Page 82 - SAMENA Trends - May-June 2023

P. 82

ARTICLE SAMENA TRENDS

Therefore, a framework is essential for more than 200 cyber security legislations another device. However, because internet
accommodating the dynamic nature of were proposed, passed, or took effect of things (IoT) connections vary in size and
cybersecurity – newly emerging threats, globally. These legislations were primarily power consumption, as well as in the type
policy evolution, technology developments focused in Europe regions and the Asia- and quantity of data they can send and
plus changing economic and social factors. Pacific region. Most developing countries receive. With the diverse range of devices
A framework must factor in policies, have incorporated CI protection legislation and requirements required by IoT, a single
practices and procedures and support all into general cybersecurity legislation. SIM from a single telecommunications
organizations with protecting their assets However, a challenge remains in that operator is unable to cope. 5G eliminates
Multi-Stakeholder Part- legislation should be reasonably designed the need for a SIM card by assigning unique
in alignment with the ability to implement.
identities to each individual device, so the
nerships (MSP) bring This includes making legislation affordable responsibility for authentication is shifted
together different soci- so that a country can enforce, comply with from the operator to individual service
etal players (public sector, and maintain the legislation. providers.
private sector, civil society, What kind of framework is needed to build R-Responsibilities: 5G cybersecurity
academia) working trust? is a shared responsibility that involves
stakeholders
MNOs,
including
In the development of legislation or
key
together as equals, sharing framework the resources of a country interconnection providers, vendors,
risks, and combining must be considered including financial, application developers, service
human, technical, infrastructural, and or
providers and governments, each with
unique resources and institutional resources as well as political, a clearly defined set of responsibilities
competencies to address and social circumstances in order to ensure which (when fully met) can enable the
challenges or exploit that there isn’t a ‘policy implementation gap’ deployment and operation of 5G systems
in a secure manner. This means that
meaning that there is a difference between
opportunities in ways the expected outcome during the policy only with appropriate different roles’ can
that one cannot achieve design stage and the actual result after responsibilities be taken in a way that the
ecosystem can enter a ‘virtuous circle’ and
implementation. This tends to be a caused
alone to facilitate the by two factors including an unrealistic develop rapidly as seen in the development
development of sustain- assessment of the implementation ability of the GMSA’s 5G cybersecurity knowledge
able frameworks. Based of a country, and fundamentally, a lack of base ‘shared responsibility model’ (GSMA -
5G Cybersecurity Knowledge Base).
multi-stakeholder collaboration.
on fruitful outcomes from
WSIS Panel in SAMENA Multi-Stakeholder Partnerships (MSP) U-Unified Multi-stakeholders’ Collabora-
tion: Collaboration between all stakehold-
bring together different societal players
Leaders’ Summit and (public sector, private sector, civil society, ers is essential. Users, regulators, industry
best industrial knowledge academia) working together as equals, experts, governments need to leverage the
collective knowledge of industry. Without
sharing risks, and combining unique
above, we developed the resources and competencies to address this shared knowledge of the stakeholders
TRUST framework, to help challenges or exploit opportunities in such as the ITU, local governments, aca-

build the cybersecurity ways that one cannot achieve alone to demics, ETSI, ENISA other ICT corporations
and players. innovation will be stifled within
facilitate the development of sustainable
ecosystem holistically frameworks. Based on fruitful outcomes the industry and risks will not be highlight-
from WSIS Panel in SAMENA Leaders’ ed at an early stage. As Mr. Adel Mohamed
via a process that includes identifying, Summit and best industrial knowledge Darwish, Director, Regional Offices of the
assessing and managing potential above, we developed the TRUST framework, International Telecommunications Union
disruptions. to help build the cybersecurity ecosystem (ITU) for Arab States said “We are now
Creating trust is actually a process and holistically: faced with a global space, not only a local
must be done in a structured manner market. The input of private sectors and
which brings together all representative T-Technical Base: Cybersecurity is industry organizations is helpful, cyber-
stakeholder voices who are committed to rooted in technology. Cybersecurity security and digital transformation needs
unified standards and also willing to take risk can be appropriately governed by multi-stakeholder cooperation.”
part of the responsibility for establishing a technical measures and mitigated by
cybersecurity ecosystem. technical innovation. For example, with S-Standardized Baseline and International
4G authentication, telecommunications Common Standard to follow: As the
For example, regarding critical operators authenticate users using a global market grows, a standardized
infrastructure (CI), between 2020 to 2022, SIM card placed inside a smartphone or baseline for both ICT development and

82 MAY-JUNE 2023

77 78 79 80 81 82 83 84 85 86 87