Cybersecurity

SDG indicator 16.a.1. (Tier I. Custodian agency: OHCHR). This indicator Existence of independent national human rights institutions in compliance with the Paris Principles measures the compliance of existing national human rights institutions with the Principles relating to the Status of National Institutions (The Paris Principles), which were adopted by the General Assembly (resolution 48/134) based on the rules of procedure of the Global Alliance of National Human Rights Institutions. For further information on this SDG indicator, please see: https://unstats.un.org/sdgs/metadata/files/Metadata-16-0A-01.pdf

Custodian agency(ies): OHCHR

For further information on this SDG indicator, please see here: https://unstats.un.org/sdgs/metadata/files/Metadata-16-0A-01.pdf 

Technical Notes and Sources complement the Data Tables by providing  additional information for all indicators used in the computation of the Network Readiness Index.
Please see: http://reports.weforum.org/global-information-technology-report-2016/te…;

The Global Cybersecurity Index (GCI) is a multi-stakeholder initiative to measure the commitment of countries to cybersecurity. Cybersecurity has a wide field of application that cuts across many industries and sectors. Each country’s level of development will therefore be analysed within five categories: Legal Measures, Technical Measures, Organizational Measures, Capacity Building and Cooperation.​​​​​
The GCI revolves around the ITU Global Cybersecurity Agenda (GCA) and its five pillars (legal, technical, organizational, capacity building and cooperation). For each of these pillars, questions were developed to assess commitment. Through consultation with a group of experts, these questions were weighted in order to arrive at an overall GCI score. The survey was administered through an online platform through which supporting evidence was also collected. Link to the webpage:https://www.itu.int/en/ITU-D/Cybersecurity/Pages/GCI.aspx. 

Freedom on the Net measures the subtle and not-so-subtle ways that governments and non-state actors around the world restrict our intrinsic rights online. Each country assessment includes a detailed narrative report and numerical score (0=Most Free, 100=Less Free), based on methodology developed in consultation with international experts. This methodology  includes three categories: 
1. Obstacles to Access details infrastructural and economic barriers to access, legal and ownership control over internet service providers , and independence of regulatory bodies;
2. Limits on Content analyses legal regulations on content, technical filtering and blocking of websites, self-censorship, the vibrancy/diversity of online news media, and the use of digital tools for civic mobilization;
3. Violations of User Rights tackles surveillance, privacy, and repercussions for online speech and activities, such as imprisonment, extra-legal harassment, or cyberattacks.
Coverage: Freedom on the Net has expanded from covering 15 countries in our 2009 pilot edition to 65 in the latest report (please check availability for your country of interest before usingthis indicator). Countries are selected on the basis of the size of their internet population, their regional or global relevance, as well as the unique quality of their restrictions or protections on the internet. The countries selected for the report covers 88 percent of the global internet population, ensuring the project analyses the vast majority of users. 

If national data is not available on the number of cyber attack victims, the EU-funded intervention can commission a survey of the target population or organizations. It is also possible to conduct a test with fake phishing emails / malware to see how many people among the target population click on the link.

The EU-funded intervention can conduct a survey of organisations and companies assessing their trust in the use of the cyberspace. This indicator may also use scale of level of trust instead of percentage if more comprehensive information is sought. 

The EU-funded intervention can conduct a survey of individual internet users to assess their trust in the use of the cyberspace. This indicator may also use scale of level of trust instead of percentage if more comprehensive information is sought. 

Public perception survey of population assessing confidence in the capacity of the law enforcement and judicial bodies to tackle cybercrime effectively can be conducted. This indicator may also use scale of level of confidence instead of percentage if more comprehensive information is sought. 

The World Bank indicator calculates the percentage of individuals using internet in a country

If national data is not available on the number of cyber attack victims, the EU-funded intervention can commission a survey of the target population or organizations. It is also possible to conduct a test with fake phishing emails / malware to see how many people among the target population click on the link.

Expert assessment can be carried out to review status of policy development defining the responsibilities and resources of institutions competent for prevention, protection and recovery from cyber attacks and/or accidental failures, as well as status of implementation of policies (positions filled, resources obtained, budgets allocated). 

Identify status of establishment and responsibilities of the national body mandated with cyber crisis management

Identify status of establishment of cyber-related inspection and/or audit services within the individual institutions and bodies responsible for incident and crisis management

It is also possible to adjust this indicator to track the amount of funding in the cybersecurity budget line (or heading), rather than the mere existence of a budget line.

It is important to specify the relevant agencies in the local context before data collection.

Expert assessment can be carried out to review status of legal provisions / regulations on cybercrime and electronic evidence

The Chart of signatures and ratifications of Treaty 185 - Convention on Cybercrime is regularly updated on the Council of Europe website.