Page 1 of 3

ISSUE: 2

QUESTION OF: The question of Internet security

CO-SUBMITTERS:Republic of Finland, United States of America, Saudi Arabia, Norway, Malaysia, Japan, Sweden, Portugal, Syria, Israel, Niger.

THE SPECIAL CONFERENCE,

Aware of the importance that has taken the Internet as a medium of connection for many in society today,

Affirming the many advantages the Internet offers for consumers such as efficiency, ease and more choice between different products and services than ever before,

Recognizing its lack of security as many early protocols that are now part of the Internet were not designed with security features,

Deeply concerned about the quickly-executed criminal attacks that are difficult to detect or trace due to complications to keep protection, as the Internet is a very dynamic environment,

Fully alarmed about statistics saying that United States paid $7.8 billion over two years to replace computers that were affected by viruses, spam and spy ware or that one in four consumers has had problems caused by viruses every six moths,

Observing that consumers are more vulnerable than they think as they do not have the expertise to defend themselves against viruses, spam and spy ware (survey conducted by the National Cyber Security Alliance),

Noting further that security suites do not live up to consumer expectations as they detect digital threats, but do not eliminate them all and their quality shifts over years,

Convinced that due to fundamental security flaws of the Internet and the lack of sufficient security measures are taken by industry, consumers are not able to act effectively to protect themselves,

Desiring all relevant nations to inform themselves of the Universal Declaration of Human Rights (UDHR) created in 1948 by the United Nations General Assembly as a result of World War II, promoting the idea of peace, cooperation and security of the individual,

Noting further that as of June 3, 2011 access to the Internet is a human right, and that "disconnecting people from the internet is a human rights violation and against international law",

1)Urges that all governments enact new laws obliging electronic providers to protect the security of electronic products and services through appropriate measures;

2)Proclaims to settle legal obligations for Internet Service Providers to provide safe networks as well as informing consumers about probable security infringement in their systems, by adopting legislation clarifying limitations on retention of personal data within a timespan necessary for the fulfilment of the original purpose of gathering said data;

3)Encourages providers of electronic products and services to be legally accountable for losses as a result of damage caused by not taking the appropriate security measures, such as:

a)The encryption on websites to protect personal information;

b)Parental Control:

i)Use of a secure password system;

c)Implanting an "https" protocol in their websites whenever possible;

4)Recommends editing an action plan for Internet security which should include:

a)Technology-neutral;

b)Dynamic standards for security products and services;

c)Certification scheme for privacy and security enhancing technologies developed, monitored by the industry and enforced by the National regulatory authorities;

5)Requests security to be the default setting so that there should be regulations to ensure that the default security setting is part of the level playing field. These regulations should provide the means to ensure the weeding out of commercial initiatives that provide and contribute to insecure digital products, services and networks;

6)Asks nations to establish effective enforcement mechanisms to prevent large scale economic damages as a result of security breaches;

7)Suggests the creation of a governmental organisation with the purpose of investigating certain websites to check if they are legitimate or not: the Organisation to Ensure the Internet Security. The purpose of this organization is to raise awareness amongst consumers about security measures and existing rights and remedies by:

a)Providing information about vulnerabilities;

b)Inclusion in the school's yearplan program of an obligatory course of study concerning the main topics related to safety on the Internet;

c)Advising costumers before ordering Internet services;

d)Publicity campaigns such as:

  1. Advertisement clips;
  2. The creation of a UN website about Internet Security;

8)Supports the implementation of harsher sanctions on groups that violate the security protocol of the Internet that:

  1. Invade the privacy of the individual user by identity theft;
  2. Illegally access information from secure, confidential sources;
  3. Create and distribute destructive viruses;

9)Considers that Internet service providers should provide free information about Internet security and provide free and adequately working spam filters, virus scanners and firewalls;

10)Invites network providers to monitor their network integrity continually and create mechanisms to ensure network integrity;

11)Proclaimsthat companies and businesses should agree to not use any malware, spyware and remote manipulation of external computers, and to name and shame companies and businesses that do not comply with this rule;

12)Decides to be actively seized in the matter.