CTO Cybersecurity Forum 2013 Pierre Dandjinou Promoting Cybersecurity in Africa

  • 109 views
Uploaded on

Supporting the global efforts in strengthening the safety, security and resilience of Cyberspace, the Commonwealth Cybersecurity Forum 2013, organised by the Commonwealth Telecommunications …

Supporting the global efforts in strengthening the safety, security and resilience of Cyberspace, the Commonwealth Cybersecurity Forum 2013, organised by the Commonwealth Telecommunications Organisation. The ceremonial opening examined how Cyberspace could be governed and utilised in a manner to foster freedom and entrepreneurship, while protecting individuals, property and the state, leading to socio-economic development. Speakers of this session, Mr Mario Maniewicz, Chief, Department of Infrastructure, Enabling Environment and E-Applications, ITU; Mr David Pollington, Director, International Security Relations, Microsoft; Mr Alexander Seger, Secretary, Cybercrime Convention Committee, Council of Europe; Mr Nigel Hickson, Vice President, Europe, ICANN and Mr Pierre Dandjinou, Vice President, Africa, ICANN, added their perspectives on various approaches to Cybergovernance, with general agreement on the role Cyberspace could play to facilitate development equitably and fairly across the world.

Hosted by the Ministry of Posts and Telecommunications of Cameroon together with the Telecommunications Regulatory Board of Cameroon and backed by partners and industry supporters including ICANN, Council of Europe, Microsoft, MTN Cameroon, AFRINIC and Internet Watch Foundation, the Commonwealth Cybersecurity Forum 2013 seeks to broaden stakeholder dialogue to facilitate practical action in Cybergovernance and Cybersecurity, some of which will be reflected in the CTO’s own work programmes under its Cybersecurity agenda.

More in: Technology , Business
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Be the first to comment
No Downloads

Views

Total Views
109
On Slideshare
0
From Embeds
0
Number of Embeds
0

Actions

Shares
Downloads
0
Comments
0
Likes
1

Embeds 0

No embeds

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
    No notes for slide

Transcript

  • 1. Promoting Cyber security in Africa project@africacert.org
  • 2. Where are We today
  • 3. Af* Do you remember Af* at Cotonou Internet Governance meeting on December 1998 ? Premises from Af* (African Internet Organizations And Do you remember
  • 4. Key things to not forget AfNOG-1 meeting in Cape Town, South Africa from April, 30 to May 5, 2000. AfNOG-5 / AfriNIC-1 meetings in Dakar, Senegal from May 16th to May 21, 2004. Topic:"We all need CSIRTs in Africa" presented by David Crochemore - Member of the FIRST Steering Committee AfNOG-9 / AfriNIC-8 meetings in Rabat, Morocco from May 24 to June 6, 2008. Topic: "Why DNS-SEC?" presented by Olaf Kolkman Topic:"Introducing CSIRT" presented by Yurie Ito (JPCERT)
  • 5. Key things to not forget AfNOG-12 / AfriNIC-14 meetings in Dar Es Salaam, Tanzania from 30th May to 10 June 2011. Tutoriaux AfNOG-6 / AfriNIC-2 in Maputo, Mozambique from April 17 to April 22, 2005. Topic: A half day workshop done by Liliana Velásquez Solha (CAIS/RNP) with the TRANSITS materials - Training of Network Security Incident Teams Staff - operational and organizational modules as the basis.
  • 6. AfNOG-9 / AfriNIC-8 Meetings in Rabat, Morocco from May 24 to June 6, 2008 Topic 1: "Setting up CSIRTs in the Africa Region" by Yurie Ito JPCERT/Coordination Center. (Half Day) AfNOG-11 / AfriNIC-12: Meetings in Kigali, Rwanda from May 23 to June 4 2010 AfriNIC-13 meeting in Johannesburg, South Africa from Nov 20 to Nov 26 2010 Tutorial: Understanding and Identifying network attacks By Cecil Goldstein - Team Cymru
  • 7. AfNOG-12 / AfriNIC-14 meetings in Dar Es Salaam, Tanzania from May 29 to June 10, 2011 Two days training on Network Forensics & Malware Analysis By Cecil Goldstein Team Cymru We remember ?
  • 8. Getting More Connected
  • 9. Getting More Connected
  • 10. And We have - Strong Mobile Penetration - Little or No Awareness on Security issue at ll level - Very few CSIRTs (they´re not known or simply do not exist) - When they exists, few cooperation among them - Hactivism and Hacking activities - Few or no whois response from contacts (Some are obsoletes). - Inexistent regional communication infrastructure that allows coordinated response to security incidents - African Convention on Cyber security initiative but still Lack of specific laws for digital crimes in most of the countries. Different laws in different countries
  • 11. Known CERTS - Organization of The Islamic Cooperation - Computer Emergency Response Teams (OIC-CERT) - East African Team - Tunisia - Morroco - Egypt - Cote d’Ivoire - Rwanda - Uganda - Mauritius - Burkina Faso - Sudan - Cameroon (Status?) - Many under formation
  • 12. The Need for a Regional Plateoform Incidents are received from outside and not coordinated. A need for cooperation and Collaoration among to promote cybersecurity in Africa became critical. The African Internet community has formed over the years several entities to respond to specific needs. AfricaCERT is the response to the promotion of cybersecurity in Africa.
  • 13. AfricaCERT ‘ s Stakeholders
  • 14. Response Level - Respond to Incindent requests - Liaison to African Countires and the ROW - Capacity Building and Enable creation of CERT and Security Teams. - Collaboration with REN in Capacity building and in Education initiatives - Collaboration with Law Enforcement. LIMITED RESSOURCES vs BUSY AGENDA
  • 15. Achievements 1. Awareness raising at AfriNIC/AfNOG Meetings 2. Tutorials Twice a year. Botnets, secure operations, advanced forensics etc… 3. CERT trainings on CERT operations, Incident Response, Policy twice a year done with JPCERT, AAF, AfNOG 4. AfricaCERT Cybersecurity Day Twice a year 5. Workshop with Francophone Police / Partners 6. Intelligence Feed and Alerts
  • 16. Achievements 7. Liaison (A liaison now in FIRST) 8. MOU with OIC-CERT 9. Incident Coordination. 10. Start receiving Alerts from Other CERTS
  • 17. Future Work Area and Projects 1. To become Fully Operational 2. Focus is on capacity building and identifying partners to work with us 3. Working on the Membership model 4. Creation of a Registrar/CCTLD Working Group. 5. Appoint Liaison to other bodies 6. AfricaCERT Cybersecurity Event – 1 time a year
  • 18. Questions