Efforts in Critical Information Infrastructure Protection”
Panelist: Patricia Prandini, ArCERT, Argentina,
“Rol de los CSIRTs” |
15:00−15:30 |
Coffee/Tea Break |
15:30−17:00 |
Round Table Information Exchanges on Watch, Warning and Incident Response; and The Role of CSIRTS in Promoting a Culture of Cybersecurity |
|
- Moderator for Information Exchanges
- Rapporteur for Watch, Warning and Incident Response
- Rapporteur for Promoting a Culture of Cybersecurity and the Role of CSIRTS
|
17:00−17:15 |
Daily Wrap-Up and Announcements |
|
Meeting moderator to provide wrap-up of discussions and announcements |
THURSDAY 18 OCTOBER 2007 |
09:00−11:00 |
Session 7: Legal Foundation, Regulatory Development and Enforcement |
|
Session Description: Appropriate legislation, international legal coordination and enforcement are all important elements in preventing, detecting and responding to cybercrime and the misuse of ICTs. This requires updating of criminal law, procedures and policy to address cybersecurity incidents and respond to cybercrime. As a result, many countries have made amendments in their penal codes, or are in the process of adopting amendments, in accordance with international conventions and recommendations. This session reviews some various national legal approaches and potential areas for international legal coordination and enforcement efforts.
Session Moderator: Marco Gercke, Germany
Speaker: Albert Rees, Department of Justice, United States of America,
“Legal Foundation”
Speaker: Gilberto Martins de Almeida, Catholic University of Rio de Janeiro, Brazil, “Brazilian Legal Approach to Cybercrimes”
Speaker: Fernando Maresca, National Office of Information Technology (ONTI), Argentina,
“Aspectos Legales del Cibercrimen”
|
11:00−11:30 |
Coffee/Tea Break |
11:30−12:30 |
Session 8: Legal Foundation, Regulatory Development and Enforcement (Continued) |
|
Session Moderator: Robert Shaw, ICT Applications and Cybersecurity Division, ITU Development Sector (ITU-D)
Speaker: Jody Westby, Global Cyber Risk LLC, United States of America, “International Issues In Responding to Cybercrime: A Call for Harmonization”
Speaker: Marco Gercke, Germany, “The
Challenge of Fighting Cybercrime in Developing Countries and the Role of National, Regional, and International Cybercrime
Legislation” |
12:30−14:00 |
Lunch |
14:00−15:30 |
Session 9: Regional and International Cooperation |
|
Session Description: Regional and international cooperation is extremely important in fostering a culture of security, along with the role of regional fora to facilitate interactions and exchanges. This session will review some of the ongoing regional and international cooperation initiatives in order to encourage meeting participants to participate in further concrete actions that could be implemented in the Americas region and internationally.
Session Moderator: Robert Shaw, ICT Applications and Cybersecurity Division, ITU Development Sector (ITU-D)
Speaker: Albert Rees, Department of
Justice, United States of America, “International
Cooperation”
Speaker: Romulo Dantas, Inter-American
Committee against Terrorism (CICTE), OAS, “Programa de la OEA de Protección de Infraestructuras Críticas”
Speaker: Wayne Zeuch, Alcatel-Lucent,
Inter-American Telecommunication Commission (CITEL), OAS,
“CITEL's Focus on Cybersecurity and Critical Infrastructure
Protection” |
15:30−16:00 |
Coffee/Tea Break |
16:00−17:00 |
Session 10: Wrap-Up, Recommendations and the Way Forward |
|
Session Description: The final session of the meeting reports some of the main findings from the event, and aims to elaborate recommendations for future activities in order to enhance cybersecurity and increase protection of critical information infrastructures in the region.
Session Moderator: Robert Shaw, ICT Applications and Cybersecurity Division, ITU Telecommunication Development Sector (ITU-D)
Panelist Framework for Cybersecurity and CIIP: Daniel Hurley, Department of Commerce, National Telecommunications and Information Administration (NTIA), United States of America
Panelist Technical Standards for Cybersecurity: Mike Harrop, ITU-T Study Group 17 Rapporteur
on the Security Project
Panelist Watch, Warning and Incident Response: Patricia Prandini, ArCERT, Argentina
Panelist Legal Foundation, Regulatory Development and Enforcement: Jody Westby, Global Cyber Risk LLC, United
States of America
Panelist Regional and International Cooperation: Romulo Dantas, Inter-American Committee against Terrorism (CICTE)
of the Organization of American States
|
17:00−17:15 |
Meeting Closing |
|
Closing remarks: Gonzalo Heredia, Coordinator for National Information Society Programs, Secretaría de Comunicaciones,
Argentina
Closing remarks: Paolo Rosa, Head,
Workshops and Promotion Division, ITU Telecommunication
Standardization Bureau (ITU-T) |
|
|