[フレーム] [フレーム]

Connecting the world and beyond

FIGI Security, Infrastructure and Trust Working Group (SIT ​WG)

Rollup Image
Page Content 20
​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​  
The Security, Infrastructure, and Trust Working Group is led by ITU and is composed of four workst​reams:​
  • ​Security
  • Distributed Ledger Technology for Financial Inclusion (DLT-FI​)
  • Quality of Service​​
  • Trust
The main ​activities of the Security, Infrastructure, and Trust Working Group are:
  • DFS Application Security: Conduct systematic research to investigate the security of USSD, STK toolkit and biometrics use in DFS to develop best practices for developers and security measures and controls for mitigating such risks
  • Establish lab/sandbox in ITU for security testing of DFS applications
  • Infrastructure Security: Develop security measures to mitigate the risk of SS7 vulnerabilities and other cybersecurity-related threats which could impact the DFS provider network and payment system infrastructure
  • Security Assurance Framework for DFS: Develop tools to assess DFS provider security compliance, for user confidence, with respect to safeguarding the privacy of customer data, preventing fraud in DFS and resilience of the DFS system to cyber attacks
  • Develop regulatory and policy guidelines to address digital fraud and protect the privacy of consumer data in Digital Financial Services to create trust in consumer use of DFS (i.e. address cases of social engineering, Ponzi schemes, data security, and privacy issues).
  • Investigate distributed ledger technology security in DFS
  • Undertake research to investigate KPIs for QoS monitoring based on FG DFS report on QoS, and develop a technical and regulatory toolkit​ on QoS measurement for telecom regulators
  • Investigate interoperable authentication technologies for securing DFS
  • Organize workshops on topics of interest to the Security, Infrastructure and Trust Working group to disseminate the outputs for adoption by DFS stakeholders
Link to access the meeting documents.

Security Workstream

Page Content 2
​​The main tasks of the Security Workstream are as follows:
  • DFS Application Security: Conduct systematic research to investigate security of USSD, STK toolkit and biometrics use in DFS to develop best practices for developers and security measures and controls for mitigating such risks
  • Establish lab/sandbox in ITU for security testing of DFS applications
  • Infrastructure Security: Develop security measures to mitigate the risk of SS7 vulnerabilities and other cybersecurity related threats which could impact the DFS provider network and payment system infrastructure
  • Security Assurance Framework for DFS: Develop tools to assess DFS provider security compliance, for user confidence, with respect to safeguarding the privacy of customer data, preventing fraud in DFS and resilience of the DFS system to cyberattacks
Developer resources
Output Documents 
Published Recommendation​s and Technical Reports

Quality Of Service Workstream

Page Content 3
The main objectives of this workstream are to: 
  • Provide a solid information base for insights into the relation between network and service performance.
  • Undertake field tests for end-to-end quality metrics assessment for DFS. The methodology will consist of performing respective use cases on the same portfolio of end-user devices which are actually used, with tool-assisted acquisition of information on DFS service quality and netwo​rk conditions.
  • Develop a methodology and toolkit for telecom regulators for the measurement of key performance indicators (KPIs) for QoS and QoE for ​DFS.​
Output Documents​​​
  • Methodology for measurement of Quality of Service (QoS) Key Performance Indicators (KPIs) for Digital Financial Services [PDF]​ I [Flipbook version]​​​​
  • Pilot measurement of QoS KPIs for DFS in Ghana [PDF]
  • Methodology for  measurement of Quality of Service (QoS) Key Performance Indicators (KPIs) for inter-operator and cross-border P2P money transfers [PDF] | [Flipbook version]​
  • Test Campaign Report: Cross-border and inter-operator testing of Digital Financial Services, P2P money transfer [PDF]
Published Recommendation

DLT-FI Workstream

Page Content 4
​The workstream will investigate ​​​​​​whether distributed ​ledger technology can be used to secure digital financial services transactions, review the security aspects of distributed ledger technologies as well as technological and regulatory trends in the Distributed Ledger Technology (DLT) and Digital Fiat Currency (DFC) spaces and will include specific policy recommendations for international regulatory bodies to help foster beneficial innovations.

The workstream will also investigate diff​​erences in approach between countries of various levels of economic development with an emphasis on the ability of the technology to promote financial inclusion goals globally. ​
 
Output Documents

Trust Workstream

Page Content 5

The main objectives of the Trust workstream are to: 

  • Undertake an assessment of current strategies and legal and regulatory environment for prevention and combating digital fraud through public private partnerships. 
  • Share lessons learned on existing digital frauds across jurisdictions, specifically so that a scheme that has collapsed in one country does not reopen in another country.
  • Investigate how the telecom and financial services regulators could collaborate to combat such issues and what consumer redress mechanisms could be put in place
  • Develop a digital financial service consumer competence framework which defines the competences consumers need to function actively, safely and assertively in the DFS ecosystem.
  • Investigate the risks that new technologies pose with regards to data privacy and integrity of transactions
Output Documents

Page Content 17

Page Content 16

Page Content 9
Page Content 10
Page Content 18
Page Content 19
Page Content 11
Page Content 12
Page Content 13

MEET THE EXPERTS

Page Content 15
[フレーム]
AI and Financial Inclusion Webinar


[フレーム]
FIGI Security Clinic highlights


[フレーム]
FIGI Security Clinic Expert interviews
Page Content 6
Page Content 7
Page Content 8

JOIN FIGI SIT WG MAILING LIST & SHAREPOINT

Page Content 14
Please s​ubscribe to the SIT WG mailing list for news, updates and announcements:
  1. ​Sign up for a Guest account​​​ (if you do not have a TIES account).
  2. Sign up here and select figisit mailing list.​ Then click on Subscribe
  3. Step by step instructions on how to join the SITWG mailing list and collaboration​ site.
Please subscribe to the FIGI SIT mailing list first using instructions above in order to be able to access the SharePoint site for meeting documents and announcements. ​​ 
Connect to the SIT WG Collaboration Site with your TIES or Guest account.

AltStyle によって変換されたページ (->オリジナル) /