African Nations Join UN Cyber Crime Initiative

Uploaded on 2022-01-11 in GOVERNMENT-National, GOVERNMENT-Law Enforcement, FREE TO VIEW

African diplomats will meet their global counterparts in New York on January 17th to thrash out the details of a proposed new United Nations (UN) treaty to tackle cyber crime. It will be an opportunity for the African delegates to highlight growing digital threats and determine how to define, investigate and prosecute what is in effect a borderless crime.

Existing treaties such as the Budapest Convention or the African Union (AU) Convention on Cybercrime and Personal Data Protection (the Malabo Convention) are considered by some states to be useful if somewhat limited regional instruments. 

Russia has been among the countries arguing for a UN-wide convention, with cyberspace increasingly becoming a theatre of geopolitical competition.

The New York meeting is an example of the growing influence of cyber diplomacy. It is among a raft of multilateral forums, many of them led by the UN and driven by competing resolutions, where cyber governance, resilience, capacity and response are discussed. 

The core of such engagements is how states balance freedom of information, privacy and security in the rapidly evolving digital world.

An upcoming Institute for Security Studies (ISS) report explains why Africa cannot afford to take a back seat in such diplomatic discussions. The continent currently lags behind many other parts of the world when it comes to digital ‘capacity’, the people, processes and technology that define the digital age. Discussions on cybercrime, cyber security and how future digital technology is developed, diffused and deployed cannot be the sole preserve of richer nations with more advanced digital capabilities. 

Those same technologies are increasingly being used in Africa to shape the way business, government and security are conducted.

Africa’s more digitally advanced states, including Kenya, South Africa, Mauritius, Nigeria, Ghana, Morocco, Egypt and Rwanda, must articulate the continent’s digital priorities coherently and convert this into organisational strength. This would almost certainly bolster Africa’s influence in cyber diplomacy negotiations. One regional cyber security expert interviewed for the ISS report observed that in many multilateral forums, ‘cyber superpowers view Africans as junior partners needed to make up the numbers in possible coalitions.’ 

To counteract this, Africa needs continental champions who can negotiate common digital positions for presentation by continent-wide bodies such as the AU.

Examples of the most pressing issues include how African states can rapidly develop their digital capacity in line with the AU’s Digital Transformation Strategy. Beyond this are issues of cyber security. For instance, how should African states respond to attacks on critical infrastructure or the weaponisation of cyberspace to conduct disinformation campaigns and undermine democracy? 

It also includes the threat posed by cyber-enabled crimes. Their perpetrators use the internet to engage in traditional crimes like fraud and forgery, human trafficking or the illicit trade in drugs, wildlife products, weapons, precious stones etc.

The AU’s Digital Transformation Strategy emphasises the economic and developmental potential of rapid digital advances to the continent. A key part of this is ensuring equitable access to digital technologies and building the human capacity to benefit from them. However, discussions are needed on the unintended consequences of evolving technologies on human security. Without strategic thinking on shaping and taming the algorithms and deploying future digital technologies, African states risk being swept along by the more digitally mature superpowers and their agendas. 

The continent needs to upskill African cyber diplomats and embed digital knowledge across government. 
Competition over the ownership of emerging technologies and related power relationships are another reason Africa should engage more actively in cyber diplomacy.  African states need the infrastructure underpinning digital technologies such as the networks, hardware and other tools that define the cyber ecosystem. This makes them dependent on other state actors and their proxies but also leaves them vulnerable to influence and imported norms about privacy, mass surveillance and security.

The rapid rollout of CCTV camera systems along with facial recognition tools supplied by Chinese firms in countries including Ethiopia, South Africa, Kenya and Zimbabwe have ignited a debate about sovereignty, technological interdependence and digital feudalism.

Given the modest level of digital development among many of the AU’s 54 states, Africa seems particularly vulnerable to tech-infused geopolitics. The economic challenges facing many countries on the continent may incline them to opt for the cheapest tech rather than the most secure. The ISS report argues that the AU should encourage states to, where possible, delink trade from cyber diplomacy dialogue. Bilateral trading relationships with powerful state tech suppliers may cloud judgements over governance issues, for example. 

Delinking trade from tech may encourage continent-wide approaches to governance and cyber security rather than pursuing individual short-term economic gains. This would reduce the potential for global powers to adopt ‘divide and rule’ strategies on digital issues. With their relatively youthful populations, African states can also position themselves as a rapidly expanding future source and marketplace for new technology. The emergence of indigenous technologies such as M-Pesa in Kenya is an example of local innovation. 

According to World Bank figures, by 2050, one in four of the world’s people will come from sub-Saharan Africa. This, together with the continent’s large proportion of young people, provides leverage for African states to ensure their current digital needs and challenges are addressed as a global priority.

Article First published by ISS Today

Karen Allen is an  and former BBC Foreign Correspondent, an expert on international policy and founder of Karen Allen International

You Might Also Read: 

Internet Cable To Encircle Africa:

 

« The Cyber Skills Shortage & Training Gap - What Is The Solution?
Azure Active Directory Recycle Bin Won’t Save Your Critical Data »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Coro Cybersecurity

Coro Cybersecurity

Coro (formerly Coronet) empowers organizations to protect against malware, ransomware, phishing, and botnets - across devices, users, and cloud applications.

CSO GmbH

CSO GmbH

CSO GmbH provide specialist consultancy services in the area of IT security.

CERT Tonga

CERT Tonga

CERT Tonga is the national Computer Emergency Response Team for Tonga.

Data Protection People

Data Protection People

Data Protection People are specialists in Data Privacy, Governance, and Information Security.

Netlawgic Legal Services

Netlawgic Legal Services

Netlawgic is exclusively focused on delivering cyber law solutions to the industry. We provide our clients with specialized attention and problem solving in all aspects of cyber law.

Greylock Partners

Greylock Partners

Greylock Partners is a leading venture capital firm based in Silicon Valley. We invest in all sectors of enterprise software technology including applications, cloud/SaaS, networking and security.

RISE

RISE

RISE is an independent, State-owned research institute, which offers unique expertise and over 100 testbeds and demonstration environments for future-proof technologies, products and services.

QI ANXIN Technology Group

QI ANXIN Technology Group

QI ANXIN specializes in serving the cybersecurity market by offering next generation enterprise-class cybersecurity products and services to government and businesses.

PizzlySoft

PizzlySoft

PizzlySoft is a global company that is seeking convergence of network and security / software and hardware. We put our value on creating the best security.

R3I Ventures - House of DeepTech

R3I Ventures - House of DeepTech

The House of DeepTech is an incubator for deeptech entrepreneurs that are transforming global industries. Areas of interest include cybersecurity.

Berezha Security Group (BSG)

Berezha Security Group (BSG)

BSG is a cybersecurity consulting firm specializing in all aspects of application security and penetration testing.

Consistec Engineering & Consulting

Consistec Engineering & Consulting

Consistec Engineering & Consulting GmbH is an information technology and services company offering solutions for monitoring the security of IT and OT infrastructure.

SpecTrust

SpecTrust

SpecTrust provides an all-in-one defense solution for identity abuse & fraud, enabling your company's talent to stay focused on the core business.

Diligent

Diligent

Diligent's SaaS GRC platform gives leaders a connected view of governance, risk, compliance and ESG across their organization.

Catalogic Software

Catalogic Software

Catalogic helps clients backup, recover, manage, and protect their data across their enterprise and cloud environments with Smart Data Protection solutions.

Elastio

Elastio

Elastio's cloud-native platform safeguards cloud data from the risks posed by ransomware, application failures and storage security vulnerabilities.