Experts lay groundwork for cybercrime fight

Global information security and industry representatives have held discussions in Sydney to draft a cybercrime code of practice.

During the three days of meetings, the OECD (Organization of Economic Cooperation and Development) group on global information security met with Australia’s Internet Industry Association (IIA) and the U.S. Internet Industry Association (USIIA) to discuss the role of security within the industry. The IIA and the USIIA, together with OECD delegates, shaped a Draft Joint Statement of Principles to outline the direction that the industry needs to take.

The first guideline is to promote the partnership of governments and industry in dealing with security issues.

“The solution to global crime and terror is no longer the province of governments alone,” said IIA chief executive Peter Coroneos.

Another issue dealt with was the awareness and responsibility of the industry as a whole, from the enterprise level, small- to medium-businesses and end-users.

“A large part of the security problem is not just the responsibility of enterprises involved in the network, but also of end-users. End-users are often the weak link in the chain,” Coroneos said. “A connection at home with no firewall means they cannot only be a target, but also a potential launching point for an attack against companies. They can become a weapon in the armoury of a cyberterrorist.”