ETSI’s flagship annual event on cybersecurity took place virtually on 14-18 June 2021.

The virtual ETSI Security Week 2021 allowed for even more diverse participation from around the world. It gathered all stakeholders to debate five important aspects of cybersecurity: 

  • Securing Artificial Intelligence (AI),
  • Internet of Things (IoT),
  • Network Function Virtualization (NFV),
  • Multi-access Edge Computing (MEC)
  • Cyber Security Policy

It was a unique opportunity where the security community came together in ETSI virtual world to network, share, influence and learn during this week of events!

ETSI Security Week 2021 AGENDA (14-18 June).

The detailed programme of the event is provided below. 

  • 14 June 2021 - KEYNOTE: DR HACKLOVE - The Challenges we will Face in Security and the Mistakes of the Past
  • 2.00pm
    2.40pm

    14 JUNE

  •  
     
    • 02.00pm - 02.05pm: Opening of ETSI Security Week 2021
    • Luis Jorge Romero, ETSI Director General
    • 02.06pm - 02.24pm: Keynote - Dr. Hacklove — How I learned to Stop Worrying and Love the Risk
    • Karsten Nohl, SRLabs
    • 02.25pm - 02.40pm: Coffee Break and Meeting Hub
  • 14 June 2021 - Securing Artificial Intelligence (AI)
  • 2.40pm
    5.15pm

    14 JUNE

  •  
     

    Session: An Introduction to the Problems and Solutions to Securing AI

    The Securing Artificial Intelligence Industry Specification Group (ISG SAI) develops technical specifications that mitigate against threats arising from the deployment of AI, and threats to AI systems, from both other AIs, and from conventional sources. The two webinar topics of the 1st Session being presented are:

    • 02.40pm - 02.59pm: Security for AI: Problem Statement
    • Paul Miller, CSIT, QUB
    • 03.00pm - 03.15pm: Introduction to ETSI ISG SAI-GR-005 Mitigation Strategy Report
    • Hsiao-Ying Lin, Huawei
    • 03.15pm - 03.30pm: Coffee Break & Meeting Hub
    • 03.30pm - 03.59pm: Live Q&A
    • Moderator: Li Tieyan, Huawei, Panelists: Paul Miller, CSIT, QUB - Hsiao-Ying Lin, Huawei
  •  
     

    Session: Testing and Securing AI Talks

    The purpose of Security Testing is to identify objectives, methods and techniques that are appropriate for security testing of AI-based systems. The goal is to have guidelines for testing of AI and AI-based system taking account of the different algorithms. The live discussion panel is made up of members of the SAI group and industry who represent academy, small business, large enterprise, standards development and government viewpoints. They will discuss the work of the group, problems or solutions the group aims to solve and answer the audience’s queries and questions about securing AI.

    • 04.00pm - 04.24pm: Introduction to ETSI ISG SAI-GR-003 “Security Testing of AI”
    • Martin Schneider, Fraunhofer FOKUS
    • 04.25pm - 04.40pm: Coffee Break & Meeting Hub
    • 04.40pm - 05.10pm: Panel Discussion with Live Q&A
    • Moderator: Scott Cadzow, C3L Panelists: Hsiao-Ying Lin, Huawei - Paul Miller, CSIT, QUB - Apostolos Malatras, ENISA - Martin Schneider, Fraunhofer FOKUS
    • 05.10pm - 05.15pm: End of Day Closing Remarks
    • Scott Cadzow, C3L
  • 15 June 2021 - Internet of Things (IoT)
  • 2.00pm
    5.30pm

    15 JUNE

  •  
     

    Session: IoT and the Next Cybersecurity Act Scheme

    Within the context of the Cyber Security Act an IoT certification scheme will be defined. This session will explore the roadmap of the ENISA certification schemes, to which extend the EUCC and EUCS schemes can be used for IoT security and the background of the existing standards such as EN 303 645 and the upcoming EN 17640.

     

    • 02:00pm - 02:05pm: Introduction
    • Andreas Mitrakas, ENISA
    • 02:05pm - 02:20pm: Cybersecurity Certification Framework, An Update
    • Andreas Mitrakas, ENISA 
    • 02:21pm - 02:39pm: IoT and the European Cybersecurity Certification Framework
    • Aristotelis Tzafalias, EC DG CNCT
    • 02:40pm - 02:54pm: EN 303 645: The European Standard on Connected Device Security
    • Jennifer Graham, DCMS
    • 02:55pm - 03:14pm: dEN 17640 Fixed-time cybersecurity evaluation methodology for ICT products
    • Miguel Bañon, SC27 WG3 convenor, JTC13 WG3 convenor
    • 03.15pm - 03.29pm: Coffee Break and Meeting Hub
  •  
     

    Session: The Challenges on IoT CSA Scheme Definition, Feedback from the Field

    What is the feedback and the experience of industry, government agencies, laboratories around IoT certification?

    • 03:30pm -03:49pm: IoT Security Certification: The Industry Point of View
    • Davide Pratone, Huawei
    • 03:50pm - 04:04pm: Automation as a Key for Cost-Effective and Scalable IoT Security Certification
    • Roland Atoui, Red Alert Labs
    • 04:05pm - 04:21pm: GCF Consumer IoT Security Accreditation Programme
    • Asif Hamidullah, Global Certification Forum Ltd (GCF) 
    • 04:22pm - 04:39pm: Cybersecurity Labelling Scheme – Singapore Experience
    • Henry TAN, Cyber Security Agency of Singapore (CSA)
    • 04.40pm - 04.54pm: Coffee Break and Meeting Hub
    • 04:55pm - 05:25pm: Panel Discussion and Live Q&A: What are the Positive Points, What are the Roadblocks, How to Solve it? The Next Steps
    • Moderator: Jean-Pierre Quémard, CEO KAT,  Panelists: Roland Atoui, Red Alert Labs - Asif Hamidullah, GCF - Henry Tan, CSA - Davide Pratone, Huawei
    • 05.25pm - 05.30: End of Day Closing Remarks
    • Chair: Jean-Pierre Quémard, KAT
  • 16 June 2021 - Network Function Virtualization (NFV)
  • 2.00pm
    4.00pm

    16 JUNE

  •  
     
    • 02:00pm - 02:05pm: Introduction
    • Alex Leadbeater, BT, Chair ISG NFV SEC
    • 02:05pm - 03:00pm:  An Introduction to NFV Security Challenges and ETSI NFV Security Standards 
      An introduction to begin the NFV day of ETSI Security Week! This talk will start with the basics of what Network Function Virtualisation is and isn't, before moving into the complexity of the NFV security model – the risks, threats and vulnerabilities that need to be tackled for the future. Finally, we take a look at where standards – and particularly ETSI standards – mitigate and address these critical issues.
      Alex Leadbeater, BT, Chair ISG NFV SEC
    • 03:01pm - 03:22pm: Bringing Trust to 5G Networks
      The impacts of 5G on our daily life will be massive, with promises of high-speed connections, ultra-low latency, and long battery life for low-power IoT devices. This fifth-generation telecom standard shifts the underlying networks to software-centric open architectures. This openness speeds innovation but also introduces security risks. In this session, some of the security challenges facing modern Telcos as they adopt cloud-native technologies will be discussed, and how Thales is uniquely positioned to help address these challenges to enable continued innovation.
      Rohini Deepak, Thales Research and Innovation group
    • 03:22pm - 03:35pm: Coffee Break and Meeting Hub
    • 03:35pm - 03:55pm: Live Q&A and Closing Remarks
      Rohini Deepak, Thales - Alex Leadbeater, BT
    • 03.55pm - 04.00pm: Closing Remarks
      Alex Leadbeater
    • End of Day
  • 17 June 2021 - Multi-access Edge Computing (MEC)
  • 2.00pm
    5.30pm

    17 JUNE

  •  
     

    Done correctly, MEC (Multi-access Edge Computing) can bring significant benefits to us as digital citizens, our economies and increase network resilience. MEC deployments are coming together with the progressive introduction of 5G networks, and MEC technology is serving many important use cases for 5G, also coming from various vertical market segments (e.g. automotive, industrial IoT, gaming, etc.).Such technology increases the versatility of commercial offerings, gives the ability to scale quickly and efficiently in a world driven by consumers and an ever-increasing pace of technological change. Conversely, should we fail to write and implement world class standards the opposite is true. Indeed, what is the benefit of MEC in increasing security and privacy locally at the edge? Or are there also challenges for edge computing deployments? What are the real security risks and how do we plan to counter those? What are the requirements from operators and customers, especially from many verticals? What are the next steps for the standardization in the domain of MEC?   

    Session: Standardization Overview on MEC Security 

    • 02:00pm -02:04pm: Welcome and Introduction
    • Dario Sabella, Intel, ETSI MEC Chair
    • 02:05pm -02:19pm: Security Standards for the Edge Value Chain
    • Vangelis Gazis, Huawei, TC CYBER delegate
    • 02:20pm -02:40pm: Security Aspects of ETSI MEC Specifications
    • Alex Reznik, HPE, former ETSI MEC Chair
    • 02:40pm -02:55pm:  Coffee Break and Meeting Hub
    • 02:55pm - 03:40pm: Panel Discussion and Live Q&A
    • Moderator: Dario Sabella, Intel; Panelists: Vangelis Gazis, Huawei -  Alex Reznik, HPE
  •  
     

    Session: MEC Security: A Market Segments Perspective

    • 03:41pm - 03:44pm: Welcome and Introduction
    • Ian W, NCSC Senior TD Chair
    • 03:45pm - 03:54pm: Security Challenges and Recommendations for 5G Edge Computing
    • He Chengdong, Huawei
    • 03:55pm - 04:09pm: Security in the Edge Continuum
    • Diego Lopez, Telefonica
    • 04:10pm - 04:19pm: MEC Security: An Automotive Perspective from 5GAA
    • Virendra Kumar, Qualcomm, Chair of 5GAA Security and Privacy Working Group
    • 04:20pm - 04:32pm: Software Security and Maintenance for MEC devices
    • George Grey, Foundries.io
    • 04:33pm - 04:49pm: Coffee Break and meeting Hub
    • 04:50pm- 05:25pm: Panel Discussion and Live Q&A
    • Moderator: Ian W, NCSC; Panelists: He Chengdong (Dony), Huawei - Diego Lopez, Telefonica - Virendra Kumar, Qualcomm - George Grey, Foundries.io
    • 05:25pm - 05:30pm: Closing remarks from the two Session Chairs
    • Dario Sabella, Intel -  and Ian W, NCSC
    • End of Day
  • 18 June 2021 - Cyber Security Policy
  • 2.00pm
    6.25pm

    18 JUNE

  •  
     

    Session: Next Steps to the Cybersecurity Act

    This session will focus on the following topics followed by a panel discussion and a Live Q&A:

    1. Future plan for standards under the CSA
    2. 5G certification under the CSA
    3. Transition from current schemes to CSA schemes
    4. Return of experience on the new procedures and the accreditation of labs
    5. Impact to and contribution from SMEs  

     

    • 02:00pm - 02:05pm: Introduction 
      Chair: Claire Vishik Intel / TDL
    • 02:06pm - 02:23pm: Standardisation and Certification under CSA
      Slawomir Gorniak, ENISA
    • 02:24pm - 02:40pm: GSMA’s Network Equipment Security Assurance Scheme in the Context of EU CSA
      James Moran, GSMA
    • 02:41pm - 02:55pm: Towards Implementing the Cybersecurity Act
      Philippe Magnabosco, ANSSI
    • 02:56pm - 03:22pm: Digitisation - The Next Generation
      Matthias Intemann, Head of Branch Certification Procedures, BSI, Germany
    • 03:23pm - 3:51pm: SMEs in a Multi-Standard World: Critical Factor for Digital Single Market & Industry 4.0
      George Sharkov, European DIGITAL SME Alliance & SBS 
    • 03:52pm - 04:05pm: Coffee Break and Meeting Hub
      04:05pm - 04:25pm: Panel Discussion and Live Q&A
    • Moderator: Claire Vishik, Intel; Panelists: Slawomir Gorniak, ENISA - James Moran, GSMA - Philippe Magnabosco, ANSSI - Matthias Intemann, BSI, Germany - George Sharkov, SBS / Digital SME Alliance
    • 04:25pm - 04:30pm: Conclusion
      Moderator: Claire Vishik Intel/TDL
  •  
     

    Session: Security Under the Radio Equipment Directive and the Interactions with the Cybersecurity Act

    This session will more particularly deal with the following topics followed by a panel discussion and a Live Q&A:

    1. Challenges faced by standardisers and possible ways forward
    2. EU COM objectives and long-term approach to security under the EU legislation
    3. Manufacturer’s view to security under the RED
    4. EU market access and security, staying relevant in an ever-evolving threat  

     

    • 04:31pm - 04:35pm: Introduction
      Chair: Claire Vishik, Intel / TDL
    • 04:36pm - 04:50pm: State-of-Play on the RED
      Pier Francesco Sammartino, European Commission, DG GROW
    • 04:51pm - 05:05pm: RED and CSA Standardisation Challenges, TC Cyber Chair's Perspective
      Alex Leadbeater, BT, ETSI TC CYBER Chair
    • 05:06pm - 05:22pm: The Security Standardization Challenge
      Ben Kokx, Philips, CEN/CENELEC
    • 05:23pm - 05:34pm: ETSI Deliverables in Support of New RED Article 3(3)(i) on Combination of SW & HW
      Markus Mueck, Intel, ETSI TC RRS Acting Chair
    • 05:35pm - 05:49pm: Securing the IoT - RED and the Rest
      Alberto Di Felice, Digital Europe
    • 05:49pm - 05:59pm: Coffee Break and Meeting Hub
      Please use this opportunity to connect with other attendees with the Meeting Hub
    • 06:00pm - 06:20pm: Panel Discussion and Live Q&A
      Moderator: Claire Vishik, Intel; Panelists: Alex Leadbeater, BT - Ben Kokx, CEN/CENELEC - Markus Mueck, Intel - Alberto Di Felice, Digital Europe 
    • 06:20pm - 06:23pm: Conclusion
      Claire Vishik Intel/TDL
    • 06:23pm - 06:30pm: End of Event and Closing Remarks
      Alex Leadbeater, BT, ETSI TC CYBER Chair
  • On-Demand Content
  •  
     

    The following on-demand content will be accessible during and after the event from the virtual event platform. 

    • Keynote: Dr. Hacklove — How I Learned to Stop Worrying and Love the Risk
    • Karsten Nohl, SRLabs
    • Challenges from the Past and Future of Mobile Cryptography
    • Steve Babbage, Vodafone
    • Smart Secure Platform: the Next Generation Secure Element
    • Stephane Bandin, Orange – ETSI TC SCP TEC Chairman
    • Trusted Infrastructure for Fixed 5G Networks
    • Scott Cadzow, F5G Security rapporteur
    • ETSI DRAFT Standard on Security Assessment for Consumer Mobile Device
    • Gao Linyi, Huawei, TS 103 732 rapporteur
    • ETSI CYBER Quantum-Safe Cryptography TC
    • Matthew Campagna, Sr. Principal Security Engineer, Cryptography, Amazon AWS
    • On the Limits of Cybersecurity Tests Under the RED
    • Vangelis Gazis, Huawei
    • European Cybersecurity Legislation and its Impact on Standardization and Declaration of Conformity
    • Benjamin Helfritz, DIN with technical contributor Gisela Meister, Eurosmart

     

Securing AI

  • Alex Cadzow, C3L
  • Tieyan Li, Huawei
  • George Sharkov, European DIGITAL SME Alliance & SBS
  • Colin Whorlow, NCSC

IoT Security

  • François Ambrosini, Umlaut
  • Jean-Pierre Quémard, KAT
  • Davide Pratone, Huawei  

NFV

  • Alex Leadbeater, BT, Chair ISG NFV SEC
  • Dario Sabella, INTEL, ETSI MEC Chair
  • Colin Whorlow, NCSC MEC

MEC

  • Dario Sabella, INTEL, ETSI MEC Chair
  • Alan Hayward, NCSC

European Security Policy

  • Colin Whorlow, NCSC
  • François Ambrosini, Umlaut
  • George Sharkov, European DIGITAL SME Alliance & SBS
  • Dario Sabella,  INTEL, ETSI MEC Chair
  • Slawomir Gorniak, ENISA
  • Davide Pratone, Huawei  
Any Questions? Contact us