Topic: Network security

DCAF – Geneva Centre for Security Sector Governance

Acronym: DCAF

Established: 2000

Address: Maison de la Paix, Chemin Eugène-Rigot 2D, 1211 Geneva, Switzerland

Website: https://www.dcaf.ch/

DCAF is dedicated to improving the security of states and their people within a framework of democratic governance, the rule of law, respect for human rights, and gender equality. Since its founding in 2000, DCAF has contributed to making peace and development more sustainable by assisting partner states, and international actors supporting these states, to improve the governance of their security sector through inclusive and participatory reforms. It creates innovative knowledge products, promotes norms and good practices, provides legal and policy advice and supports capacity‐building of both state and non‐state security sector stakeholders.

Digital activities

Cyberspace and cybersecurity have numerous implications for security provision, management, and oversight, which is why DCAF is engaged in these topics within its work. DCAF has implemented a cycle of policy projects to develop new norms and good practices in cyberspace. At the operational level, cybersecurity governance has become a prominent part of SSR programming.

Digital policy issues

Cybersecurity

Digitalisation and cybersecurity are the challenges of today and tomorrow. They have an overarching impact on the security sector and the role of the security sector and governance reform (SSG/R) in the digital space. In our recent study SSG/R in the digital space: projections into the future policy, we shed light on the complex intersection of digitalisation and security sector governance. It examines how security sector actors have adapted to the digital transition and the emergence of new actors within the security ecosystem. It also provides concrete recommendations on how to navigate the complexities of digital technologies and shape ethical technology use and robust digital governance frameworks.

Capacity development

For newcomers to the field, DCAF offers the introductory series SSR Backgrounders, with a special issue on the impact of digitalisation on good governance in the security sector. It is a first-stop resource to understand the challenges and considerations for best policy and practice. 

DCAF implements projects that focus on improving cybersecurity laws and policies, increasing the capacity of cybersecurity actors, and strengthening accountability in cybersecurity. One of our priorities is to strengthen the individual and institutional capacities of national Computer Emergency Response Teams (CERTs). These teams are responsible for effectively and efficiently preventing and responding to attacks on national systems.

We also run the annual Young Faces research and mentoring programme, which helps to develop the next generation of cybersecurity experts in the Western Balkans. Each year, we select around 30 dynamic, forward-thinking young professionals to join the programme that enhances their knowledge of emerging trends in cybersecurity governance.

Research shows that women, girls, and LGBTQ+ people are the most affected by cybersecurity risks. Our publication and podcast series analyses how they have been pushed out of cyberspaces by abuse and discrimination, and what solutions exist to take a human-centred approach that considers everyone’s needs in cybersecurity.

In our Donors’ Talk podcast series, we spoke with DCAF’s Justice Advisor to draw on her 15 years of experience in justice sector reform to look at success stories, challenges, and what needs to be considered when supporting digitalisation projects related to justice reform. In Morocco, DCAF supported the National AntiCorruption Commission with training on the prevention and investigation of cyber-corruption and financial cybercrimes. The government commission digitalised its internal processes, resulting in more effective tracking and response to citizens’ data protection requests

Digital tools

Legislation databases 

DCAF’s three legal databases gather policies, laws, and decrees governing the security sectors in the Occupied Palestinian Territory, Libya, and Tunisia. Each database covers the main providers of security and justice, the formal supervision and management institutions, and the legislative and regulatory texts covering and authorising the work of informal control actors (political parties, media, NGOs, etc.). 

A resource for legislators, the justice system, academia, and civil society, the databases offer both a current resource and a historical perspective on the evolution of security sector legislation in the respective countries.

Handbook on effective use of social media in cybersecurity awareness-raising campaigns

This handbook provides condensed and easy-to-follow guidance and examples for designing content strategies and the efficient use of social media towards effective public awareness raising on cybersecurity. It shares the do’s and don’ts of social media, and how to have a strategic social media presence to support better cybersecurity.

For more tools and resources on cybersecurity governance and the security sector, visit our website

Social media channels

Facebook @DCAFgeneva

LinkedIn @DCAF

Spotify @dcaf

X @DCAF_Geneva

YouTube @DCAF Geneva Centre for Security Sector Governance

ICT 4 Peace Foundation

International Organization for Standardization

Acronym: ISO

Established: 1947

Address: Chemin de Blandonnet 8, 1214 Vernier, Geneva, Switzerland

Website: https://www.iso.org/iso/home.html

Stakeholder group: International and regional organisations

ISO is the International Organization for Standardization, the world’s largest developer of international standards. It consists of a global network of 170 national standards bodies – our members. Each member represents ISO in its country. The organisation brings together global experts to share knowledge and develop voluntary, consensus-based, market-relevant International Standards. It is best known for its catalogue of almost 25,000
standards spanning a wide range of sectors, including technology, food, and healthcare.

Digital activities

A large number of the international standards and related documents developed by ISO are related to information and communication technologies (ICTs), such as the Open Systems Interconnection (OSI) that was created in 1983 to establish a universal reference model for communication protocols. The organisation is also active in the field of emerging technologies including blockchain, the Internet of Things (IoT), and AI. The standards are developed by various technical committees dedicated to specific areas including information security, cybersecurity, privacy protection, AI, and intelligent transport systems.

Digital policy issues

Artificial intelligence

The joint technical committee of ISO and the International Electrotechnical Commission (IEC) for AI is known as ISO/IEC JTC1/SC 42 Artificial intelligence and is responsible for the development of standards in this area. To date, it has published 20 standards specifically pertaining to AI with 35 others in development. ISO/IEC 42001 is the flagship AI Management System Standard, which provides requirements for establishing, implementing, maintaining, and continually improving an AI management system within the context of an organisation. ISO/IEC TR 24028 provides an overview of trustworthiness in AI systems, detailing the associated threats and risks and addresses approaches on availability, resiliency, reliability, accuracy, safety, security, and privacy. The standards under development include those that cover concepts and terminology for AI (ISO/IEC 22989); bias in AI systems and AI-aided decision-making (ISO/IEC TR 24027); AI risk management (ISO/IEC 23894); a framework for AI systems using machine learning (ISO/IEC 23053); and the assessment of machine learning classification performance (ISO/IEC TS 4213). Up-to-date information on the technical committee (e.g. scope, programme of work, contact details) can be found on the committee page.

Cloud computing

ISO and IEC also have a joint committee for standards related to cloud computing which currently has 27 published standards and a further 5 in development. Of those published, two standards of note include ISO/IEC 19086-1, which provides an overview, foundational concepts, and definitions for a cloud computing service level agreement framework, and ISO/IEC 22123-3, which specifies the cloud computing reference architecture.Standards under development include those on health informatics (ISO/TR 21332); the audit of cloud services (ISO/IEC 22123-2); and data flow, categories, and use (ISO/IEC 19944 series). Up-to-date information on the technical committee (e.g. scope, programme of work, contact details) can be found on the committee page.

Internet of things

Recognising the ongoing developments in the field of IoT, ISO has a number of dedicated standards both published and in development, including those for intelligent transport systems (ISO 19079), future networks for IoT (ISO/IEC TR 29181 series), unique identification for IoT (ISO/IEC 29161), Internet of Media Things (ISO/IEC 23093-3), the trustworthiness of IoT (ISO/IEC 30149), and industrial IoT systems (ISO/IEC 30162). IoT security is addressed in standards such as ISO/IEC 27001 and ISO/IEC 27002, which provide a common language for governance, risk, and compliance issues related to information security. In addition, there are 26 standards under development, some of which provide a methodology for the trustworthiness of an IoT system or service (ISO/IEC 30147); a trustworthiness framework (ISO/IEC 30149); the requirements of an IoT data exchange platform for various IoT services (ISO/IEC 30161); and a real-time IoT framework (ISO/IEC 30165). Up-to-date information on the ISO and IEC joint technical committee for IoT (e.g. scope, programme of work, contact details) can be found on the committee page

Telecommunication infrastructure

ISO’s standardisation work in the field of telecommunications infrastructure covers areas such as planning and installation of networks (e.g. ISO/IEC 14763-2), corporate telecommunication networks (e.g. ISO/IEC 17343), local and metropolitan area networks (e.g. ISO/IEC/IEEE 8802-A), private integrated telecommunications networks (e.g. ISO/IEC TR 14475), and wireless networks. Next-generation networks – packet-based public networks able to provide telecommunications services and use multiple quality-of-service-enabled transport technologies – are equally covered (e.g. ISO/IEC TR 26905). ISO also has standards for the so-called future networks, which are intended to provide futuristic capabilities and services beyond the limitations of current networks, including the internet. Up-to-date information on the joint ISO and IEC technical committee that develops these standards (e.g. scope, programme of work, contact details ) can be found on the committee page.

Blockchain

ISO has published 11 standards on blockchain and distributed ledger technologies: ISO/TR 23455 gives an overview of smart contracts in blockchain and distributed ledger technologies; ISO/TR 23244 tackles privacy and personally identifiable information protection; and ISO 22739 covers fundamental blockchain terminology respectively. ISO also has a further eight standards on blockchain in development. These include those related to:  security management of digital asset custodians (ISO/TR 23576); taxonomy and ontology (ISO/TS 23258); and guidelines for governance (ISO/TS 23635). Up-to-date information on the technical committee (e.g. scope, programme of work, contact details, etc.) can be found on the committee page.

Emerging technologies

ISO develops standards in the area of emerging technologies. 

Dozens of standards in the area of emerging technologies are those related to robotics. ISO has more than 40 different standards either published or in development that cover issues such as collaborative robots (e.g. ISO/TS 15066); safety requirements for industrial robots (e.g. ISO 10218 series); and personal care robots (e.g. ISO 13482). Autonomous or so-called intelligent transport systems (ITS) standards are developed by ISO’s ITS Technical Committee and include those for forward vehicle collision warning systems (ISO 15623) and secure connections between trusted devices (ISO/TS 21185). Standards are also being developed to address the use of virtual reality in learning, education, and training (e.g. ISO/IEC 23843).

Network security

ISO and IEC standards also address information security and network security . The ISO and IEC 27000 family of standards covers information security management systems and are used by organisations to secure information assets such as financial data, intellectual property, and employee information. For example,ISO/IEC 27031 and ISO/IEC 27035 are specifically designed to help organisations respond, diffuse, and recover effectively from cyberattacks. ISO/IEC 27701 is an extension of ISO/IEC 27001 and ISO/IEC 27002 for privacy information management, and details requirements and guidance for establishing, implementing, maintaining, and continually improving a Privacy Information Management System (PIMS).Network security is also addressed by standards on technologies such as the IoT, smart community infrastructures, medical devices, localisation and tracking systems, and future networks. Up-to-date information on the joint ISO and IEC technical committee (e.g. scope, programme of work, contact details) can be found on the committee page.

Encryption

As more and more information (including sensitive personal data) is stored, transmitted, and processed online, the security, integrity, and confidentiality of such information becomes increasingly important. To this end, ISO has a number of standards for the encryption of data. For example, ISO/IEC 18033-1, currently under development, addresses the nature of encryption and describes certain general aspects of its use and properties. Other standards include ISO/IEC 19772 which covers authenticated encryption, ISO/IEC 18033-3 which specifies encryption systems (ciphers) for the purpose of data confidentiality, and ISO 19092 which allows for encryption of biometric data used for authentication of individuals in financial services for confidentiality or other reasons. ISO also has standards that focus on identity-based ciphers, symmetric and asymmetric encryption, public key infrastructure, and many more related areas. 

Data governance

Big data is another area of ISO standardisation; around 80% of related standards are developed by the ISO/IEC AI committee. The terminology for big-data-related standards is outlined in ISO/IEC 20546, while ISO/IEC 20547-3 covers big data reference architecture. ISO/IEC TR 20547-2 provides examples of big data use cases with application domains and technical considerations and ISO/IEC TR 20547-5 details a roadmap of existing and future standards in this area. Up-to-date information on the technical committee (e.g. scope, programme of work, contact details) can be found on the committee page.

Digital identities

Digital signatures that validate digital identities help to ensure the integrity of data and authenticity of particulars in online transactions. This, therefore, contributes to the security of online applications and services. Standards to support this technology cover elements such as anonymous digital signatures (e.g. ISO/IEC 20008 series); digital signatures for healthcare documents (e.g. ISO 17090-4 and ISO 17090-5); and blind digital signatures, which is where the content of the message to be signed is disguised, used in contexts where, for example, anonymity is required. Examples of such standards are ISO 18370-1 and ISO/IEC 18370-2.

Privacy and data protection

Privacy and data protection in the context of ICTs is another area covered by ISO’s standardisation activities. One example is ISO/IEC 29101 which describes a privacy architecture framework. Others include those for privacy-enhancing protocols and services for identification cards (ISO/IEC 19286); privacy protection requirements pertaining to learning, education, and training systems employing information technologies (ISO/IEC 29187-1); privacy aspects in the context of intelligent transport systems (ISO/TR 12859); and security and privacy requirements for health informatics (ISO/TS 14441).

Digital tools

ISO has developed an online browsing platform that provides up-to-date information on ISO standards, graphical symbols, publications, and terms and definitions.

Future of meetings

Future ISO meetings can be found at ISO – meeting calendar

Social media channels

Facebook @isostandards

Instagram @isostandards

LinkedIn @isostandards

X @isostandards

YouTube @iso

University of Geneva

Acronym: UNIGE

Established: 1559

Address: Rue du Général-Dufour 24, 1211 Geneva, Switzerland

Website: https://www.unige.ch/international/index_en.html

Stakeholder group: Academia & think tanks

With more than 18,000 students of 150+ nationalities, UNIGE is the second-largest university in Switzerland. UNIGE offers 193 study programmes (102 Bachelor and Master programmes; 91 doctoral programmes) and 392 continuing education programmes. covering an extremely wide variety of fields: exact sciences, medicine, humanities, social sciences, law, etc.

Digital activities

UNIGE has incorporated digital technology into its strategy and appointed a vice-rector in charge of defining and piloting digital initiatives in the fields of education, research, and services to society. A Digital Transformation Office was also set up to identify and connect digital actors within the institution and federate digital activities and projects while encouraging the emergence of innovative projects.

The digital strategy in place considers digital technology both as a tool for teachers and researchers, and as a subject for teaching and research. It brings UNIGE to the fore in debates on digital technology at the local, national, and international level.

An Action Plan accompanies UNIGE’s digital strategy. It is regularly updated to report on progress and incorporate new digital initiatives or projects that have emerged within the university community. It is a guiding document indicating the activities and projects that the Rectorate particularly wishes to support.

Many more digital activities are carried out within the institution, while they are not included in the Action Plan. This is, for instance, the case of the activities carried out by the Division of Information and Communication Systems and Technologies (DiSTIC) along with many digital projects carried out by the academic community and central services. UNIGE is internationally recognized for its research in quantum cryptography, and is developing high-ranking research activities in the fields of digital humanities, autonomous vehicles, and digital law.

More information on the university’s digital strategy and action plan can be found at https://www.unige.ch/numerique/en.

Digital policy issues

Capacity development

In an attempt to develop digital literacy within its community, UNIGE has put in place a series of measures to meet the needs of its students, researchers, administrative staff, and other community members. To this end, the university offers a series of optional transversal courses open to all students and provides training and workshops on particular digital skills and tools for advanced students and researchers. It is also developing and deploying its Open Science roadmap, which includes training on research data management and Open Access publishing.

As part of its digital strategy, UNIGE created a Digital Law Center (DLC) at the Faculty of Law. The DLC provides courses focused on the internet and law. It also organizes its annual Digital Law Summer School, where participants can discuss digital law and policy issues, such as cybersecurity, privacy, freedom of expression, and intellectual property with leading experts from academia and international organizations. Every year since 2016, UNIGE has organized the Geneva Digital Law Research Colloquium (run by the DLC in cooperation with other leading academic centers, including the Berkman Klein Center for Internet and Society at Harvard University). This event is a scientific workshop that gives an opportunity to next-generation digital law and policy researchers to present and discuss various digital policy issues, such as freedom of expression online, copyright, and the internet of things (IoT) with senior high-level experts.

Together with ETH Zurich, UNIGE recently created a Lab for Science in Diplomacy (SiDLab). In this respect, it created two professorships in Computational Diplomacy, developed jointly by the Global Studies Institute (GSI) and the Department of Computer Science of the Faculty of Science. One is specialized in data science, particularly machine learning (ML), and the other focuses on data categorization in relation to complexity theories and global studies. With these two new positions, UNIGE aims to improve the understanding of global issues by developing a new theoretical framework for international relations, using new algorithms and mobilizing computing power to develop scenarios. Leveraging its multidisciplinary culture, UNIGE has recently created a transversal Data Science Competence Center (CCSD) aimed at federating competencies from all faculties and enabling cross-fertilization between various disciplines to develop advanced research and services. Since its creation, more than 600 researchers have joined the CCSD community and actively participate in its research and learning activities. To support the teaching community with digital transformation, UNIGE has created a portal for online and blended learning with a set of resources to help tutors prepare their courses and classes. Some of the resources are intended for self-training, while others provide users with training/coaching opportunities with UNIGE e-learning and blended learning experts.

When students are positioned as partners in university communities, they become active participants with valuable expertise to contribute to shaping the process of digital transformation. The Partnership Projects Program (P3) provides students, alongside academic and professional staff, with the opportunity to bring forward their ideas to improve the digital tools and services at the university. Students and staff are engaged on a project they designed, and they work together towards the shared goal of learning from their partners and improving the university with a solution meeting their needs. At the end of the project, the university may carry on with the implementation of the proposed solution, leading to a new digital service or tool for the community.

UNIGE maintains an IT Service Catalogue where students and staff members can access all digital tools the university provides, such as the UNIGE Mobile App, Moodle, UNIGE’s data storage system, and many others.

UNIGE also offers a number of MOOCs (massive open online courses) open to everyone. Subjects range from Human Rights to Chemical Biology, from Water Resources Management to Exoplanets, or from Investment Management to Global Health.

Future of meetings

UNIGE events are places where experts can meet and exchange ideas, where knowledge and information can be passed on to the university community and to society at large. They are living pillars of UNIGE’s research, teaching and public service missions. The organization of these events has been severely challenged by the COVID-19, but the use of digital tools has made it possible to keep these meeting and exchange places alive. It was also an opportunity to rethink the formats and ambitions of UNIGE events for the long term, as digital tools have the potential to facilitate access to knowledge, increase the influence of UNIGE events, and reduce the environmental impact of participants’ travels.

Many UNIGE events are now being organized in a virtual or hybrid format, such as the Dies Academicus and public and scientific conferences organized by the faculties. For instance, the series of public conferences, Parlons numérique organized each year by the Digital Transformation Office, has a hybrid format allowing remote participants to interact with the speakers. A dedicated website helps UNIGE community members willing to organize virtual or hybrid events.

Social media channels

Facebook @unigeneve

Instagram @unigeneve, @unigenumerique

LinkedIn @universite-de-geneve

Twitter @UNIGE_en, @unigenumerique

YouTube @Université de Genève

United Nations Institute for Disarmament Research

Acronym: UNIDIR

Established: 1980

Address: Palais des Nations, 1211 Geneva 10, Switzerland

Website: https://www.unidir.org/

Stakeholder group: International and regional organisations

Founded in 1980, UNIDIR is a voluntarily funded, autonomous institute within the United Nations. One of the few policy institutes worldwide focusing on disarmament, UNIDIR generates knowledge and promotes dialogue and action on disarmament and security. Based in Geneva, UNIDIR assists the international community to develop the practical, innovative ideas needed to find solutions to critical security problems.

Digital activities

The research areas of UNIDIR’s SecTec focus on cybersecurity, such as threats and vulnerabilities related to information and communications technologies (ICTs), and the use of new technologies such as artificial intelligence (AI) applications in warfare. SecTec has supported the UN processes on ICTs Group of Governmental Experts (GGE) and the Open-Ended Working Group (OEWG) and continues to support the OEWG on security of and in the use of ICTs (2021–2025). It focuses on research and awareness raising on this topic with a broad range of stakeholders and maps the cybersecurity policy landscape.

Digital policy issues

Cybersecurity

SecTec builds knowledge and raises awareness of the security implications of new and emerging technologies. Cyber stability is one area of focus for UNIDIR, the work of which supports the implementation of specific norms and recommendations previously agreed by member states. It also explores options to strengthen cyber stability and crisis management mechanisms. UNIDIR provides technical and expert advice to the chairpersons of the UN GGE and OEWG on norms, international law, confidence-building measures, capacity  building,  cooperation, and institutional dialogue. The annual Cyber Stability Conference brings various stakeholders together to promote a secure and stable cyberspace and in particular the role of the UN processes such as the OEWG on Security of and in the Use of Information and Communications Technologies (2021–2025).

Launched in 2019, the Cyber Policy Portal is an interactive map of the global cyber policy landscape. It provides profiles of the cyber policies of all 193 UN member states, in addition to various intergovernmental organizations and multi-stakeholder instruments and other initiatives. This confidence-building tool supports informed participation by relevant stakeholders in all policy processes and promotes trust, transparency, and cooperation in cyberspace. The updated version of the portal was launched in May 2022, providing several new features, such as full text search, and is available in all UN official languages.

Accessible from the portal, the National Survey of Implementation of United Nations Recommendations of Responsible Use of ICTs by States in the Context of International Security collates national take-up of the recommendations from the 2015 GGE report, with a view to assisting assessment of their further development and implementation. The survey allows UN member states to conduct regular self-assessments of national implementation of the recommendations.

It can also support UN member states in responding to an invitation from the UN General Assembly (UNGA) to continue to inform the Secretary-General of their views and assessments on the issue of developments in the field of ICTs in the context of international security.

It supports transparency, information sharing, and confidence building by giving UN member states the possibility of making the results of the survey publicly available on their national profiles on UNIDIR’s Cyber Policy Portal.

The Cyber Policy Portal Database provides direct access to documents and references through the profiles of all 193 UN member states on the Cyber Policy Portal. The database allows searching across several categories, including state, type of document, topic, issuing body, and more.

Publication

Events

Artificial intelligence

AI and the weaponization of increasingly autonomous technologies is one of UNIDIR’s current research areas. It aims to raise awareness and build capacities of various stakeholders, including member states, technical communities, academia, and the private sector. Research on AI covers a broad range of topics from human decision-making, autonomous vehicles, and swarm technologies.

UNIDIR SecTec recently launched the Artificial Intelligence Policy Portal. This tool gathers available information at the national, regional, and international levels on policies, processes, and structures that are relevant to the development and use of AI for military or security purposes. The Portal has been developed to support transparency, information sharing, and confidence building in the field of AI

Publications

Events

Emerging technologies

UNIDIR’s research equally focuses on security dimensions of innovations in science and technology. In synergy with the Secretary-General’s Agenda for Disarmament and recent UNGA resolutions on the role of science and technology in the context of international security, UNIDIR proactively identifies and examines emerging and over-the-horizon innovations. It analyses potential implications for international security and facilitates dialogue among relevant stakeholders to encourage cross-sector cooperation.

Publications

Events

Digital tools

  • Directed Energy Weapons: The ‘new’ Option for Militaries
  • 2021 Innovations Dialogue: Deepfakes, Trust and International Security
  • Drones  and Counter-Drone Technology: An Escalating Dynamic
  • New Technological Opportunities to Bolster Treaty Compliance

    • Internet Governance Forum

    Acronym: IGF

    Established: 2006

    Address: Palais des Nations, 1211 Geneva 10, Switzerland

    Website: https://www.intgovforum.org

    Stakeholder group: International and regional organisations

    The IGF provides the most comprehensive coverage of digital policy issues on the global level. The IGF Secretariat in Geneva coordinates both the planning of IGF annual meetings (working together with the Multistakeholder Advisory Group (MAG) and the wider IGF community) and a series of intersessional activities (run all year long). These activities could be summarised in three ‘multi’ initiatives:

    • Multistakeholder participation: It involves governments, business, civil society, the technical community, academia, and other actors who affect or are affected by digital policy This diversity is reflected in IGF processes, events, and consultations.
    • Multidisciplinary coverage: It relates to addressing policy issues from technological, legal, security, human rights, economic, development, and sociocultural perspectives. For example, data, as a governance issue, is addressed from standardisation, e-commerce, privacy, and security perspectives.
    • Multilevel approach: It spans IGF deliberations from the local level to the global level, through a network of over 165 national, subregional, and regional IGF (as of November 2023). They provide context for discussions on digital policy like the real-life impact of digitalisation on policy, economic, social, and cultural fabric of local communities. The IGF Secretariat supports such initiatives (which are independent) and coordinates the participation of the overall network.

    The IGF ecosystem converges around the annual IGF, which is attended by thousands of participants. The last few IGFs include Paris (2018), Berlin (2019), online edition due to the pandemic (2020), Katowice (2021), Addis Ababa (2022), and Kyoto (2023), which engaged over 11,000 participants, and more than 1,000 speakers in over 300 sessions.

    The intersessional work includes best practice forums (on issues such as cybersecurity, local content, data and new technologies, and gender and access); dynamic coalitions (on issues such as community connectivity, network neutrality, accessibility and disability, and child safety online etc.); policy networks (on AI, environment, meaningful access and Internet fragmentation); and other projects such as Policy Options for Connecting and Enabling the Next Billion(s) (which ran between 2015 and 2018) as well as a number of capacity development activities.

    IGF mandate

    The IGF mandate was outlined in the Tunis Agenda for the Information Society of the World Summit on the Information Society (WSIS, November 2005). It was renewed for another 10 years by the UN General Assembly (UNGA) on 16 December 2015, (70/125).

    The main functions of the IGF are specified in Article 72 of the Tunis Agenda. The mandate of the Forum is to:

    • Discuss public policy issues related to key elements of Internet governance in order to foster the sustainability, robustness, security, stability, and development of the internet.
    • Facilitate discourse between bodies dealing with different cross-cutting international public policies regarding the internet and discuss issues that do not fall within the scope of any existing body.
    • Interface with appropriate inter-governmental organisations and other institutions on matters under their purview.
    • Facilitate the exchange of information and best practices, and in this regard, make full use of the expertise of the academic, scientific, and technical communities.
    • Advise all stakeholders in proposing ways and means to accelerate the availability and affordability of the Internet in the developing world.
    • Strengthen and enhance the engagement of stakeholders in existing and/or future internet governance mechanisms, particularly those from developing countries.
    • Identify emerging issues, bring them to the attention of the relevant bodies and the general public, and where appropriate, make recommendations.
    • Contribute to capacity building for internet governance in developing countries, drawing on local sources of knowledge and expertise.
    • Promote and assess, on an ongoing basis, the embodiment of WSIS principles in internet governance processes.
    • Discuss, inter alia, issues relating to critical internet resources.
    • Help to find solutions to the issues arising from the use and misuse of the internet, of particular concern to everyday users.
    • Publish its proceedings.

    In fulfilling its mandate, the Forum is institutionally supported by the UN Secretariat for the Internet Governance Forum placed with the Department of Economic and Social Affairs (DESA). Its working modalities also include MAG and most recently the Leadership Panel, both appointed by the UN Secretary-General.

    Digital policy issues

    Until 2019, IGF annual meetings used to host sessions tackling a wide range of digital policy issues (for instance, IGF 2018 had eight themes: cybersecurity, trust, and privacy; development, innovation, and economic issues; digital inclusion and accessibility; human rights, gender, and youth; emerging technologies; evolution of internet governance; media and content; and technical and operational issues). In 2019, in an effort to bring more focus within the IGF, the MAG decided (considering community input) to structure the IGF programme around a limited number of tracks: security, safety, stability, and resilience; data governance; and digital inclusion. This approach was kept for IGF 2020, which saw four thematic tracks: data, environment, inclusion, and trust. The thematic approach did not mean that the IGF saw some digital policy issues as being less relevant than others, but rather that it encouraged discussions at the intersection of multiple issues. The Geneva Internet Platform (GIP) Digital Watch hybrid reporting (IGF 2023) illustrates this trend, showing that the IGF discussed a wide range of policy issues (across all seven internet governance baskets of issues) within the limited number of thematic tracks.

    The leadership panel

    In line with the IGF mandate and as recommended in the Secretary-General’s Roadmap for Digital Cooperation, the UN Secretary-General established the IGF Leadership Panel as a strategic, empowered, multistakeholder body, to address urgent, strategic issues, and highlight Forum discussions and possible follow-up actions to promote greater impact and dissemination of IGF discussions.

    More specifically, the Panel provides strategic inputs and advice on the IGF; promotes the IGF and its outputs; supports both high-level and at-large stakeholder engagement in the IGF and IGF fundraising efforts; exchanges IGF outputs with other stakeholders and relevant forums; and feeds input from these decision-makers and forums to the IGF’s agenda-setting process, leveraging relevant MAG expertise.

    The 15-member Panel with ex-officios meet at least three times a year in person, in addition to regular online meetings.

    Future of meetings

    Since its first meeting in Athens (2006), the IGF has been a pioneer in online deliberation and hybrid meetings. In addition to individual online participation, the IGF has encouraged the development of a network of remote hubs where participants meet locally while following online deliberations from the global IGF. In this way the IGF has created a unique interplay between local and global deliberations through the use of technology. For hybrid meetings delivered in situ and online, the IGF developed the function of remote moderator, who ensures that there is smooth interplay between online and in situ discussions.

    The 19th annual IGF meeting will be hosted by the Government of Saudi Arabia in Riyadh in December 2024. The 2025 host is yet to be announced.

    Social media channels

    Facebook @IGF – Internet Governance Forum

    Flickr @IGF

    Instagram @intgovforum

    LinkedIn @intgovforum

    X @intgovforum

    YouTube @Internet Governance Forum (IGF)

    Geneva Internet Platform

    Acronym: GIP

    Established: 2014

    Address: 7bis, Avenue de la Paix, CH-1202 Geneva

    Website: https://www.giplatform.org/

    Stakeholder group: NGOs and associations

    The Geneva Internet Plaform (GIP) is a Swiss initiative operated by DiploFoundation that strives to engage digital actors, foster digital governance, and monitor digital policies.

    It aims to provide a neutral and inclusive space for digital policy debates, strengthen the participation of small and developing countries in Geneva-based digital policy processes, support activities of Geneva-based Internet governance (IG) and ICT institutions and initiatives, facilitate research for an evidence-based, multidisciplinary digital policy, bridge various policy silos, and provide tools and methods for in situ and online engagement that could be used by other policy spaces in International Geneva and worldwide. The GIP’s activities are implemented based on three pillars: a physical platform in Geneva, an online platform and observatory, and a dialogue lab.

    DiploFoundation

    Acronym: Diplo

    Established: 2002

    Address: 7bis, Avenue de la Paix CH-1202 Geneva, Switzerland

    Website: https://www.diplomacy.edu

    Stakeholder group: Academia & think tanks

    DiploFoundation (Diplo) is a Swiss-Maltese non-governmental organisation that specialises in capacity development in the field of Internet governance and digital policy. Established in 2002, Diplo, among other things, works to improve the role of small and developing states in global diplomacy by:

    • training officials through online courses, workshops, and simulation exercises;
    • developing capacity on Internet governance, cybersecurity, data, artificial intelligence, and other emerging tech issues;
    • promoting and developing digital tools for inclusive and impactful governance and policy-making.

    Diplo’s main activities:

    Capacity Development

    Diplo’s capacity development support begins with individuals, but through the activities of these individuals, its impact reaches into the larger systems of which they and their organisations are a part. Diplo’s approach includes online training, policy research, policy immersion, and the development of communities of practice, combined in various ways as appropriate to each policy context. Diplo’s capacity development activities center around education, online training, courses, workshops, as well as online events, webinars, and research on topics such as AI, big data, science diplomacy, and cybersecurity.

    Events

    To address pressing issues in global governance, Diplo’s events bring together people from different perspectives, including diplomats, business professionals, academics, members and staff of international organisations, members of civil society, and members of the technical community. Diplo works to make its events more accessible through e-tools that support remote participation. These events often evolve into teaching activities, publications, or online interactions.

    Courses

    Diplo offers postgraduate-level academic courses and training workshops on a variety of diplomacy-related topics for diplomats, civil servants, staff of international organisations and NGOs, and students of international relations. Combining a highly developed learning methodology with a unique online learning platform, Diplo’s courses are flexible, personal, interactive, and community-building. Courses are delivered online, face-to-face, and in a blended format.

    Research

    Diplo’s efforts on capacity development also include research on a variety of digital topics such as AI, big data, science diplomacy, and cybersecurity. This research has been conducted in collaboration with a number of partners, including swissnex and the Ministry for Foreign Affairs of Finland.

    Artificial Intelligence

    In the area of AI, Diplo has established its AI Lab, a multifaceted initiative that includes research and analysis on AI policy, capacity development in the field of AI and related areas, reports from main events and discussions on AI, and analysis of the impact of AI on diplomacy.

    At IGF 2019 in Berlin, Diplo launched its humAInism project as a response to calls for regulation and oversight of AI technologies. The project aims to anchor AI in the core values of humanity by understanding how AI functions and what reasonable policy trade-offs need to be made. It looks under the AI bonnet to understand the technology and analyses the policy, legal, and ethics-related impacts of algorithms and other AI tools.

    Skip to content