Global Cyberspace Cooperation Summit VIIAgenda
In partnership with the Center for Long-Term Cybersecurity
University of California, BerkeleyMarch 14-16, 2017University of California, Berkeley
2
3
March 14, 2017: Pre-Summit Workshops
University of California, Berkeley Clark Kerr Campus Conference Center ThefirstdayoftheGlobalCyberspaceCooperationSummitwillfocusonfivetopicareasidentifiedinconsultationwiththeEastWestInstitute’skeystakeholdersandpartners.Intheseinteractivesessions,participantsfromaroundtheworldwilldeveloprecommendedsolutionstospecifichighconsequenceproblemsincyberspacethatremainunsolved.OutcomesandprioritiesidentifiedduringthefirstdaywillfeedthebreakthroughgroupsessionsonMarch15.Thesuccessofthesummitwillbemeasuredbythepolicybreakthroughsmadeintheseinteractiveworkingsessionsoverallthreedaysandbytheeffectivenessofthefollow-onactivitiesoftheassociatedbreakthroughgroups.
ColorKey:
EncryptionPolicySmart,ResilientCitiesSecureProductsandServicesNormsofBehaviorInsuringSystemicRisk
DAYOVERVIEW:08:00-09:00Registration09:00-10:30SessionIUbiquitousEncryptionandLawfulGovernmentAccessResilientCitiesandtheInternetofThingsIncreasingtheGlobalAvailabilityandUseofSecureICTProductsandServices10:30-11:00NetworkingBreak11:00-12:30SessionIIUbiquitousEncryptionandLawfulGovernmentAccessResilientCitiesandtheInternetofThingsIncreasingtheGlobalAvailabilityandUseofSecureICTProductsandServicesInternationalStabilityandCyberCapacityBuilding12:30–13:30Lunch13:30-15:00SessionIIIUbiquitousEncryptionandLawfulGovernmentAccessResilientCitiesandtheInternetofThingsSystemicRiskandCyberInsurancePromotingNormsofResponsibleBehaviorinCyberspace15:00-15:30NetworkingBreak15:30-17:00SessionIVUbiquitousEncryptionandLawfulGovernmentAccessResilientCitiesandtheInternetofThingsSystemicRiskandCyberInsurance17:00-18:30CocktailReception
4
Breakthrough Groups
UbiquitousEncryptionandLawful
GovernmentAccessTheinternationaldebateonencryptionhasproducedafaultlinebetweenlawenforcementandindustry,thelattersupportedbyprivacyandcivillibertiesadvocates.Recognizingthatnonationalsolutionbyitselfwillbeadequate,thisgroupwillexploremiddlegroundproposalsthatreflecttheglobalavailabilityofencryption.ResilientCitiesandtheInternetofThingsTheintroductionofconnectedintelligenceintoindustrialsettingsanditsintegrationintosmartcities,createanunprecedentedsetofsecurityriskstoeverydaylife.Thisbreakthroughgroupwilldebatetwonovelideasasameanstoenhancecybersecurityinconnectedcities:thattheproliferationofsmart,interconnecteddevicesprovidesanopportunityratherthanathreattocybersecurity;andthatthewaysecurityismanagedwillnecessarilyshifttothenetworklevel,asthesheernumberofinterconnecteddevicesmakesitimpossibletomaintainthesecurityofendpoints.Thisgroupwillchartwaystoincreasethecyberresilienceofurbanenvironmentsonaglobalbasis,lookingatwaystoimprovereadiness,responsivenessandreinvention.IncreasingtheGlobalAvailabilityandUseofSecureICTProductsandServicesInSeptember2016,thisbreakthroughgrouppublishedPurchasingSecureICTProductsandServices:ABuyersGuide,whichoutlinesquestionsthatICTconsumerscanasksuppliersabouthowtheymanagesecurityrisks,includingsupplychainrisk,introducedbycommercialtechnology.TheseworkshopswillsolicitfeedbackontheGuideandexplorewaystoaddresstheneedforsecurityintheprocurementofICTproductsandservices.
PromotingNormsofResponsibleBehaviorinCyberspaceGlobalsecurityandprosperitydependonasecureandstablecyberspace.Amyriadoffactorsthreatenequilibriumincluding:cyberspace'scontinuedmilitarization,growingactivismbynon-stateactors,sectorbasedrisksthatrequirespecializedknowledge,andpersistentasymmetriesincapability.ThegovernmentoftheNetherlands,theEastWestInstitute,andTheHagueCentreforStrategicStudiesformallylaunchedtheGlobalCommissionontheStabilityofCyberspaceattheMunichSecurityConferenceinFebruary2017.TheCommissionbringstogetherstakeholdersfrominternationalsecurityandcyberspacecommunitiestodevelopproposalsfornormsandpoliciestoguideresponsiblestateandnon-statebehaviorincyberspace.TheseworkshopsprovideanopportunitytointeractwithCommissioners.
SystemicRiskandCyberInsurance
Littleworkexiststounderstandsystemiccyberrisktoenterprisesandhowitcanbemeasuredandmanaged.Insurersandreinsurersarestrugglingtomodelriskandpricepoliciesinthefaceoflarge-scalerisktogeneralbusinesscontinuityandthepotentialforcascadingfailures.Thisbreakthroughgroupwillexaminesystemicrisk,itsimpactongeneralbusinesscontinuity,andtheimplicationsfortheinsuranceindustry.Itwilldevelopanddisseminateapproachestomitigatingriskandimprovinglosspreventionacrossindustriesworldwide.
5
08:00-09:00 REGISTRATION09:00-10:30 BREAKTHROUGHGROUPS—SESSIONIClarkKerrRoom UbiquitousEncryptionandLawfulGovernmentAccess
WorkshopI:EmergingNationalPolicies:theUnitedStatesandIndiaThisworkshopfocusesonencryptionpolicyintheUnitedStatesandIndiawiththepurposetobetterunderstandhowtheygotthereandwheretheyarelikelytogomovingforward.Theworkshopwillidentifyparticularchallengesandscenariosrelevanttogovernmentaccesstoencrypteddataanddiscusspossiblesolutionstoovercomeimpedimentscurrentlyfacedbyagenciestaskedtoprotectnationalsecurityandpublicsafetywhilereducingnegativeeffectsonprivacyandsecurity.
Co-Chairs: KamleshBajaj,DistinguishedFellow,EastWestInstituteScottCharney,CorporateVicePresident,TrustworthyComputing,Microsoft
Discussants: GregBrower,AssistantDirector,OfficeofCongressionalAffairs,FederalBureauofInvestigation(FBI)MichaelO’Reirdan,SeniorFellow,EastWestInstitute
Rapporteur: JonahForceHill,InternetPolicySpecialist,U.S.DepartmentofCommerce
NewelPerryRoom ResilientCitiesandtheInternetofThings
WorkshopI:CyberResilienceandtheModernCityCitiesacrosstheglobearestrivingtoincreasetheirresiliencetoawiderangeofsocial,economicandphysicalchallenges.Ascitiesbuildandimplementresiliencestrategies,thereisagrowingrecognitionthatmanyoftheirsolutionsrelyoncyber.Asaresult,understandingandbuildingcitycapabilitiesforcyberresilienceisemergingasakeyareaoffocus.Thisworkshopbringstogetherthoughtleadersfromcities,technology,government,andcivilsocietytoexplorethechallenges,opportunities,andnascentframeworksforincorporatingcyberresilienceintocitystrategiesandoperations.
Co-Chairs: PaulNicholas,SeniorDirector,TrustworthyComputing,MicrosoftJimPinter,SeniorSecurityStrategist,TrustworthyComputing,Microsoft
Discussants: TimothyBurroughs,ChiefResilienceOfficer,CityofBerkeleyAaronClark-Ginsberg,CybersecurityPostdoctoralScholar,CenterforInternationalSecurityandCooperation,StanfordUniversitySamiNassar,VicePresident,CyberSecuritySolutions,NXPSemiconductors
Rapporteur: NadiyaKostyuk,Fellow,EastWestInstitute;Ph.D.Candidate,GeraldR.FordSchoolofPublicPolicy,UniversityofMichigan
6
WarringWilkinson IncreasingtheGlobalAvailabilityandUseofSecureICTProductsandServicesRoom WorkshopI:Cross-OrganizationCollaborationtoIncreasetheAvailabilityofSecureICT
Variousorganizationshavecomeupwithguidelines,principlesandstandardstoincreasethesecurityofinformationandcommunicationstechnology(ICT)andemphasizetheneedtoaddresssupplychainrisk.TheEWIICTBuyersGuidelaysoutprinciplesandmapstheconceptofsupplychainrisktoexistinginternationalstandardstoenableICTbuyerstomakesecurity-informedprocurementdecisions.ThisworkshopwillreviewthecoreideasoftheICTBuyersGuideandidentifynewopportunitiesforcross-organizationcollaborationtoharnesstheeffortsundertakenbyanincreasingnumberofnationalandinternationalorganizationstoaddresssupplychainriskinaprincipledmanner.ItaimsatidentifyingstrategiccollaborationtofurtherthedevelopmentofframeworksconcernedwithICTsecurityandsupplychainrisk.
Chair: AngelaMcKay,Director,CybersecurityPolicyandStrategy,MicrosoftDiscussants: TomAlrich,SeniorManager,CyberRisk,Deloitte
DonnaDodson,DeputyCyberSecurityAdvisor,NationalInstituteofStandardsandTechnology(NIST)ChrisFeeney,President,BITS,FinancialServicesRoundtableSteveLipner,ExecutiveDirector,SAFECodeDavidLounsbury,ChiefTechnicalOfficer,TheOpenGroupWouterVeenstra,SeniorAdviser,GlobalForumonCyberExpertise
Rapporteur: GibGodwin,SeniorFellow,EastWestInstitute;ManagingDirector,PricewaterhouseCoopers
10:30-11:00 NETWORKINGBREAK11:00-12:30 BREAKTHROUGHGROUPS—SESSIONIIClarkKerrRoom UbiquitousEncryptionandLawfulGovernmentAccess
WorkshopII:EmergingNationalPolicies:EuropeandaComparativeLookRecentpressreportsobservethatencryptionisafactorincriminalinvestigationsforallkindsofdataandapplications.Europeanlawenforcementagenciesidentifiedthelackofsufficienttechnicalcapacitytodecryptprotecteddataasaseriousbarriertoaccessingcriticalevidenceininvestigations.ThisworkshopwillprovideaEuropeanperspectiveandwilldiscusshowthelegitimateinterestofgovernmentaccesscanbebalancedwiththerightsofindividualstosecurityandprivacy,andtheneedfornetworksecuritybyICTservicesandcommercialusers.ItwillalsopresentthepreliminaryresultsofEWIresearchcomparingencryptionpoliciesinmajordemocraciesworldwide.
Chair: UdoHelmbrecht,ExecutiveDirector,EuropeanUnionAgencyforNetworkandInformationSecurity(ENISA)
Discussants: KevinAdams,FirstSecretary,HomeAffairs,
EmbassyoftheUnitedKingdomtotheUnitedStatesPhilippAmann,SeniorStrategicAnalyst,EuropeanCybercrimeCentre(EC3),EuropolLaurentBeslay,ProjectLeader,JointResearchCentre,EuropeanCommissionAndreasKuehn,SeniorProgramAssociate,EastWestInstituteMikaLauhde,VicePresident,GovernmentRelationsandBusinessDevelopment,SSHCommunicationsSecurityStefanSchiffner,ExpertinNetwork&InformationSecurity,EuropeanUnionAgencyforNetworkandInformationSecurity(ENISA)
7
Rapporteur: JonahForceHill,InternetPolicySpecialist,U.S.DepartmentofCommerce
NewelPerryRoom ResilientCitiesandtheInternetofThingsWorkshopII:SaferCities:CreatingtheCyber/PrivacyInterlockSecuritywithoutprivacyisnotsecure,andprivacywithoutsecurityisnotprivate.Whencitiesarchitectinadvancedsecuritythatprotectscitizenprivacybydesign,wecanbegintobuildsafecitiesthatwillprotectcitizens.Well-intentionedandhighlyfundedcitiesarealreadyfindingtheirinfrastructurehackedandcitizenprivacysacrificed.Thisworkshopwillleveragecriticalinfrastructureprotectiontomakecitiessafer,anddiscussrelevantresourcesandtoolstothatend.Thegoalistoidentifybestpracticesandpathsandtostartdevelopinganopensourceblueprintforsafercitiesthatoptimallyprotectcitizens’securityandprivacy.
Chair: BillSearcy,VicePresident,GlobalJustice,LawEnforcement,andBorderSecuritySolutions,Unisys
Discussants: CurtAubley,VicePresident,GlobalStrategicAlliances&Technology,Tanium
CynthiaJames,GeneralManager,KasperskyGovernmentSecuritySolutions(KGSS)SteveWimsatt,Director,StrategicAlliances,RuckusWireless
Rapporteur: NadiyaKostyuk,Fellow,EastWestInstitute;Ph.D.Candidate,GeraldR.FordSchoolofPublicPolicy,UniversityofMichigan
WarringWilkinson IncreasingtheGlobalAvailabilityandUseofSecureICTProductsandServicesRoom WorkshopII:InternationalTradeandCybersecurity
TheICTBuyersGuideisatacriticalstageasEWIispushingforwardthebroaderadoptionoftheguide.EWIfocusesontwoapproaches:(a)makeICTbuyersawareoftheguideandshowcasewaystoimplementitintotheirexistingprocesses;(b)enhancecybersecurityasanICTtradeissueintheappropriateinternationalfora.Inthatcontext,thiswillexplorehowinternationaltradeframeworks,initiatives,andagreementscanhelpdriveadoptionandincreasetheavailabilityofsecureICT
Chair: AndyPurdy,ChiefSecurityOfficer,HuaweiTechnologiesUSADiscussants: DelChristensen,Chief,GlobalBusinessDevelopment,BayAreaCouncil
RobertHolleyman,FormerDeputyU.S.TradeRepresentative,ExecutiveOfficeofthePresidentDavidSimpson,FormerChief,PublicSafetyandHomelandSecurityBureau,FederalCommunicationsCommission(FCC)
Rapporteur: GibGodwin,SeniorFellow,EastWestInstitute;ManagingDirector,PricewaterhouseCoopers
GardenRoom InternationalStabilityandCyberCapacityBuilding
CybercapacitybuildinghasbecomepartoftheUNGroupofGovernmentalExperts’discussions.Thesessionintroducescybercapacitybuildingasatopicforfurtherresearchanddiscussion.ItwillfocusonrecentinitiativesandtheGGE’sworkinthisareaandidentifythemainchallengesfacingtheinternationalcommunity.
Co-Chairs: KarstenGeier,Head,CyberPolicyCoordination,FederalForeignOfficeofGermany
ElaineKorzak,CybersecurityFellow,MiddleburyInstituteofInternationalStudies,Monterey
8
Discussants: SamirSaran,SeniorFellowandVicePresident,ObserverResearchFoundation;Commissioner,GlobalCommissionontheStabilityofCyberspaceWouterVeenstra,SeniorAdviser,GlobalForumonCyberExpertise
Rapporteur: JohnSavage,ProfessorialFellow,EastWestInstitute;
AnWangProfessorofComputerScience,BrownUniversity
12:30-13:30 LUNCH13:30-15:00 BREAKTHROUGHGROUPS—SESSIONIII
ClarkKerrRoom UbiquitousEncryptionandLawfulGovernmentAccess
WorkshopIII:AlternativeViewsandPathwaysinthe"GoingDark"DebateDuetothegrowthofdefault-enabledencryptionschemes,lawenforcementisincreasinglyconfrontedwithencrypteddataitlackstheabilitytoaccess,leavingcasesunsolvedwithlockedsmartphonesthatmightholdanswers.Yet,newsurveillancecapabilitiesandnewtechnologies,liketheemergingInternetofThings,maydrasticallyaddmoresourcesofunencrypteddata.Thisworkshopwillconsideralternativeviewsandpotentialpathwaysinthe"GoingDark"debateanddiscusswhetherallcommunicationsdatawillbeencryptedorotherwisebebeyondthereachoflawenforcementinthefuture,anddiscussdifferenttrajectoriestheencryptiondebatemaytakeus.
Chair: DavidO'Brien,SeniorResearcher,BerkmanKleinCenterforInternet&Society,HarvardUniversity
Discussants: GregBrower,AssistantDirector,OfficeofCongressionalAffairs,FederalBureauofInvestigation(FBI)JimDempsey,ExecutiveDirector,BerkeleyCenterforLaw&Technology,UniversityofCalifornia,Berkeley
Rapporteur: JonahForceHill,InternetPolicySpecialist,U.S.DepartmentofCommerce
NewelPerryRoom ResilientCitiesandtheInternetofThingsWorkshopIII:ImprovingSecuritythroughPartnershipacrosstheIoTEcosystemAstheworld’sdigitalinfrastructureisincreasinglyinterconnected,cybersecuritybecomesafundamentallydistributedchallengethatcompaniesandcountriescannotaddressalone.ThisworkshopwilldiscussthecriticalroleoftechnologyandprocessintegrationacrosstheecosysteminenhancingthesecurityoftheInternetofThings.Withanemphasisonenterprise-levelandsmartcityapplicationforIoT,thediscussionwillbringtogethercybersecuritycompanies,serviceproviders,andsystemintegratorstodiscusshowtheircross-industrypartnershipsareessentialtosecuringthecomplexandhighlydistributedIoTlandscape.
Co-Chairs: DanielleKriz,SeniorDirector,GlobalPolicy,PaloAltoNetworksSeanMorgan,Advisor,CybersecurityPolicy,PaloAltoNetworks
Discussants: BenediktAbendroth,SeniorCybersecurityStrategist,Microsoft
SundharAnnamalai,AssistantVicePresident,EmergingSecuritySolutions,AT&TEduardoCartagena,Director,ProductManagement&Programs,CyberSecurity,HoneywellScottStevens,VicePresident,Technology,WorldwideSystemsEngineering,PaloAltoNetworks
9
Rapporteur: NadiyaKostyuk,Fellow,EastWestInstitute;Ph.D.Candidate,GeraldR.FordSchoolofPublicPolicy,UniversityofMichigan
WarringWilkinson SystemicRiskandCyberInsuranceRoom WorkshopI:UnderstandingSystemicCyberRisk
Growingsocietaldependenceontechnologyhascreatedquestionsaroundwhethersystemiccyberriskcanbedefined,measured,andmanaged.In2016,theWorldEconomicForum(WEF)tookinitialstepstowardsaddressingthischallengeintheirwhitepaper,UnderstandingSystemicCyberRisk,whichhighlightedthat“large-scalecyberattacks”area“highimpact/highlikelihood”risk.ThisworkshopwillbegintodevelopaconceptualframingforwhatconstitutessystemiccyberriskandwillusetheWEFreportasabaseline,toopenupanddeepenthediscussion.
Chair: ErinEnglish,SeniorSecurityStrategist,TrustworthyComputing,Microsoft
Discussants: PhilipJ.Keller,PredoctoralFellow,CenterforInternationalSecurityandCooperation,FreemanSpogliInstituteforInternationalStudies,StanfordUniversityAndrewLohn,AssociateEngineer,RANDCorporationMatthewMcCabe,SeniorVicePresident,USCriticalInfrastructureCyberLeader,Marsh
Rapporteur: DavisHake,ChiefArchitect,ArceoLabs
GardenRoom PromotingNormsofResponsibleBehaviorinCyberspaceThegovernmentoftheNetherlands,theEastWestInstitute,andTheHagueCentreforStrategicStudiesformallylaunchedtheGlobalCommissionontheStabilityofCyberspaceattheMunichSecurityConferenceinFebruary2017.TheCommissionbringstogetherstakeholdersfromtheinternationalsecurityandcyberspacecommunitiestodevelopproposalsfornormsandpoliciestoguideresponsiblestateandnon-statebehaviorincyberspace.Thissessionwilldiscusstheuniversalizationofemergingcybernormsandtheroleofmulti-partynorms-buildingprocesses.Commissionerswillhearsuggestionsfromexpertsregardingtheelaborationofcybernorms.
Chair: AlexanderKlimburg,Director,SecretariatoftheGlobalCommissiononthe
StabilityofCyberspace,TheHagueCentreforStrategicStudiesDiscussant: GregAustin,ProfessorialFellow,EastWestInstituteRapporteur: JohnSavage,ProfessorialFellow,EastWestInstitute;
AnWangProfessorofComputerScience,BrownUniversity
15:00-15:30 NETWORKINGBREAK
10
15:30-17:00 BREAKTHROUGHGROUPS—SESSIONIVClarkKerrRoom UbiquitousEncryptionandLawfulGovernmentAccess
WorkshopIV:GovernmentHacking:Law,Policy,andtheFutureGovernmenthackingisoneproposedalternativetomandatingexceptionalaccessforlawenforcement.IntheUnitedStates,lawenforcementhasusedexploitstoinvestigatesuspectsforoveradecade,mostrecentlyinthe"Playpen"cases.However,regulationofthislawenforcementtechniqueisslowtocatchuptopractice.Recentchangestofederalcriminalprocedurerulesnowexpresslyauthorizetheissuanceofa"warranttohack"incertaincircumstances.Thisworkshopreviewsthepresentstateofthelawandexplorestechnicalandpolicydebateswithregardtogovernmenthackinganddiscussesthefeasibilityofgovernmenthackingasamiddlegroundsolutiontotheencryptiondebate.
Chair: RianaPfefferkorn,CryptographyFellow,CenterforInternetandSociety,
StanfordUniversity
Discussants: NateCardozo,SeniorStaffAttorney,ElectronicFrontierFoundationAhmedGhappour,VisitingAssistantProfessor,UniversityofCalifornia,HastingsCollegeofLawKennKern,ChiefofStaff,InvestigationDivisionandSpecialAssistant,InternationalRelations,NewYorkCountyDistrictAttorney'sOfficeUrmikaShah,ProductandDataCounsel,MozillaNicholasWeaver,SeniorResearcher,NetworkingandSecurity,InternationalComputerScienceInstitute,UniversityofCalifornia,Berkeley
Rapporteur: JonahForceHill,InternetPolicySpecialist,U.S.DepartmentofCommerce
NewelPerryRoom ResilientCitiesandtheInternetofThingsWorkshopIV:SecurityasanIoTMarketDifferentiator:TheRoleofVentureCapitalistsinIncentivizingBetterSecurityacrosstheIoTEcosystemMuchofthecurrentglobalpolicydiscussionaroundtheInternetofThingshasbeenfocusedonfindingincentivesthatpromotebettersecurity.Thisworkshopwillbringtogetherthoughtleadersfromtheventurecapitalandtechnologystartupcommunitytodiscusstheroleofonepowerfulandwell-establishedincentive—investmentcapital—indrivinghigherlevelsofthesecurityacrosstheIoTecosystem.ItwilldiscusstheemergingglobaltrendsinIoTinvestment,theroleforsecuritytobeamarketdifferentiatingfactorinthefuture,andhowthoughtfulgovernmentpolicycanshapethislandscape.
Chair: AndyHorwitz,SeniorDirector,BusinessandCorporateDevelopment,PaloAltoNetworks
Discussants: YevgenyDibrov,Co-founderandCEO,ArmisSecurity
PandianGnanaprakasam,CEO,CloudPostNetworksInc.EricMcAlpine,FounderandManagingPartner,MomentumPartnersDharmeshThakker,GeneralPartner,BatteryVentures
Rapporteur: NadiyaKostyuk,Fellow,EastWestInstitute;Ph.D.Candidate,GeraldR.FordSchoolofPublicPolicy,UniversityofMichigan
11
WarringWilkinson SystemicRiskandCyberInsuranceRoom WorkshopII:UnderwritingSystemicCyberRisk
Theinsuranceindustryhelpsfirmsmitigateandtransferemergingrisk.Throughtheunderwritingprocess,marketincentivescanidentifybestpracticesacrossindustriesanddrivebehavioralchangeandlossprevention.However,systemiccyberriskpresentsauniquechallengefortheinsuranceindustry.Thisworkshopwillexaminehowtheinsuranceindustrycurrentlyaddressestheunderwritinginthecontextofsystemiccyberrisk,howaprolongedservicefailureformyriadcompanieswouldimpactbusinessandinturntheinsuranceindustryandhowtheadoptionofnewtechnologiesortheretentionoflegacysystemsaffectssystemicrisk.Inaddition,itwillexaminetheinterplayofindustrywithgovernmenttodeterminewhetheraregulatorymechanismcanbeusedtoprotectagainstasystemiceventchallengingfinancialstabilitywithintheinsuranceindustry.
Chair: MatthewMcCabe,SeniorVicePresident,USCriticalInfrastructureCyberLeader,Marsh
Discussants: NormaKrayem,SeniorPolicyAdvisor;Co-Chair,CybersecurityandPrivacyTeam,Holland&KnightLLPRennieMuzii,SeniorVicePresident,EnduranceSpecialtyAnthonyShapella,ManagingDirectorandRiskOfficerLiability&FinancialLines,AIG
Rapporteur: DavisHake,ChiefArchitect,ArceoLabs
17:00-18:30 COCKTAILRECEPTION
Speaker: RobertN.Campbell,FounderandCEO,CampbellGlobalServicesLLC;Member,BoardofDirectors,EastWestInstitute
12
March 15, 2017 University of California, Berkeley Clark Kerr Campus Conference Center 08:00-09:00 REGISTRATION09:00-09:10 WELCOMEREMARKS
BruceW.McConnell,GlobalVicePresident,EastWestInstituteBetsyCooper,ExecutiveDirector,CenterforLong-TermCybersecurity,UniversityofCalifornia,Berkeley
09:10-09:25 WELCOMINGKEYNOTEADDRESS:AVIEWFROMTHEGLOBALSOUTH
Chair: FrédérickDouzet,Chairwoman,CastexChairofCyberstrategy;Professor,FrenchInstituteofGeopolitics,UniversityofParis8;Commissioner,GlobalCommissionontheStabilityofCyberspace
Speaker: KatherineGetao,ICTSecretary,MinistryofInformationCommunications
andTechnologyofKenya09:25-09:40 GLOBALCOOPERATIONINCYBERSPACEINITIATIVE:PROGRESSREPORT
BruceW.McConnell,GlobalVicePresident,EastWestInstitute09:40-10:00 KEYNOTEADDRESS:SAFECITIES–BECAUSESAFERISSMARTER
Chair: JohnHurley,ManagingPartner,CavalryAssetManagement;Member,BoardofDirectors,EastWestInstitute
Speaker: PeterA.Altabef,PresidentandCEO,Unisys;
Member,BoardofDirectors,EastWestInstitute10:00-11:20 PLENARYPANELI:THESTATEOFCYBERCOOPERATION
Governments,companiesandcivilsocietydependonasafeandreliablecyberenvironment.Yet,nosinglesetofactorscanensurethesafety,securityandreliabilityofcyberspace.Giventheincreasingdependenceoncyberspace,includingthroughuseofcloud-basedsoftware,theproliferationofsmartdevicesthroughtheInternetofThings,anddigitizedinfrastructure,thereisagreaterneedthaneverformulti-partycooperationinordertounderstandthesedevelopmentsandcreatenormsofgovernanceandpoliciestodealwithsecurityrisksandchallenges.Panelistswilldiscusscurrentcooperationincyberspace,highlightingareasofprogress,obstacles,andwaystoimprovegoingforward.
13
Chair: MattBross,ChairmanandCEO,Compass-EOS;Member,BoardofDirectors,EastWestInstitute
Speakers: LiesylI.Franz,SeniorPolicyAdvisor,OfficeoftheCoordinatorforCyberIssues,U.S.DepartmentofStateKarstenGeier,Head,CyberPolicyCoordination,FederalForeignOfficeofGermanyKanChannmeta,SecretaryofState,MinistryofPostsandTelecommunicationsofCambodiaPaulNicholas,SeniorDirector,TrustworthyComputing,MicrosoftAnatolyStreltsov,DeputyDirector,InstituteofInformationSecurityIssues,MoscowStateUniversityDimitriVogelaar,DeputyHead,InternationalCyberPolicy,MinistryofForeignAffairsoftheNetherlands
11:20-11:40 NETWORKINGBREAK11:40-12:10 KEYNOTECONVERSATION
Chair: JosephMenn,ProjectsReporter,Reuters
Speakers: Admiral(ret.)WilliamA.Owens,Co-Founder,RedBisonAdvisoryGroupLLC;Chairman,BoardofDirectors,CenturyLink;Member,BoardofDirectors,EastWestInstitute
ZhangBei,SeniorVicePresident,Qihoo360TechnologyCo.Ltd. 12:10-13:00 PLENARYPANELII:GLOBALCOMMISSIONONTHESTABILITYOFCYBERSPACE
ThegovernmentoftheNetherlands,theEastWestInstitute,andTheHagueCentreforStrategicStudiesformallylaunchedtheGlobalCommissionontheStabilityofCyberspaceattheMunichSecurityConferenceinFebruary2017.TheCommissionbringstogetherstakeholdersfromtheinternationalsecurityandcyberspacecommunitiestodevelopproposalsfornormsandpoliciestoguideresponsiblestateandnon-statebehaviorincyberspace.Duringthispaneldiscussion,Commissionmemberswillprovideearlyinsightsintoitsprioritiesanddirection.
Chair: MarinaKaljurand,FormerMinisterofForeignAffairsofEstonia;Chair,GlobalCommissionontheStabilityofCyberspace
Speakers: MichaelChertoff,ExecutiveChairmanandCo-Founder,TheChertoffGroup;
FormerU.S.SecretaryofHomelandSecurity;Member,BoardofDirectors,EastWestInstitute;Co-Chair,GlobalCommissionontheStabilityofCyberspaceFrédérickDouzet,Chairwoman,CastexChairofCyberstrategy;Professor,FrenchInstituteofGeopolitics,UniversityofParis8;Commissioner,GlobalCommissionontheStabilityofCyberspaceJeffMoss,FounderandCEO,DEFCON;Founder,BlackHat;Commissioner,GlobalCommissionontheStabilityofCyberspaceLathaReddy,DistinguishedFellow,EastWestInstitute;FormerDeputyNationalSecurityAdvisorofIndia;Co-Chair,GlobalCommissionontheStabilityofCyberspaceSamirSaran,SeniorFellowandVicePresident,ObserverResearchFoundation;Commissioner,GlobalCommissionontheStabilityofCyberspaceBillWoodcock,ExecutiveDirector,PacketClearingHouse;Commissioner,GlobalCommissionontheStabilityofCyberspace
13:00-14:00 LUNCH
14
14:00-15:30 BREAKTHROUGHGROUPS—SESSIONI
ClarkKerrRoom UbiquitousEncryptionandLawfulGovernmentAccessTheinternationaldebateonencryptionhasproducedafaultlinebetweenlawenforcementandindustry,thelattersupportedbyprivacyandcivillibertiesadvocates.Recognizingthatnonationalsolutionbyitselfwillbeadequate,thissessionwillexploremiddlegroundproposalsthatreflecttheglobalavailabilityofencryption.
Chair: KamleshBajaj,DistinguishedFellow,EastWestInstituteDiscussants: UdoHelmbrecht,ExecutiveDirector,EuropeanUnionAgencyfor
NetworkandInformationSecurity(ENISA)DavidO'Brien,SeniorResearcher,BerkmanKleinCenterforInternet&Society,HarvardUniversityRianaPfefferkorn,CryptographyFellow,CenterforInternetandSociety,StanfordUniversity
Rapporteur: JonahForceHill,InternetPolicySpecialist,U.S.DepartmentofCommerce
WarringWilkinson IncreasingtheGlobalAvailabilityandUseofSecureICTProductsandServices Room
InSeptember2016,thisbreakthroughgrouppublishedPurchasingSecureICTProductsandServices:ABuyersGuide,whichoutlinesquestionsthatICTconsumerscanasksuppliersabouthowtheymanagesecurityrisks,includingsupplychainrisk,introducedbycommercialtechnology.ThissessionwillsolicitfeedbackontheGuideandexplorewaystoaddresstheneedforsecurityintheprocurementofICTproductsandservices.
Co-Chairs: SallyLong,Director,TheOpenGroupTrustedTechnologyForumAndyPurdy,ChiefSecurityOfficer,HuaweiTechnologiesUSA
Discussants: RobertHolleyman,FormerDeputyU.S.TradeRepresentative,ExecutiveOfficeofthePresidentAngelaMcKay,Director,CybersecurityPolicyandStrategy,Microsoft
Rapporteur: GibGodwin,SeniorFellow,EastWestInstitute;ManagingDirector,PricewaterhouseCoopers
GardenRoom PromotingNormsofResponsibleBehaviorinCyberspaceGlobalsecurityandprosperitydependonasecureandstablecyberspace.Amyriadoffactorsthreatenequilibriumincluding:cyberspace'scontinuedmilitarization,growingactivismbynon-stateactors,sectorbasedrisksthatrequirespecializedknowledge,andpersistentasymmetriesincapability.WiththeparticipationofmembersoftheGlobalCommissionontheStabilityofCyberspace,thissessionwilldiscussemergingnormsandmulti-partynorms-buildingprocesses.
Chair: MichaelChertoff,ExecutiveChairmanandCo-Founder,TheChertoffGroup;
FormerU.S.SecretaryofHomelandSecurity;Member,BoardofDirectors,EastWestInstitute;Co-Chair,GlobalCommissionontheStabilityofCyberspace
Discussant: GregAustin,ProfessorialFellow,EastWestInstitute
Rapporteur: JohnSavage,ProfessorialFellow,EastWestInstitute;
AnWangProfessorofComputerScience,BrownUniversity
15
15:30-16:00 NETWORKINGBREAK16:00-17:30 BREAKTHROUGHGROUPS—SESSIONIINewelPerryRoom ResilientCitiesandtheInternetofThings
Theintroductionofconnectedintelligenceintoindustrialsettingsanditsintegrationintosmartcitiescreateanunprecedentedsetofsecurityriskstoeverydaylife.Thisbreakthroughgroupwilldebatetwonovelideasasameanstoenhancecybersecurityinconnectedcities:thattheproliferationofsmart,interconnecteddevicesprovidesanopportunityratherthanathreattocybersecurity;andthatthewaysecurityismanagedwillnecessarilyshifttothenetworklevel,asthesheernumberofinterconnecteddevicesmakesitimpossibletomaintainthesecurityofendpoints.Thissessionwillchartwaystoincreasethecyberresilienceofurbanenvironmentsonaglobalbasis,lookingatwaystoimprovereadiness,responsivenessandreinvention.
Co-Chairs: DanielleKriz,SeniorDirector,GlobalPolicy,PaloAltoNetworks
MarkA.Forman,VicePresidentandGlobalHead,PublicSector,Unisys
Discussants: BenediktAbendroth,SeniorCybersecurityStrategist,MicrosoftSeanMorgan,Advisor,CybersecurityPolicy,PaloAltoNetworksPaulNicholas,SeniorDirector,TrustworthyComputing,Microsoft
Rapporteur: NadiyaKostyuk,Fellow,EastWestInstitute;Ph.D.Candidate,GeraldR.FordSchoolofPublicPolicy,UniversityofMichigan
ClarkKerrRoom SystemicRiskandCyberInsuranceLittleworkexiststounderstandsystemiccyberrisktoenterprisesandhowitcanbemeasuredandmanaged.Insurersandreinsurersarestrugglingtomodelriskandpricepoliciesinthefaceoflarge-scalerisktogeneralbusinesscontinuityandthepotentialforcascadingfailures.Thisbreakthroughgroupwillexaminesystemicrisk,itsimpactongeneralbusinesscontinuity,andtheimplicationsfortheinsuranceindustry.Itwilldevelopanddisseminateapproachestomitigatingriskandimprovinglosspreventionacrossindustriesworldwide.
Chair: ErinEnglish,SeniorSecurityStrategist,TrustworthyComputing,MicrosoftDiscussants: MatthewMcCabe,SeniorVicePresident,USCriticalInfrastructureCyberLeader,Marsh
JohnPlaisted,MarshGlobalAnalytics,MarshAnthonyShapella,ManagingDirectorandRiskOfficerLiability&FinancialLines,AIG
Rapporteur: DavisHake,ChiefArchitect,ArceoLabs
GardenRoom ElectionSystemsSecurity
FollowingacontentiouselectionintheUnitedStateswhichfeatureddiscussionsofthecybersecurityofvotingmachinesandpoliticaldata,thissessionwilldiscusscyberthreatstoelectoralprocesses,andhowcountriesandcompaniesmightworktogethertoaddressthem.
Chair: JeffMoss,FounderandCEO,DEFCON;Founder,BlackHat;Commissioner,GlobalCommissionontheStabilityofCyberspace
16
Discussants: FrédérickDouzet,Chairwoman,CastexChairofCyberstrategy;Professor,FrenchInstituteofGeopolitics,UniversityofParis8;Commissioner,GlobalCommissionontheStabilityofCyberspaceMatthiasGebauer,ChiefCorrespondent,DerSpiegelDavidO'Brien,SeniorResearcher,BerkmanKleinCenterforInternet&Society,HarvardUniversity
Rapporteur: GrahamWebster,Fellow,EastWestInstitute;SeniorFellow,PaulTsaiChinaCenter,YaleLawSchool
17:30-19:00 COCKTAILRECEPTION
17
March 16, 2017 University of California, Berkeley Clark Kerr Campus Conference Center 08:00-09:00 REGISTRATION09:00-09:15 PROGRESSREPORTFROMWEDNESDAYMARCH15
BruceW.McConnell,GlobalVicePresident,EastWestInstitute09:15-10:00 PLENARYPANELIII:INSIGHTSFROMYOUNGLEADERS
Thispanelwillfeatureyoungprofessionalsworkingoncriticalcyberspaceissues.Panelistswillsharetheirreflectionsonthesummitanditsrelevancetothemostpressingproblemsfacingcyberspacetodayandinthefuture.
Chair: AndreasKuehn,SeniorProgramAssociate,EastWestInstitute
Speakers: AaronClark-Ginsberg,CybersecurityPostdoctoralScholar,
CenterforInternationalSecurityandCooperation,StanfordUniversityDavisHake,ChiefArchitect,ArceoLabsLeaKaspar,ExecutiveDirector,GlobalPartnersDigitalMaxSmeets,DoctoralCandidate,DepartmentofPolitics&InternationalRelations,UniversityofOxfordMariaSmekalova,WebsiteEditor,RussianInternationalAffairsCouncil(RIAC)
10:00-10:40 PLENARYPANELIV:
REPORTBACKFROMBREAKTHROUGHGROUPSESSIONS&NEXTSTEPS–PARTI
Breakthroughgrouprepresentativeswillreportontheresultsfromsummitsessions,focusingonproposednextsteps.Theywillbefollowedbyreflectionsfromadistinguishedpanelandanopportunityforquestionsfromtheaudience.
Chair: LathaReddy,DistinguishedFellow,EastWestInstitute;FormerDeputyNationalSecurity
AdvisorofIndia;Co-Chair,GlobalCommissionontheStabilityofCyberspace
Speakers: MattBross,ChairmanandCEO,Compass-EOS;Member,BoardofDirectors,EastWestInstituteShenYi,AssociateProfessor,ResearchCenterfortheGovernanceofGlobalCyberspace,FudanUniversityEliSugarman,ProgramOfficer,CyberInitiative,WilliamandFloraHewlettFoundation
10:40-11:00 NETWORKINGBREAK
18
11:00-11:30 PLENARYPANELIV:REPORTBACKFROMBREAKTHROUGHGROUPSESSIONS&NEXTSTEPS–PARTII
11:30-11:45 KEYNOTEADDRESS:THEFUTUREOFSECURITYINDUSTRYCOOPERATION
Chair: StevenHonigman,Counselor,InformationandInfrastructureTechnologies,Inc.;Member,BoardofDirectors,EastWestInstitute
Speaker: RenéBonvanie,ChiefMarketingOfficer,PaloAltoNetworks
11:45-12:25 PLENARYPANELV:TECH+PEOPLE:SECURINGTHEFUTURECONNECTION
Industryexecutiveswilldiscussdevelopmentsintechnologyandsecurity,andtheimplicationsforpeople,processes,andbusinessmodelsinthenextfiveyears.
Chair: BetsyCooper,ExecutiveDirector,CenterforLong-TermCybersecurity,UniversityofCalifornia,Berkeley
Speakers: RayDolan,PresidentandCEO,SonusNetworks
SamiNassar,VicePresident,CyberSecuritySolutions,NXPSemiconductorsAndyPurdy,ChiefSecurityOfficer,HuaweiTechnologiesUSA
12:25-12:50 KEYNOTECONVERSATION:TRUSTINCYBERSPACE:MYTHORREALITY
Chair: MajaPiscevic,VicePresident,Communications,EastWestInstitute
Speaker: FrancisFukuyama,OlivierNomelliniSeniorFellow,FreemanSpogliInstituteforInternationalStudies;MosbacherDirector,CenteronDemocracy,Development,andtheRuleofLaw,StanfordUniversity
12:50-13:00 CONCLUDINGREMARKS
BruceW.McConnell,GlobalVicePresident,EastWestInstitute13:00-14:00 LUNCH
19
20
Global Cooperation in Cyberspace Initiative
Supporters:
MicrosoftHuawei TechnologiesUnisysSonus NetworksPalo Alto NetworksQihoo 360NXP SemiconductorsCenturyLinkVimpelComThe Hague Centre for Strategic StudiesWilliam and Flora Hewlett Foundation
Partners:
IEEE Communications SocietyMunich Security ConferenceThe Open GroupFudan UniversityUniversity of New South WalesWebster University Cyberspace Research InstituteCenter for Long-Term Cybersecurity, University of California, Berkeley
Global Cyberspace Cooperation Summit VIIMarch 14-16, 2017University of California, Berkeley
cybersummit.info