ETSI Security Week 2021

ETSI Security Week 2021 AGENDA (14-18 June).

The detailed programme of the event is provided below. 

• 14 June 2021 - KEYNOTE: DR HACKLOVE - The Challenges we will Face in Security and the Mistakes of the Past
• 2.00pm

  2.40pm

  14 JUNE

•  

   

  • 02.00pm - 02.05pm: Opening of ETSI Security Week 2021
  Luis Jorge Romero, ETSI Director General
  • 02.06pm - 02.24pm: Keynote - Dr. Hacklove — How I learned to Stop Worrying and Love the Risk
  Karsten Nohl, SRLabs
  • 02.25pm - 02.40pm: Coffee Break and Meeting Hub
• 14 June 2021 - Securing Artificial Intelligence (AI)
• 2.40pm

  5.15pm

  14 JUNE

•  

   

  Session: An Introduction to the Problems and Solutions to Securing AI

  The Securing Artificial Intelligence Industry Specification Group (ISG SAI) develops technical specifications that mitigate against threats arising from the deployment of AI, and threats to AI systems, from both other AIs, and from conventional sources. The two webinar topics of the 1st Session being presented are:

  • 02.40pm - 02.59pm: Security for AI: Problem Statement
  Paul Miller, CSIT, QUB
  • 03.00pm - 03.15pm: Introduction to ETSI ISG SAI-GR-005 Mitigation Strategy Report
  Hsiao-Ying Lin, Huawei
  • 03.15pm - 03.30pm: Coffee Break & Meeting Hub
  • 03.30pm - 03.59pm: Live Q&A
  Moderator: Li Tieyan, Huawei, Panelists: Paul Miller, CSIT, QUB - Hsiao-Ying Lin, Huawei
•  

   

  Session: Testing and Securing AI Talks

  The purpose of Security Testing is to identify objectives, methods and techniques that are appropriate for security testing of AI-based systems. The goal is to have guidelines for testing of AI and AI-based system taking account of the different algorithms. The live discussion panel is made up of members of the SAI group and industry who represent academy, small business, large enterprise, standards development and government viewpoints. They will discuss the work of the group, problems or solutions the group aims to solve and answer the audience’s queries and questions about securing AI.

  • 04.00pm - 04.24pm: Introduction to ETSI ISG SAI-GR-003 “Security Testing of AI”
  Martin Schneider, Fraunhofer FOKUS
  • 04.25pm - 04.40pm: Coffee Break & Meeting Hub
  • 04.40pm - 05.10pm: Panel Discussion with Live Q&A
  Moderator: Scott Cadzow, C3L Panelists: Hsiao-Ying Lin, Huawei - Paul Miller, CSIT, QUB - Apostolos Malatras, ENISA - Martin Schneider, Fraunhofer FOKUS
  • 05.10pm - 05.15pm: End of Day Closing Remarks
  Scott Cadzow, C3L
• 15 June 2021 - Internet of Things (IoT)
• 2.00pm

  5.30pm

  15 JUNE

•  

   

  Session: IoT and the Next Cybersecurity Act Scheme

  Within the context of the Cyber Security Act an IoT certification scheme will be defined. This session will explore the roadmap of the ENISA certification schemes, to which extend the EUCC and EUCS schemes can be used for IoT security and the background of the existing standards such as EN 303 645 and the upcoming EN 17640.

   

  • 02:00pm - 02:05pm: Introduction
  Andreas Mitrakas, ENISA
  • 02:05pm - 02:20pm: Cybersecurity Certification Framework, An Update
  Andreas Mitrakas, ENISA 
  • 02:21pm - 02:39pm: IoT and the European Cybersecurity Certification Framework
  Aristotelis Tzafalias, EC DG CNCT
  • 02:40pm - 02:54pm: EN 303 645: The European Standard on Connected Device Security
  Jennifer Graham, DCMS
  • 02:55pm - 03:14pm: dEN 17640 Fixed-time cybersecurity evaluation methodology for ICT products
  Miguel Bañon, SC27 WG3 convenor, JTC13 WG3 convenor
  • 03.15pm - 03.29pm: Coffee Break and Meeting Hub
•  

   

  Session: The Challenges on IoT CSA Scheme Definition, Feedback from the Field

  What is the feedback and the experience of industry, government agencies, laboratories around IoT certification?

  • 03:30pm -03:49pm: IoT Security Certification: The Industry Point of View
  Davide Pratone, Huawei
  • 03:50pm - 04:04pm: Automation as a Key for Cost-Effective and Scalable IoT Security Certification
  Roland Atoui, Red Alert Labs
  • 04:05pm - 04:21pm: GCF Consumer IoT Security Accreditation Programme
  Asif Hamidullah, Global Certification Forum Ltd (GCF) 
  • 04:22pm - 04:39pm: Cybersecurity Labelling Scheme – Singapore Experience
  Henry TAN, Cyber Security Agency of Singapore (CSA)
  • 04.40pm - 04.54pm: Coffee Break and Meeting Hub
  • 04:55pm - 05:25pm: Panel Discussion and Live Q&A: What are the Positive Points, What are the Roadblocks, How to Solve it? The Next Steps
  Moderator: Jean-Pierre Quémard, CEO KAT,  Panelists: Roland Atoui, Red Alert Labs - Asif Hamidullah, GCF - Henry Tan, CSA - Davide Pratone, Huawei
  • 05.25pm - 05.30: End of Day Closing Remarks
  Chair: Jean-Pierre Quémard, KAT
• 16 June 2021 - Network Function Virtualization (NFV)
• 2.00pm

  4.00pm

  16 JUNE

•  

   

  • 02:00pm - 02:05pm: Introduction
  Alex Leadbeater, BT, Chair ISG NFV SEC
  • 02:05pm - 03:00pm:  An Introduction to NFV Security Challenges and ETSI NFV Security Standards 
    An introduction to begin the NFV day of ETSI Security Week! This talk will start with the basics of what Network Function Virtualisation is and isn't, before moving into the complexity of the NFV security model – the risks, threats and vulnerabilities that need to be tackled for the future. Finally, we take a look at where standards – and particularly ETSI standards – mitigate and address these critical issues.
    Alex Leadbeater, BT, Chair ISG NFV SEC
  • 03:01pm - 03:22pm: Bringing Trust to 5G Networks
    The impacts of 5G on our daily life will be massive, with promises of high-speed connections, ultra-low latency, and long battery life for low-power IoT devices. This fifth-generation telecom standard shifts the underlying networks to software-centric open architectures. This openness speeds innovation but also introduces security risks. In this session, some of the security challenges facing modern Telcos as they adopt cloud-native technologies will be discussed, and how Thales is uniquely positioned to help address these challenges to enable continued innovation.
    Rohini Deepak, Thales Research and Innovation group
  • 03:22pm - 03:35pm: Coffee Break and Meeting Hub
  • 03:35pm - 03:55pm: Live Q&A and Closing Remarks
    Rohini Deepak, Thales - Alex Leadbeater, BT
  • 03.55pm - 04.00pm: Closing Remarks
    Alex Leadbeater
  • End of Day
• 17 June 2021 - Multi-access Edge Computing (MEC)
• 2.00pm

  5.30pm

  17 JUNE

•  

   

  Done correctly, MEC (Multi-access Edge Computing) can bring significant benefits to us as digital citizens, our economies and increase network resilience. MEC deployments are coming together with the progressive introduction of 5G networks, and MEC technology is serving many important use cases for 5G, also coming from various vertical market segments (e.g. automotive, industrial IoT, gaming, etc.).Such technology increases the versatility of commercial offerings, gives the ability to scale quickly and efficiently in a world driven by consumers and an ever-increasing pace of technological change. Conversely, should we fail to write and implement world class standards the opposite is true. Indeed, what is the benefit of MEC in increasing security and privacy locally at the edge? Or are there also challenges for edge computing deployments? What are the real security risks and how do we plan to counter those? What are the requirements from operators and customers, especially from many verticals? What are the next steps for the standardization in the domain of MEC?   

  Session: Standardization Overview on MEC Security 

  • 02:00pm -02:04pm: Welcome and Introduction
  Dario Sabella, Intel, ETSI MEC Chair
  • 02:05pm -02:19pm: Security Standards for the Edge Value Chain
  Vangelis Gazis, Huawei, TC CYBER delegate
  • 02:20pm -02:40pm: Security Aspects of ETSI MEC Specifications
  Alex Reznik, HPE, former ETSI MEC Chair
  • 02:40pm -02:55pm:  Coffee Break and Meeting Hub
  • 02:55pm - 03:40pm: Panel Discussion and Live Q&A
  Moderator: Dario Sabella, Intel; Panelists: Vangelis Gazis, Huawei -  Alex Reznik, HPE
•  

   

  Session: MEC Security: A Market Segments Perspective

  • 03:41pm - 03:44pm: Welcome and Introduction
  Ian W, NCSC Senior TD Chair
  • 03:45pm - 03:54pm: Security Challenges and Recommendations for 5G Edge Computing
  He Chengdong, Huawei
  • 03:55pm - 04:09pm: Security in the Edge Continuum
  Diego Lopez, Telefonica
  • 04:10pm - 04:19pm: MEC Security: An Automotive Perspective from 5GAA
  Virendra Kumar, Qualcomm, Chair of 5GAA Security and Privacy Working Group
  • 04:20pm - 04:32pm: Software Security and Maintenance for MEC devices
  George Grey, Foundries.io
  • 04:33pm - 04:49pm: Coffee Break and meeting Hub
  • 04:50pm- 05:25pm: Panel Discussion and Live Q&A
  Moderator: Ian W, NCSC; Panelists: He Chengdong (Dony), Huawei - Diego Lopez, Telefonica - Virendra Kumar, Qualcomm - George Grey, Foundries.io
  • 05:25pm - 05:30pm: Closing remarks from the two Session Chairs
  Dario Sabella, Intel -  and Ian W, NCSC
  • End of Day
• 18 June 2021 - Cyber Security Policy
• 2.00pm

  6.25pm

  18 JUNE

•  

   

  Session: Next Steps to the Cybersecurity Act

  This session will focus on the following topics followed by a panel discussion and a Live Q&A:

  1. Future plan for standards under the CSA
  2. 5G certification under the CSA
  3. Transition from current schemes to CSA schemes
  4. Return of experience on the new procedures and the accreditation of labs
  5. Impact to and contribution from SMEs  

   

  • 02:00pm - 02:05pm: Introduction 
    Chair: Claire Vishik Intel / TDL
  • 02:06pm - 02:23pm: Standardisation and Certification under CSA
    Slawomir Gorniak, ENISA
  • 02:24pm - 02:40pm: GSMA’s Network Equipment Security Assurance Scheme in the Context of EU CSA
    James Moran, GSMA
  • 02:41pm - 02:55pm: Towards Implementing the Cybersecurity Act
    Philippe Magnabosco, ANSSI
  • 02:56pm - 03:22pm: Digitisation - The Next Generation
    Matthias Intemann, Head of Branch Certification Procedures, BSI, Germany
  • 03:23pm - 3:51pm: SMEs in a Multi-Standard World: Critical Factor for Digital Single Market & Industry 4.0
    George Sharkov, European DIGITAL SME Alliance & SBS 
  • 03:52pm - 04:05pm: Coffee Break and Meeting Hub
    04:05pm - 04:25pm: Panel Discussion and Live Q&A
  • Moderator: Claire Vishik, Intel; Panelists: Slawomir Gorniak, ENISA - James Moran, GSMA - Philippe Magnabosco, ANSSI - Matthias Intemann, BSI, Germany - George Sharkov, SBS / Digital SME Alliance
  • 04:25pm - 04:30pm: Conclusion
    Moderator: Claire Vishik Intel/TDL
•  

   

  Session: Security Under the Radio Equipment Directive and the Interactions with the Cybersecurity Act

  This session will more particularly deal with the following topics followed by a panel discussion and a Live Q&A:

  1. Challenges faced by standardisers and possible ways forward
  2. EU COM objectives and long-term approach to security under the EU legislation
  3. Manufacturer’s view to security under the RED
  4. EU market access and security, staying relevant in an ever-evolving threat  

   

  • 04:31pm - 04:35pm: Introduction
    Chair: Claire Vishik, Intel / TDL
  • 04:36pm - 04:50pm: State-of-Play on the RED
    Pier Francesco Sammartino, European Commission, DG GROW
  • 04:51pm - 05:05pm: RED and CSA Standardisation Challenges, TC Cyber Chair's Perspective
    Alex Leadbeater, BT, ETSI TC CYBER Chair
  • 05:06pm - 05:22pm: The Security Standardization Challenge
    Ben Kokx, Philips, CEN/CENELEC
  • 05:23pm - 05:34pm: ETSI Deliverables in Support of New RED Article 3(3)(i) on Combination of SW & HW
    Markus Mueck, Intel, ETSI TC RRS Acting Chair
  • 05:35pm - 05:49pm: Securing the IoT - RED and the Rest
    Alberto Di Felice, Digital Europe
  • 05:49pm - 05:59pm: Coffee Break and Meeting Hub
    Please use this opportunity to connect with other attendees with the Meeting Hub
  • 06:00pm - 06:20pm: Panel Discussion and Live Q&A
    Moderator: Claire Vishik, Intel; Panelists: Alex Leadbeater, BT - Ben Kokx, CEN/CENELEC - Markus Mueck, Intel - Alberto Di Felice, Digital Europe 
  • 06:20pm - 06:23pm: Conclusion
    Claire Vishik Intel/TDL
  • 06:23pm - 06:30pm: End of Event and Closing Remarks
    Alex Leadbeater, BT, ETSI TC CYBER Chair
• On-Demand Content
•  

   

  The following on-demand content will be accessible during and after the event from the virtual event platform. 

  • Keynote: Dr. Hacklove — How I Learned to Stop Worrying and Love the Risk
  Karsten Nohl, SRLabs
  • Challenges from the Past and Future of Mobile Cryptography
  Steve Babbage, Vodafone
  • Smart Secure Platform: the Next Generation Secure Element
  Stephane Bandin, Orange – ETSI TC SCP TEC Chairman
  • Trusted Infrastructure for Fixed 5G Networks
  Scott Cadzow, F5G Security rapporteur
  • ETSI DRAFT Standard on Security Assessment for Consumer Mobile Device
  Gao Linyi, Huawei, TS 103 732 rapporteur
  • ETSI CYBER Quantum-Safe Cryptography TC
  Matthew Campagna, Sr. Principal Security Engineer, Cryptography, Amazon AWS
  • On the Limits of Cybersecurity Tests Under the RED
  Vangelis Gazis, Huawei
  • European Cybersecurity Legislation and its Impact on Standardization and Declaration of Conformity
  Benjamin Helfritz, DIN with technical contributor Gisela Meister, Eurosmart

   

Securing AI

• Alex Cadzow, C3L
• Tieyan Li, Huawei
• George Sharkov, European DIGITAL SME Alliance & SBS
• Colin Whorlow, NCSC

IoT Security

• François Ambrosini, Umlaut
• Jean-Pierre Quémard, KAT
• Davide Pratone, Huawei  

NFV

• Alex Leadbeater, BT, Chair ISG NFV SEC
• Dario Sabella, INTEL, ETSI MEC Chair
• Colin Whorlow, NCSC MEC

MEC

• Dario Sabella, INTEL, ETSI MEC Chair
• Alan Hayward, NCSC

European Security Policy

• Colin Whorlow, NCSC
• François Ambrosini, Umlaut
• George Sharkov, European DIGITAL SME Alliance & SBS
• Dario Sabella,  INTEL, ETSI MEC Chair
• Slawomir Gorniak, ENISA
• Davide Pratone, Huawei