RESOLUTION ON CYBER SECURITY

    1. Recalling that in the contemporary world modern information societies depend significantly on cyberspace – an electronic environment including products, services and information,
    2. Recognizing the fact that cyber attacks in any form have become a serious security threat, which cannot be ignored or underestimated,
    3. Underlining that insecurity in our common cyberspace is an obstacle for further economic development, innovation and social prosperity,
    4. Recognizing that cyber attacks can be a society-wide challenge, including governments, private companies, non-governmental organizations and private Internet users, because they may destabilize society, jeopardize the availability of public services and the functioning of vital state infrastructure,
    5. Reiterating that any country that relies extensively on cyberspace might be influenced by cyber attacks the same way as by conventional acts of aggression,
    6. Stressing that meeting the new demands of the changed security environment is not only a challenge for those countries directly affected by the new situation but a challenge for every single country in the world,
    7. Recognizing that the continuing globalization and interoperability of information systems will make cyberspace even more vulnerable and that the new security techniques and strategies may not respond sufficiently to this increased vulnerability,
    8. Noting that the Internet has always been fuelled by policies that promote the free flow of information and that protect human rights and foster innovation, creativity, and economic growth,
    9. Convinced that the OSCE could play a useful role in providing a platform for policy makers, relevant experts and other stakeholders by broadening the discussion on cyber security,
    10. Acknowledging that countering cyber threats requires a significant increase of assets in terms of improving awareness, training, and investments in technology as well as advancing conceptual and doctrinal approaches,
    11. Welcoming the discussions in international forum on how to respond effectively to the abuse of cyberspace for espionage, criminal, terrorist and military purposes and the discussions and decisions initiated by NATO, Parliamentary Assembly of the Council of Europe, and elsewhere,
    12. Recognizing that cyber security has become a matter of substantial concern to, inter alia, the Council of Europe, the EU, NATO and the UN General Assembly,
    13. Reaffirming the role of the OSCE as a regional arrangement under Chapter VIII of the UN Charter and a key instrument for early warning, conflict prevention, crisis management and post-conflict rehabilitation in its area,
    14. Reiterating its concern over the persistence of cyber attacks in various places of the OSCE area,
    15. Recognizing the previous work done in the OSCE with respect to various aspects of cyber-security, in particular the OSCE Informal Working Group Established by PC Decision 1039, tasked to elaborate a set of draft confidence-building measures (CBMs) to enhance interstate co-operation, transparency, predictability and stability and to reduce the risks of misperception, escalation and conflict that may stem from the use of information and telecommunication technologies (ICT),
    16. Underlining the urgent need for the international community to increase co-operation and information exchange in the field of cyber security, because only with joint and co ordinated efforts is it possible to effectively respond to the threats originating from cyberspace,
    17. Stressing that the Council of Europe Convention on Cybercrime of 2001 is the only legally binding multilateral instrument specifically addressing the computer-related crime, but it has been ratified or acceded to by 39 states only,
    18. Welcoming the fact that several OSCE participating States have already developed and adopted countermeasures against various kinds of cyber threats, and noting however the countermeasures have been mostly internal and cannot be effective in the worldwide-networked environment,
    19. Emphasizing the commitment of OSCE participating states to respect and foster the principles of international law,

The OSCE Parliamentary Assembly:

    1. Recommends that the OSCE could function as a regional mechanism supporting, co ordinating and reviewing the development and implementation of national activities in this field, building on and furthering previous activities related to various aspects of cyber security;
    2. Expresses its regret that the international community has been unable to agree on specific countermeasures against cyber threats so far;
    3. Maintains that the results of a cyber attack against vital state infrastructure do not differ in nature from that of a conventional act of aggression;
    4. Notes that cyberspace has been an environment to promote the free flow of information, to foster innovation and economic growth and should remain so;
    5. Calls upon OSCE participating States to promote and facilitate access to the Internet and international co-operation aimed at the development of media and information and communications facilities in all countries;
    6. Urges the parliamentarians of OSCE participating States to intensify their efforts in convincing the parliaments and governments in their countries that threats originating from cyberspace are one of the most serious security challenges of present time, which can jeopardize the way of life of modern societies and civilization as a whole;
    7. Urges Governments to take a leading role in defending a free and safe cyberspace, unequivocally condemn cyber attacks and seek common effective solutions to protect cyberspace from misuse and malicious activities;
    8. Notes the OSCE's efforts made to increase transparency and stability and to reduce risks stemming from cyberspace;
    9. Urges OSCE participating States to use its comprehensive and cross-dimensional approach to security and to continue its efforts on the development of CBMs in cyber security;
    10. Stresses the need to tackle cyber threats without undermining fundamental rights and freedoms, and that the same rights that people have offline must also be protected online, in particular freedom of expression;
    11. Urges OSCE participating States and all other members of the international community to consider joining the Council of Europe Convention on Cybercrime and follow its provisions;
    12. Urges OSCE participating States to consider joining also the Council of Europe Convention on the Prevention of Terrorism, which offers additional instruments for preventing cyber attacks by terrorist groups and use of the Internet for terrorist purposes;
    13. Draws attention to the need to study existing legal acts concerning cyber security and to find supplementary means, including harmonization of the relevant legislation of States, to make international co-operation in the field of cyber security more efficient;
    14. Urges all parties involved to search, in good faith, for negotiated solutions in the field of cyber security in order to achieve a comprehensive and lasting settlement which shall be based on the norms and principles of international law;
    15. Calls upon all parties to make full use of available dialogue mechanisms and formats in a constructive spirit;
    16. Supports all efforts to enhance information exchange on relevant experiences and best practices, also involving relevant actors from the private sector and civil society, and to establish public-private partnerships in this regard;
    17. Encourages OSCE participating States to develop, adopt and implement national action plans on cyber security;
    18. Urges OSCE participating States to adopt anticipatory measures in order to prevent security incidents, and to increase the security awareness of information and communication technology users;
    19. Welcomes the proposal to hold a conference or a round-table for OSCE parliamentarians, taking into account and building on previously held OSCE events related to various aspects of cyber security, and to gain, through the help of experts, detailed information on all relevant aspects of the issue;
    20. Asks the representatives of OSCE participating States to forward this resolution to the governments and parliaments of their countries.