Country : Republic of Estonia Topic : Cyber Security – A threat in The New Dimension Committee : The Disarmament and International Security
Information technology enables life to be translated into digits, sent and recorded by a massive number of interconnected machines by creating a saved house inside a cyberspace. Ironically, the existence of individual hacker or party like anonymous, threatening the cyberspace by stealing civilian, company, and government data irresponsibly. Cybercrime activity has cost a lot of damage toward our global economy, a report (sponsored by McAfee) McAfee) estimates that the annual damage to the global economy is at $445 billion The enormous number of cyber crime that happened globally has led United Nations (UN) International Telecommunications Union (ITU) to adopt Global Cybersecurity Index (GCI) in order to counter cyber crime that keeps augmenting. “A comparison of national cyber security strategies will reveal those countries with high rankings in specific area, and consequently highlight lesser know – yet successful – cyber security strategies,”. strategies,”. While DISEC has adopted a strong resolution such as "Developments in the field of information and telecommunications in the context of international security”. Creation of a global culture of cybersecurity and taking stock of national efforts to protect critical information infrastructure. Estonia was one of the first countries in the world to adopt a national cyber security strategy in 2008. The overall goal of the strategy is to ‘increase cybersecurity capabilities and raise the population’s awareness awareness of cyber threats, thereby ensuring continued confidence in cyberspace.’ cyberspace.’ Moreover, The Estonian Information Systems Authority ( Authority ( Riigi Infosüsteemi Amet , RIA) was established in 2011 as Estonia’s central cyber security competence and coordination centre within the governance area of the Estonian Ministry of Economic Affairs and Communications. One of RIA’s principal areas of responsibility lies within exercising supervision, which has been proven successful to suppress cybercrime exercise up to 83%. Estonia recognizes the importance of being an active cyber security advocate in the international arena. It has been one of the leading countries in promoting initiatives related to cyber security in NATO, the EU, the United Nations, the Council of Europe, OSCE, ITU, and other international organizations. Security is the key word of preventive actions that is addressed to protect civilian, company and government. Note that in the case of cybercrime is not a single nation’s nation’s problem, because hacker can simply commit the crime from other state or even continent to make sure they are out from the targeted state’s radar. Estonia believes, that even though each state can develop their own cybersecurity agency, a more comprehensive and much more accountable protection will happen by applying these solutions:
1. Developing exchange mechanisms of cyber threat and attack information so that the states can protect itself. As part of combating cybercrime that has various of behavior (spam, mallious software, hacking, etc), Estonia believes its importance for states to develop their trust mechanisms in a diplomatic form to exchange information that later can be used for each country to enhance their own cybersecurity system. 2. Organizing an integrated cyber exercise, utilizing experience from the military exercises already undertaken, to test our preparedness. The most important things if we are under the threat of unknown sources are our preparedness. It is possible for each state cybersecurity agency to exercise collectively to test our capability. Take a look of “Locked Shield” for instance the biggest and most advanced international live-fire cyber defense exercise in the world. The annual scenario-based real-time network defense exercise, focuses on training the security experts who protect national IT systems on a daily basis. With total 26 nations that involved. Estonia believes this kind of event should not be a privilege for some countries only, but should be utilize globally to prepared every single nation to combat cybercrime. 3. Establishing prevention, apprehension , prosecution mechanism. -
Prevention is the measures to reduce the possibility of cybercrime intention, Estonia highly suggest to use ISO27001:2013 which is international security standard, not only on state level but also in ATM or Mega-company, to prevent financial hacking by the hacker.
- Apprehension is the measures to arrest the cybercrime perpetrators, Estonia encourage communication and cooperation between states to track the hacker, because this people usually operate in the country far away from their target -
Prosecution is the measures to prosecute cybercrime perpetrators, Estonia suggest for country to strengthen their cybercrime law. By strengthening each country criminal justice system, it will bring deterrence towards the cybercrime perpetrators and deliver justice to cybercrime victim. That is why Estonia stand proud to propose this solution.
References -
Cyber Defences Exercise/Locked Shield 2016. https://ccdcoe.org/locked-shields-2016.html
(2016).
(online)
availible
at
:
-
Osula. A. M. National Cyber Security Organization : Estonia. (2015). (Journal) United Nations Launches Global Cybersecurity Index. (2017). (online) availible at : http://www.itu.int/en/ITU-D/Cybersecurity/Pages/United-Nations-Launches-GlobalCybersecurity-Index.aspx