GFCE Cybersecurity Knowledge Modules

KM3 - Cyber diplomacy and international cooperation
Module objectives
1. Risks for international peace and cyber-stability
3 Topics
1.1 Cyber-attacks and geopolitics
1.2 Cyber as part of hybrid warfare
1.3 Cyber-armament
2. Towards an international agreement
4 Topics
2.1. Framework for responsible state behaviour in cyberspace
2.2. Applicability of international law
2.3. Norms, confidence building measures, and capacity building
2.4 Broader context
3. International cooperation
4 Topics
3.1. The United Nations
3.2. Other multilateral forums
3.3. Regional efforts
3.4. Multistakeholder efforts
4. Cyber diplomacy
5. Main takeaways
6. Assignment
1 Quiz
KM3 Quiz
KM4 - Cyber Incident Management
Module objectives
1. Introduction
2. Types of Cyber Incident Response Teams
5 Topics
2.1. National Computer Security Incident Response Team
2.2. Product Security Incident Response Team
2.3. Sector CSIRTs
2.4. Security Operation Centre
2.5. Commercial CSIRT
3. What needs to be considered when establishing a National CSIRT?
2 Topics
3.1. CIRT framework
3.2. How to set up CSIRT and SOC
4. How to assess cyber incident readiness
3 Topics
4.1. Security Incident Management Maturity Model (SIM3)
4.2. Security Operation Centre Capability and Maturity Model (SOC-CMM)
4.3. CSIRT Maturity – Self-assessment Tool
5. Which services do the CSIRTs offer?
2 Topics
5.1. FIRST CSIRT services framework
5.2. ITU-T Recommendation X.1060 service categories
6. Who does the CSIRT serve?
7. Which Tools does a CSIRT need?
8. Policies, frameworks, and guidelines
9. Resourcing and funding a CSIRT
1 Topic
9.1. What does a CSIRT Budget look like?
10. CSIRT capabilities
3 Topics
10.1. Training and certification
10.2. Auditing
10.3. Cyber drills
13. Main takeaways
14. Assignment
1 Quiz
KM4 Quiz
2 of 5
Previous Topic
Next Topic

2. Towards an international agreement

GFCE Cybersecurity Knowledge Modules 2. Towards an international agreement

The fact that potential future cyberattacks, while possibly causing widespread destruction, could also initiate conventional warfare has fuelled initiatives to codify diplomatic response, as well as to disentangle the challenges of the application of international law to cyberspace and formulate a framework for responsible state behaviour.

Negotiations in this context fall into three main areas:

  •   Criteria for entering a war or invoking jus ad bellum (‘right to war’, i.e. the body of international law governing the right of states to resort to war), and in particular, how principles and specific articles of the UN Charter apply to cyberspace.
  •   International humanitarian law or jus in bello (‘law in war’, i.e. laws that govern the conduct of conflict), in particular, how to apply The Hague Conventions and the Geneva Conventions in cyberspace.
  •   Weapons and disarmament, and questions like how (and if) to introduce cyberweapons into the disarmament process.

Even though, for many countries, these issues are new at the foreign affairs agenda, they have been discussed within the UN context since 1998. A brief history of the UN cyber processes is illustrated in video 1, while more details are discussed later in the module.

Video: An Animated History of United Nations Cyber Processes (Source: UNIDIR)

Besides clarifying how international law applies to cyberspace, the UN deliberations have also discussed how to address peacetime incidents, for example, cyberattacks that fall under the threshold of armed attacks. In this regard, a set of voluntary norms, confidence-building measures (CBMs), and capacity-building principles have been developed by the UN and regional organisations.

Lesson Content
0% Complete 0/4 Steps
Previous Topic
Back to Course
Next Topic

New post

Your email address will not be published. Required fields are marked *

Post a comment
Skip to content