Check-in and access this session from the IGF Schedule.

IGF 2023 WS #421 Quantum-IoT-Infrastructure: Security for Cyberspace

    Time
    Tuesday, 10th October, 2023 (23:30 UTC) - Wednesday, 11th October, 2023 (00:30 UTC)
    Room
    WS 1 – Annex Hall 1
    Subtheme

    Cybersecurity, Cybercrime & Online Safety
    New Technologies and Risks to Online Security

    Organizer 1: Nicolas Fiumarelli, 🔒Youth IGF Uruguay
    Organizer 2: Birarda Carina, 🔒
    Organizer 3: Mohammad Ali Jauhar, 🔒University Paris-Saclay

    Speaker 1: Olga Cavalli, Government, Latin American and Caribbean Group (GRULAC)
    Speaker 2: Carlos Martinez Cagnazzo, Technical Community, Latin American and Caribbean Group (GRULAC)
    Speaker 3: Maria Luque, Civil Society, Western European and Others Group (WEOG)
    Speaker 4: Wout de Natris, Private Sector, Western European and Others Group (WEOG)

    Moderator

    Birarda Carina, Technical Community, Latin American and Caribbean Group (GRULAC)

    Online Moderator

    Mohammad Ali Jauhar, Technical Community, Asia-Pacific Group

    Rapporteur

    Nicolas Fiumarelli, Civil Society, Latin American and Caribbean Group (GRULAC)

    Format

    Round Table - 60 Min

    Policy Question(s)

    What are the leading cybersecurity threats across IoT, critical internet infrastructure, web, and quantum technologies, and what are the existing best practices to counter these threats? How can diverse stakeholders, including the IGF community, the Best Practice Forum (BPF) on Cybersecurity, Dynamic Coalitions, and other relevant groups collaborate and contribute actively to the development and implementation of these best practices? In the context of the continually evolving cybersecurity landscape, what key considerations are essential to ensure a safer and more trustworthy Internet for all users across these areas?

    What will participants gain from attending this session? Attending this workshop will equip participants with a deep understanding of the critical cybersecurity threats in IoT, internet infrastructure, web security, and quantum technologies. They'll gain insights into the latest best practices for mitigating these threats, informed by experts in these fields. The workshop aims to foster a tutorial-like environment, allowing participants to familiarize themselves with the current cybersecurity landscape across different facets of the internet. The discussion aims to yield a set of guidelines reflecting the most up-to-date cybersecurity theories and practices. An important takeaway will be the insights distilled into a 'Cybersecurity Best Practice Guide,' offering practical guidance to stakeholders. This session promises valuable knowledge, fostering a collective responsibility towards a safer cyberspace.

    Description:

    This IGF workshop is designed to address the top cybersecurity threats and best practices from four different perspectives: Internet of Things (IoT) security, critical internet infrastructure including Routing/DNS, Web security, and emerging Quantum technologies. The session aims to bring together experts from the Dynamic Coalitions, Best Practice Forum (BPF) on Cybersecurity, and other relevant stakeholders, including academia, government and technical community, to share the latest trends in cybersecurity theory. The session is intended to be a round-table discussion, facilitating an understanding of the current state of cybersecurity across multiple facets of the Internet. The ultimate goal of the session is to compile a set of guidelines and best practices that reflect the current state of cybersecurity theory for Internet protocols, IoT, DNSSEC, RPKI, and quantum technologies. In this way, we aim to contribute to building a more trustworthy and safer Internet for all. The onsite Moderator for this session will be Carina Birarda, with Mohammad Ali as the Online Moderator and Nicolas Fiumarelli as the Rapporteur. Session Flow: Introduction and Opening Remarks by Carina Birarda - BPF Cybersecurity Chair (5 minutes) Presentation on IoT and Web Security from a consumer/procurement perspective. Wout de Natris - (IS3C co-coordinator) - 10 minutes. - Public Sector Presentation on Critical Internet Infrastructure Security (the case of DNSSEC and RPKI case) (Carlos Martinez Cagnazzo - CTO LACNIC - Technical Community) - 10 minutes. Presentation on Quantum Technology Security (Maria Luque - UPM) - Academia - 10 minutes Presentation on Cybersecurity from the perspective of the Government of Argentina - Olga Cavalli - 10 minutes Discussion and Q&A facilitated by Carina Birarda (15 minutes)

    Expected Outcomes

    The session aims to deepen participants' understanding of key cybersecurity threats, emphasizing IoT, critical internet infrastructure, web security, and quantum technologies. It promotes sharing best practices and compiles them into a useful guide, fostering stronger cooperation among diverse stakeholders. Our goal is to foster collective responsibility for building a secure, trustworthy Internet. Expected outputs include a comprehensive report capturing session insights and recommendations, and a 'Cybersecurity Best Practice Guide.' These resources will be widely accessible for all interested in bolstering Internet security.

    Hybrid Format: In this hybrid IGF session, we'll use the Official Online Participation Platform for seamless communication between onsite and online participants. Online Moderator, Mohammad Ali Jahuar, will facilitate the chat, relaying online contributions to the panel. We've designed the session to foster a cohesive, interactive experience for all attendees, involving presentations and open discussions. Both onsite and online moderators will ensure balanced participation. Additionally, we'll use Mentimeter for live audience input, conducting a word cloud exercise and a survey. This real-time feedback will stimulate audience-informed discussions, facilitating meaningful engagement among all participants.

    Key Takeaways (* deadline at the end of the session day)

    Strengthening IoT Security by Design: The Internet of Things must incorporate security by design to counteract inherent vulnerabilities. This approach should include adopting internationally recognized standards and best practices to ensure robust security across all IoT deployments.

    Adapting to Emerging Quantum Technologies: As quantum computing advances, it presents both potential threats and solutions for cybersecurity. National and global strategies should evolve to include quantum-resistant cryptographic methods to safeguard future digital communications and data integrity.

    Call to Action (* deadline at the end of the session day)

    For Governments and Large Industries: Initiate and enforce policies requiring that security by design is a fundamental criterion in the procurement of ICT services and products. This shift will drive broader adoption of secure practices throughout the technology ecosystem, contributing to a safer internet environment.

    For the Technical and Academic Community: Collaborate on research and development of quantum-resistant cryptographic techniques. This collective effort is crucial to prepare our digital infrastructure for the arrival of scalable quantum computing technologies.

    Session Report (* deadline 9 January) - click on the ? symbol for instructions

    Session Content
    Introduction and Opening Remarks:
    Carina Birarda opened the session by highlighting the escalation of cybersecurity incidents globally and the importance of international standards in countering these threats.

    Presentations:

    Wout de Natris focused on IoT security from a consumer and procurement perspective, emphasizing the necessity of security by design in IoT devices and the role of governments and industries in demanding secure ICT services.
    Carlos Martinez Cagnazzo discussed the security of critical internet infrastructure, detailing the deployment of DNSSEC and RPKI and the broader implications for routing and domain name resolution security.
    Maria Luque explored the implications of quantum technologies on cybersecurity, addressing the vulnerabilities of current cryptographic systems and the potential of quantum computing to disrupt security protocols.
    Olga Cavalli shared insights from the perspective of governmental cybersecurity strategies, focusing on capacity building and public policy in Argentina, and highlighted the unique challenges faced by developing countries.
    Discussions and Q&A:
    The discussion session facilitated by Carina Birarda allowed panelists to delve deeper into strategies for advancing cybersecurity across different sectors and the need for a unified approach to tackle emerging challenges. Topics of particular interest included the adoption of security by design, the implementation of international standards, and the potential impact of quantum technologies on global security.

    Key Outcomes:
    Consensus on Security by Design: There was unanimous agreement on the necessity of integrating security features at the design phase of IoT and other critical technologies.
    Call for Collaborative Action: The need for collaborative efforts among governments, industries, and the technical community was emphasized to enhance the adoption of best practices and standards.
    Focus on Quantum Preparedness: The discussions underscored the urgency of preparing for quantum technological advancements by developing quantum-resistant cryptographic methods.
    Conclusions:
    The session concluded with a strong call to action for all stakeholders to enhance cybersecurity measures, adopt robust security protocols, and prepare for the challenges posed by quantum computing. The insights shared will contribute to the formulation of comprehensive guidelines and best practices for securing cyberspace.