Recommendations for PPP Against Cybercrime
This is a publication by the World Economic Forum from early 2016.
Defining cybercrime can be a challenge as it tends to have many interpretations. For the purposes of the work undertaken by the Forum, cybercrime is a set of illicit activities that generally have two dimensions: traditional crimes that exist irrespective of the cyber world and internet
but that have been, or can be, propagated and aggravated by the internet – e.g. credit card fraud, extortion, child pornography and other types of crime related to terrorism, such as preaching hatred and appeals for violence; and crimes directly related to the cyber world and internet and
which cannot be executed outside the cyber sphere – e.g. hacking. This also includes items such as system interference, misuse of devices etc. as outlined in Articles 1-9 of the Budapest Convention on Cybercrime. (http://www.europarl.europa.eu/meetdocs/2014_2019/documents/libe/
What is clear is that cybercrime is of increasing global importance as it has no boundaries and targets governments, companies and individuals. Given the recent high-profile attacks on multinationals, it has become apparent that efforts must be made to find ways of tackling it. For this to be achieved, trust is essential. It is the driving factor behind productive working relationships between the public and the private sector.
Certain tools already exist in the form of laws, conventions, private-sector industry initiatives and information-sharing platforms. However, this does not suffice as cybercrime cannot be combated by acting unilaterally. Instead, the public and private sectors must combine forces to find mutually convenient ways of dealing with this phenomenon. Through public-private partnership, the Cybercrime Project aims to evaluate existing laws and conventions, privatesector industry standards and, most importantly, encourage dialogue and cooperation on practical ways of dealing with cybercrime that are suitable to all. It is acknowledged, of course, that transparency and accountability are also essential in solving crime through public-private partnership.
These recommendations, however, are the first steps in achieving mutual agreement on the fundamental actions that need to be taken to make significant global progress.
The recommendations encompass the following points:
- Public and private sectors should share more information related to cyber threats, vulnerability and consequences.
- Public and private sectors should work to create new platforms, strengthen existing platforms, and coordinate these platforms to increase information-sharing and improve investigations and prosecutions.
- Public and private sectors should cooperate to encourage and advance wider adoption of the Budapest Convention on Cybercrime, or, of the principles it promotes.
- Public and private sectors should work to build trust and discuss contentious topics related to cybercrime, such as encryption, cloud servers, data access and protection of privacy, to find appropriate solutions.
- Public and private sectors can engage in other initiatives aimed at reducing cybercrime.
The goal is to have public and private sector leaders support these recommendations and their subsequent implementation. These recommendations will be the first step to achieving better – and global – implementation of rules and practices enabling businesses and states (through their respective law enforcement authorities) to reduce the damaging consequences of cybercrime. The next steps will be dedicated to the analysis and practical implementation of the Recommendations.