Comprehensive Study on Cybercrime

Similar documents
ISACA National Cyber Security Conference 8 December 2017, National Bank of Romania

10007/16 MP/mj 1 DG D 2B

G8 Lyon-Roma Group High Tech Crime Subgroup

UNODC. International Cooperation and Assistance in Cybercrime Matters

LEGAL SOLUTION CYBERCRIME LEGAL SOLUTION LEGAL SOLUTION NATIONAL, REGIONAL, INTERNATIONAL

Project CyberSouth Cooperation on cybercrime in the Southern Neighbourhood

CYBERCRIME LEGISLATION DEVELOPMENT IN NIGERIA AN UPDATE. Octopus Conference, Strasbourg 06 June, 2012

The UNODC Global Programme on Cybercrime Alexandru Caciuloiu CYBERCRIME COORDINATOR SOUTHEAST ASIA AND THE PACIFIC

The commission communication "towards a general policy on the fight against cyber crime"


UNODC/CCPCJ/EG.4/2017/4

UNODC tackling cybercrime in support of a safe and secure AP-IS

China and International Governance of Cybercrime

Promoting Global Cybersecurity

10025/16 MP/mj 1 DG D 2B

The cost of cybercrime the benefits of cooperation

Council of the European Union Brussels, 23 November 2016 (OR. en)

A comprehensive approach on personal data protection in the European Union

Overview on the Project achievements

15412/16 RR/dk 1 DGD 1C

LIMITE EN COUNCIL OF THE EUROPEAN UNION. Brussels, 26 September 2008 (30.09) (OR. fr) 13567/08 LIMITE ENFOPOL 170 CRIMORG 150

UN General Assembly Resolution 68/243 GEORGIA. General appreciation of the issues of information security

Data Preservation Checklists

Scope of the Member State mechanism

RESOLUTION 45 (Rev. Hyderabad, 2010)

EXPERT GROUP MEETING ON CYBERCRIME

A1. Actions which have been undertaken by Governments

Guiding principles on the Global Alliance against child sexual abuse online

QUESTIONNAIRE. Submission Information. Information for follow-up purposes. 21 Abdelaziz Al Saud,Manyal El Roda, Cairo, Egypt

Resolution adopted by the General Assembly on 21 December [on the report of the Second Committee (A/64/422/Add.3)]

Project III Public/private cooperation

MEETINGS OF MINISTERS OF JUSTICE OR OEA/Ser.K/XXXIV

13268/16 EB/dk 1 DGD 1C

COUNCIL OF THE EUROPEAN UNION. Brussels, 24 May /13. Interinstitutional File: 2013/0027 (COD)

National Communications Authority

Developments in the field of information and

Cybercrime and e-evidence: challenges and solutions.

Potential new global legal mechanisms on combatting cybercrime and global cyberattacks

RESOLUTION 130 (Rev. Antalya, 2006)

PROJECT RESULTS Summary

NIGERIAN CYBERCRIME LAW: WHAT NEXT? BY CHINWE NDUBEZE AT THE CYBER SECURE NIGERIA 2016 CONFERENCE ON 7 TH APRIL 2014

Promoting accountability and transparency of multistakeholder partnerships for the implementation of the 2030 Agenda

Draft Resolution for Committee Consideration and Recommendation

T-CY Guidance Note #8 Obtaining subscriber information for an IP address used in a specific communication within a criminal investigation

SEA-Manual. ,,Environmental Protection Objectives. Final report. EIA-Association (Ed.) UVP-Gesellschaft e.v. July 2000

Statement by the President of the European Council. The Hague Nuclear Security Summit. Let me begin by thanking Prime Minister Rutte and the Dutch

International Cooperation in Cybercrime Investigations

RESOLUTION 130 (REV. BUSAN, 2014)

Project III

Cybersecurity & Spam after WSIS: How MAAWG can help

UNODC/CCPCJ/EG.4/2017/CRP.1

The United Nations Crime Trends Survey (UN-CTS) Michael Jandl Statistics and Surveys Section UNODC

Virtual Currencies and The Commonwealth. 1 June 2016

ITU Model Cybercrime Law: Project Overview

ΚΕΝΤΡΟ ΜΕΛΕΤΩΝ ΑΣΦΑΛΕΙΑΣ CENTER FOR SECURITY STUDIES

Committee on Foreign Affairs. on space capabilities for European security and defence (2015/2276(INI))

PUBLIC COUNCIL OF THE EUROPEAN UNION. Brussels, 26 May /03 LIMITE SIRIS 47 CATS 34 ASIM 31 COMIX 330

ENISA s Position on the NIS Directive

A Criminal Intrudes into a Bank in Geneva Korean agents. Canadian agents make the arrest. Argentinian investigators. discover. attack came from Seoul

Resolution adopted by the General Assembly. [on the report of the Second Committee (A/64/417)]

OCTOPUS CONFERENCE COOPERATION AGAINST CYBERCRIME Workshop 1: Policies, activities and initiatives on cybercrime of international organisations

Global Initiatives in Support of Measurements of SDGs

Brussels, 19 May 2011 COUNCIL THE EUROPEAN UNION 10299/11 TELECOM 71 DATAPROTECT 55 JAI 332 PROCIV 66. NOTE From : COREPER

REGIONAL WORKSHOP ON E-COMMERCE LEGISLATION HARMONIZATION IN THE CARIBBEAN COMBATING CYBERCRIME: TOOLS AND CAPACITY BUILDING FOR EMERGING ECONOMIES

2. What do you think is the significance, purpose and scope of enhanced cooperation as per the Tunis Agenda? a) Significance b) Purpose c) Scope

European Investigation Order: Frequently Asked Questions

Cybersecurity Capacity ITU Preetam Maloor Strategy & Policy Advisor 3 March 2015

BRIEFING COMBATING CYBERCRIME: TOOLS AND CAPACITY BUILDING FOR EMERGING ECONOMIES. Geneva 18 April David Satola

European Diplomatic Programme. The EU Global Strategy: from Vision to Action

NIS Directive : Call for Proposals

10496/18 MC/sl 1 DGD 2

OPINION ON THE DEVELOPMENT OF SIS II

ENISA EU Threat Landscape

G7 Bar Associations and Councils

U.S. Japan Internet Economy Industry Forum Joint Statement October 2013 Keidanren The American Chamber of Commerce in Japan

The European Policy on Critical Information Infrastructure Protection (CIIP) Andrea SERVIDA European Commission DG INFSO.A3

13967/16 MK/mj 1 DG D 2B

2. Taking into account the developments in the next five years, which are the actions to be launched at the EU level?

Cybersecurity governance in Europe. Sokratis K. Katsikas Systems Security Laboratory Dept. of Digital Systems University of Piraeus

Legal Foundation and Enforcement: Promoting Cybersecurity

Cyber Security Development. Ghana in Perspective

CSM-ACE 2010 KUALA LUMPUR CONVENTION CENTRE OCTOBER 2010

IMPORTANT GLOBAL CYBERLAW TRENDS 2017

European Union Agency for Network and Information Security

A Multi-Stakeholder Approach in the Fight Against Cybercrime

Background Note on Possible arrangements for a Technology Facilitation Mechanism and other science, technology and innovation issues

ENFORCEMENT POWERS. The EU Perspective. Olivier Proust. Associate Hunton & Williams LLP

General Data Protection Regulation (GDPR)

FIRE REDUCTION STRATEGY. Fire & Emergency Services Authority GOVERNMENT OF SAMOA April 2017

Cybersecurity in Asia-Pacific State of play, key issues for trade and e-commerce

Cybersecurity and Privacy Innovation Forum Brussels, 28 April Keynote address. Giovanni Buttarelli European Data Protection Supervisor

Exploring the European Commission s Network and Information Security Directive (NIS) What every CISO should know

DRAFT PROGRAMME. Exchange of views with experts on the fight against Cybercrime

LIMITE EN COUNCIL OF THE EUROPEAN UNION. Brussels, 21 October /13 LIMITE CO EUR-PREP 37. NOTE General Secretariat of the Council

Netherlands Cyber Security Strategy. Michel van Leeuwen Head of Cyber Security Policy Ministry of Security and Justice

In the Balkans, UNODC is part of the consortium with GIZ and the Center for International Legal Cooperation of the Netherlands who will implement the

Assistant Secretary-General Michèle Coninsx Executive Director, CTED

GLOBAL CYBERSECURITY INDEX 2016

ASEAN s Cyber Confidence Building Measures

Resolution: Advancing the National Preparedness for Cyber Security

Transcription:

Federal Ministry of Justice and 17 August 2016 Consumer Protection German Comments on the Comprehensive Study on Cybercrime (Draft February 2013) The United Nations Office on Drugs and Crime (UNODC) invited the member states to provide the open-ended Intergovernmental Expert Group (IEG) with comments on the draft Comprehensive Study on Cybercrime of February 2013. 1. General remarks The 12 th UN Crime Congress (Salvador, Brazil, April 2010) discussed recent developments in the use of science and technology by offenders and by competent authorities in fighting crime, including the case of cybercrime. The Congress came to the conclusion that further studies in the field of cybercrime were necessary and proposed to set up the Open-ended Intergovernmental Expert Group (IEG). As a result the UN General Assembly in her 71 st plenary meeting on 21 December 2010 recommended in No. 9 of Resolution 65/230 that the Commission on Crime Prevention and Criminal Justice (CCPCJ) should establish such an Expert Group, which should conduct a comprehensive study of the problem of cybercrime and examine options to strengthen existing and to propose new national and international legal or other responses to cybercrime. Since its establishment the IEG had only two meetings (January 2011 and February 2013). Four weeks prior to the second meeting, an executive summary of the Draft Study was made available to the participating States. The complete Draft Study was made available just two weeks prior to the IEG s meeting. Until today the study was not adopted. The 13 th UN CCPCJ in April 2015 just invited IEG to continue its work. In February 2016 the Draft Study was made available in the six official UNlanguages and states are invited to provide comments until 31 August 2016. Before the next meeting of the IEG, it is not sufficient that the States merely have the opportunity to give their comments to the IEG. Rather, it is also necessary that the states have an opportunity to review the responses of the other states in detail. Therefore a meeting in fall or winter 2016 would be clearly too early. page 1 of 5

2. Key findings The eight chapters of the Comprehensive Study dealing with all dimensions of the phenomenon of cybercrime (connectivity and cybercrime; the global picture; legislation and framework; criminalization; law enforcement and investigations; electronic evidence and criminal justice; international cooperation; prevention) open out into six key findings which are mainly convincing. In that sense it is correct that the diversity of cybercrime laws worldwide and multiple instruments lead to the emergence of country cooperation clusters. Furthermore the formal international cooperation is not really able to secure electronic evidence in a timely manner. There also is a need to re-conceptualize location in the context of cloud computing, a need for technical assistance and a need for prevention and holistic approaches. By contrast, key finding d. is not conclusive, insofar as it claims that due to the different national legal frameworks harmonization of the cybercrime offences is insufficient. Especially through the Budapest Convention on Cybercrime of the Council of Europe (CoE-Treaty No. 185; Cybercrime Convention), its Additional Protocol concerning the criminalization of acts of a racist and xenophobic nature committed through computer systems (CoE-Treaty No. 189) and the European Union Directive on attacks against information systems (2013/40/EU) a far-reaching harmonization of criminal law in the field of cybercrime has been reached. These successes at the level of European Union and the Council of Europe are not recognized by the key findings. In Particular the Cybercrime Convention had a meaningful impact on cybercrime legislation worldwide. There has been much progress since 2006 towards greater harmonization of legislation worldwide and fostering as well as accelerating mutual legal assistance, using this treaty as a core or guideline (more details also see below). Furthermore, the EU-Directive on attacks against information systems harmonized substantive criminal law across the 28 European member states in the area of attacks against information systems by establishing minimum rules concerning the definition of criminal offences and the relevant sanctions. Thus also indirectly the mutual legal assistance in Europe has been simplified and made more effective. 3. Observations regarding Options As a conclusion derived from the mentioned key findings the Study finds that options to strengthen existing and to propose new national and international legal or other responses to cybercrime may include model provisions (key findings a. d.) on core cybercrime acts investigative powers for electronic evidence page 2 of 5

jurisdiction international cooperation regarding electronic evidence and/or the development of a multilateral instrument (key findings e. f.) on international cooperation regarding electronic evidence on cybercrime, with a view to establishing an international approach in the areas of criminalization, procedural powers, jurisdiction and international cooperation. From the German point of view United Nations model provisions as well as new multilateral instruments cannot be supported. Both would mean a step back behind the already achieved standards on the level of the European Union and the Council of Europe. At the level of the European Union the Directive on attacks against information systems (2013/40/EU) is in place, whereby the criminal law in the field of cybercrime within the European Union was harmonized. With the Cybercrime Convention an effective treaty and guideline is already in place and functioning. The efforts of the United Nation in the field of cybercrime should focus on strengthening of international, national and regional partnerships, including with the private sector and academic institutions, to support matters of technical assistance and capacity building for prevention and combating of cybercrime in developing countries (key finding g.). The comprehensive study proposes options, which refer to the establishment of new model provisions and/or multilateral instruments as a response to cybercrime. In that respect, Germany has the following general objections: 1. There is a lack of consensus on the need for model provisions and/or multilateral instruments on cybercrime. The possibility of such solutions has been discussed since the 11 th UN Congress on Crime Prevention and Criminal Justice in 2005. The debate on that topic continued over years, without any consensus to establish model provisions and/or multilateral instruments. The topic was also on the agenda of 12th UN Crime Congress and it was concluded to set up the open-ended intergovernmental Expert Group which should be tasked with further studies. Since then, there were only two meetings of the Expert Group on cybercrime (last meeting in February 2013), but the Expert Group has the study not yet accepted. Also the 13th UN Crime Congress only concluded to invite the Expert Group to continue its work. Thus, there is also no prospect of an required substantive consensus in the nearer future. page 3 of 5

2. There is no need for (additional) model provisions and/or multilateral instruments at the level of the United Nations in addition to the Cybercrime Convention. According to Article 37 of the Cybercrime Convention states which are not a member of the Council of Europe can accede to the Convention. At the moment the total number of ratifications of the Cybercrime Convention is 49 states. Another six states signed the Convention and another eleven states were invited to accede; additional accession requests are being processed. At least a huge number of other States worldwide had already used this treaty as a guideline or at least as a source of inspiration for the development of domestic legislation. By adopting Guidance Notes and Additional Protocols the Budapest Convention keeps evolving and up to date. This applies especially to the area of provisions on investigative powers regarding electronic evidence, international cooperation and other current problems. To get these issues under control the Cybercrime Convention Committee inter alia assessed the implementation of the preservation provisions of the Convention assessed the mutual legal assistance provisions of the Convention in general examined the problem of emergency requests for the immediate disclosure of data stored in another jurisdiction through mutual legal assistance channels or through direct requests to service providers established the Cloud Evidence Group (CEG which works on the criminal justice access to electronic evidence in the cloud, by cooperation with foreign internet service providers and with data protection organizations) drew up a Guidance Note on Terrorism drew up a Guidance Note on Production Notes 3. The development of model provisions and/or multilateral instruments on Cybercrime would inevitably lead to a lowering of already achieved standards. Considering diverging views on the need for and potential scope of new model provisions/multilateral instruments in general, such instruments would in all likelihood be rather basic in scope and depth. That would be a fatal signal, which would be sent out by the UN. Especially developing countries would base their regulations on such UN-provisions. The standards laid down e.g. in the Cybercrime Convention and in the EU-Directive on attacks against information systems would be undermined in this way. Moreover, a broad scope of such a Treaty on the level of the UN is not feasible because there is no consensus about the scope of such a treaty. While some proponents of a new treaty favor an instrument covering not only cybercrime but also page 4 of 5

cyberterrorism and cyber warfare, others appear to be opposed to including terrorism or state-to-state matters. 4. A lot of reforms underway would be disrupted through negotiations of model provisions and/or multilateral instruments at the level of the UN. A big majority of States worldwide has undertaken or is in the process of undertaking reforms of legislation on cybercrime and electronic evidence (e.g. with the aim to accede the Cybercrime Convention). To negotiate a new treaty would lead to a disruption of the reform efforts. States that have gone through complex reforms maybe are unlikely to repeat the process and States in the process of reforms cannot afford to wait for several years for the completion of a UN treaty. 4. Conclusions These arguments (3.1 to 3.4) lead to the following conclusion: Germany opposes the development of international model provision on criminalization of core cybercrime acts (option a.) or the development of a comprehensive multilateral instrument on cybercrime (option f.). We also refuse the development of international model provisions on investigative powers regarding electronic evidence (option b.), on jurisdiction (option c.), on international cooperation regarding electronic evidence (option d.) as well as the development of a multilateral instrument on international cooperation regarding electronic evidence in criminal matters (option e.) From the German point of view it would be much more effective to promote the Budapest Convention on UN-level as a guideline or model law. UN should furthermore focus on the strengthening of international, regional and national partnerships, with a view to delivering enhanced technical assistance for the prevention and combating of cybercrime in developing countries. For this purpose technical assistance should be delivered based on standards of the Cybercrime Convention. Also technical assistance should be delivered through a focus on multistakeholder delivery, including representatives from the private sector and academia. In order to give all the states the opportunity to review the responses of the other states in detail the next meeting of the Expert Group should take place at the earliest in 2017. page 5 of 5

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback