Session
Organizer 1: Civil Society, Eastern European Group
Organizer 2: Civil Society, Asia-Pacific Group
Organizer 3: Civil Society, Latin American and Caribbean Group (GRULAC)
Organizer 2: Civil Society, Asia-Pacific Group
Organizer 3: Civil Society, Latin American and Caribbean Group (GRULAC)
Speaker 1: Callum Voge, Civil Society, Eastern European Group
Speaker 2: Akriti Bopanna, Civil Society, Asia-Pacific Group
Speaker 3: Fabro Steibel, Civil Society, Latin American and Caribbean Group (GRULAC)
Speaker 4: Robyn Greene, Private Sector, Western European and Others Group (WEOG)
Speaker 2: Akriti Bopanna, Civil Society, Asia-Pacific Group
Speaker 3: Fabro Steibel, Civil Society, Latin American and Caribbean Group (GRULAC)
Speaker 4: Robyn Greene, Private Sector, Western European and Others Group (WEOG)
Format
Classroom
Duration (minutes): 90
Format description: We aim for the classroom format to increase engagement among participants, facilitating discussions with speakers and peer-to-peer interactions in break-out groups.
Duration (minutes): 90
Format description: We aim for the classroom format to increase engagement among participants, facilitating discussions with speakers and peer-to-peer interactions in break-out groups.
Policy Question(s)
What threats are we observing to encryption’s role in protecting human rights, digital economy, cybersecurity, and an open and secure internet?
How can stakeholders identify and respond to e2ee impacts in regulatory and other digital governance contexts?
What alternatives to undermining encryption might address the societal problems that motivate an encryption-compromising policy proposal?
What will participants gain from attending this session? Participants will understand the significance and ubiquity of e2ee, and start a conversation about the different ways regulations focusing on societal issues impact e2ee and thus, the security and privacy of individuals, businesses, and states. Participants will also learn to identify such risks, strategies to mitigate them, and alternatives to taking those risks by addressing problems without compromising encryption.
SDGs
Description:
Encrypted tools and services have become part of the daily lives of Internet users around the world, without them realizing their reliance on it. Secure infrastructure is often taken for granted with encryption serving as an essential support structure that bridges our digital and physical lives. Despite its importance and omnipresence, encryption remains an enigma to policy makers and internet users alike. As a result, digital governance proposals targeting law and order problems are, also, increasingly introducing material risks to users by weakening encryption and therefore putting user privacy at risk. Thereby eroding the trust in the ecosystem that underlies the global digital economy and modern life. This growing disconnect between the technical realities of encryption and the regulatory landscape has profound implications. Policymakers, often lacking a deep understanding of cryptographic principles, may unintentionally weaken security in their efforts to address broader digital concerns—whether combating misinformation, regulating online platforms, or enhancing law enforcement capabilities. The unintended consequences of such measures can range from undermining user privacy to creating systemic vulnerabilities that threaten not only individual rights but also national security and economic stability. Without careful consideration, well-intentioned regulations risk fracturing the very foundation of trust that enables the seamless and secure exchange of information in the digital age. This workshop will work towards improving trust and resilience online by exposing the participants to fundamental understandings of E2EE using case studies in breakout groups, which will focus on scenarios that explore how weakening of E2EE will impact their group. These breakout groups will be preceded by a discussion and followed by a plenary.
Encrypted tools and services have become part of the daily lives of Internet users around the world, without them realizing their reliance on it. Secure infrastructure is often taken for granted with encryption serving as an essential support structure that bridges our digital and physical lives. Despite its importance and omnipresence, encryption remains an enigma to policy makers and internet users alike. As a result, digital governance proposals targeting law and order problems are, also, increasingly introducing material risks to users by weakening encryption and therefore putting user privacy at risk. Thereby eroding the trust in the ecosystem that underlies the global digital economy and modern life. This growing disconnect between the technical realities of encryption and the regulatory landscape has profound implications. Policymakers, often lacking a deep understanding of cryptographic principles, may unintentionally weaken security in their efforts to address broader digital concerns—whether combating misinformation, regulating online platforms, or enhancing law enforcement capabilities. The unintended consequences of such measures can range from undermining user privacy to creating systemic vulnerabilities that threaten not only individual rights but also national security and economic stability. Without careful consideration, well-intentioned regulations risk fracturing the very foundation of trust that enables the seamless and secure exchange of information in the digital age. This workshop will work towards improving trust and resilience online by exposing the participants to fundamental understandings of E2EE using case studies in breakout groups, which will focus on scenarios that explore how weakening of E2EE will impact their group. These breakout groups will be preceded by a discussion and followed by a plenary.
Expected Outcomes
This session is part of a regional workshop series by the Global Encryption Coalition Steering Committee, with the next in Africa in late 2025, focusing on encryption threats in global majority countries. Earlier this year, the GEC held a Brussels workshop to inform EU civil society on encryption’s importance. The outcomes will shape the GEC’s international advocacy strategy, benefiting from IGF’s multistakeholder input. This IGF workshop will inform future sessions on:
Regulatory coherence – Recognizing encryption’s role in privacy, cybersecurity, and digital trust while preventing security risks.
Economic and security implications – Highlighting risks of weakening encryption for businesses, governments, and citizens.
Cross-border data protection – Promoting global encryption standards for secure data flows, human rights, and digital commerce.
User rights and trust – Combating misinformation and raising awareness of encryption’s role in privacy, security, and online freedoms.
Hybrid Format: The session is interactive and online speakers will be included in break-out rooms to discuss specific topics with attendees. The facilitation onsite will be key to guarantee the positive interaction. The GEC Steering Committee members are experienced in delivering workshops globally and this expertise is key to model the workshop sessions ensuring a dynamic learning environment where participants can actively contribute and collaborate. Recent workshops were delivered at RightsCon, with European civil society members in Brussels, and with European journalists to name a few. We plan to use tools such as Mentimeter and Miro to enhance participation and interaction during the session, facilitating real-time engagement, collaborative discussions, and interactive learning experiences.