Category: Cyberconflict and warfare

Fondation ICT 4 Peace

ICT 4 Peace Foundation

CyberPeace Institute

Acronym: CyberPeace Institute

Established: 2019

Address: Campus Biotech Innovation Park, 15 avenue de Sécheron, 1202 Geneva, Switzerland

Website: https://cyberpeaceinstitute.org/

Stakeholder group: NGOs and associations

The CyberPeace Institute is an independent and neutral non-governmental organisation (NGO) that strives to reduce the frequency, impact, and scale of cyberattacks, to hold actors accountable for the harm they cause, and to assist vulnerable communities.

The Institute works in close collaboration with relevant partners to reduce the harm from cyberattacks on people’s lives worldwide, and provide assistance. By analysing cyberattacks, it exposes their societal impact and how international laws and norms are being violated, and advances responsible behaviour to enforce cyberpeace.

At the heart of the Institute’s efforts is the recognition that cyberspace is about people. It supports providers of essential services to the most vulnerable members of society, ultimately benefitting us all, like NGOs and the healthcare sector. Attacking them can have a devastating impact on beneficiaries and patients, putting their rights and even lives at risk.

To deliver on this mission, the Institute relies on donations and the generosity of individuals, foundations, companies, and other supporters. This support enables it to assist and support vulnerable communities, including NGOs, to enhance their resilience to cyberattacks.

The Institute also provides evidence-based knowledge and fosters awareness of the impact of cyberattacks on people, to give a voice to and empower victims to highlight the harm and impact of cyberattacks. It reminds state and non-state actors of the international laws and norms governing responsible behaviour in cyberspace, and advances the rule of law to reduce harm and ensure the respect of the rights of people.

Digital activities

Created in 2019, the Institute assesses the impact of cyberattacks from a human perspective, focusing on the rights of people. It grounds its analysis on evidence and the impact on human well-being, telling the story of people, linking with the technical reality of cyberattacks, and assessing it against the violation of laws. The Institute advocates for an evidence-based, human-centric approach to the analysis of cyberattacks as essential to the process of redress, repair, and/or justice for victims. It works collaboratively in its research, analysis, assistance, mobilisation, and advocacy. It engages with vulnerable communities to understand their needs for cybersecurity support and provides free and trusted cybersecurity assistance to vulnerable communities.

The CyberPeace Institute

  • assists NGOs and other vulnerable communities to prepare for and recover from cyberattacks.
  • investigates cyberattacks targeting vulnerable communities, analysing these attacks to provide alerts and support and for accountability.
  • advocates to advance the rule of law and respect for the rights of people.
  • anticipates threats to people associated with emerging and disruptive technologies.
    • Examples of operational activities
  • Assisting humanitarian and other NGOs with free and trusted cybersecurity support.
  • Analysing cyberattacks and highlighting their impact on people and how they violate the rule of law.
  • Documenting violations of international laws and norms and advocating for strengthened legal protection in cyberspace.
  • Offering expertise and support to states and civil society in relation to responsible behaviour in cyberspace.

Digital policy issues

Critical infrastructure

Cyberattacks against critical infrastructure have been on the rise, from attacks against hospitals and vaccine supply chains to attacks on the energy sector. When such disruptions occur, access to basic services is at risk. It is vital that there is an increase in the capacity and ability to improve resilience to cyberthreats in critical sectors, such as healthcare. The CyberPeace Institute urges stakeholders in diplomatic, policy, operational, and technical areas to increase their capacity and resilience to cyberthreats.

The Institute advocates for capacity building aimed at enabling states to identify and protect national critical infrastructure and to cooperatively safeguard its operation. This includes capacity building, implementation of norms of responsible behaviour, and confidence building measures. In strengthening efforts to protect critical infrastructure, the Institute calls for the sharing of lessons learned between countries to assist those with less capacity and fewer capabilities.

NGOs in civilian-critical sectors, for example water, food, healthcare, energy, finance, and information, need support and expertise to help them strengthen their cybersecurity capabilities. While these NGOs provide critical services to communities and bridge areas not covered by public and private actors, they lack the resources to protect themselves from cybersecurity threats.

Examples of the Institute’s work in this regard:

  • Calls to governments to take immediate and decisive action to stop all cyberattacks on hospitals and healthcare and medical research facilities, as well as on medical personnel and international public health organisations.
  • Capacity building is essential for achieving cyber preparedness and resilience across sectors and fields, and activities focus on providing assistance and capacity building to NGOs that might lack technical expertise and resources.
  • Publication of the strategic analysis report Playing with Lives: Cyberattacks on Healthcare are Attacks on People, and launch of the Cyber Incident Tracer (CIT) #Health platform that bridges the current information gap about cyberattacks on healthcare and their impact on people. This is a valuable source of information for evidence-led operational, policy, and legal decision-makers.
  • Monitoring and analysing how cyberattacks and operations are and have been, targeting critical infrastructure and civilian objects in the armed conflict between Ukraine and the Russian Federation through the publicly accessible Cyber Attacks in Times of Conflict Platform #Ukraine. The information on cyberattacks can be used to identify developments or clarify the law in relation to the use of cyber operations in armed conflicts, and for accountability in any future judicial proceedings.

Network security

NGOs play a critical role in ensuring the delivery of critical services, such as the provision of healthcare, access to food, micro-loans, information, and the protection of human rights.

Malicious actors are already targeting NGOs in an effort to get ransoms and exfiltrate data. Often these NGOs do not have the budget, know-how, or time to effectively secure their infrastructures and develop a robust incident response to manage and overcome sophisticated attacks.

With this in mind, the Institute launched its CyberPeace Builders programme in 2021, a unique network of corporate volunteers providing free pre- and post-incident assistance to NGOs supporting vulnerable populations.

This initiative brings support to NGOs in critical sectors at a level that is unequalled in terms of staff, tools, and capabilities. It assists NGOs with cybersecurity whether they work locally or globally, and supports them in crisis-affected areas across the globe.

Capacity development

The Institute believes that meaningful change can occur when a diversity of perspectives, sectors, and industries work together. To address the complex challenges related to ensuring cyberpeace, it works with a wide range of actors at the global level including governments, the private sector, civil society, academia, philanthropies, policymaking institutions, and other organisations. The Institute contributes by providing evidence-led knowledge, emphasising the need to integrate a genuine human-centric approach in both technical and policy-related projects and processes, and by highlighting the civil society perspective to support and amplify existing initiatives.

Interdisciplinary approaches

To contribute to closing the accountability gap in cyberspace, the Institute seeks to advance the role of international law and norms.

It reminds state and non-state actors of the international law and norms governing responsible behaviour in cyberspace, and contributes to advancing the rule of law to reduce harm and ensure the respect of the rights of people.

Contribution to UN processes

  • In 2021–2022, the Institute contributed to and commented on various UN-led processes (notably the United Nations Group of Governmental Experts on Advancing responsible state behaviour in cyberspace in the context of international security (UN GGE) and the Working Group (WG) on the use of mercenaries as a means of violating human rights and impeding the exercise of the rights of peoples to self-determination).
  • The Institute has closely followed the work of the UN Open-Ended Working Group (UN OEWG) on developments in the field of information and telecommunications in the context of international security, advocating recognition of the healthcare sector as a critical infrastructure and raising concerns about the lack of commitment towards an actionable and genuine human-centric approach.
  • In the Open-Ended Working Group on security of and in the use of information and communications technologies 2021–2025 (OEWG II), the Institute set out three key action areas and related recommendations, and is contributing its expertise in relation to the protection of humanitarian and development organisations from cyberattacks.

Participation in international initiatives: The Paris Call Working Groups

The Paris Call for Trust and Security in Cyberspace is a multistakeholder initiative launched by the French government at the Paris Peace Forum in November 2018. The Call itself sets out nine principles promoting and ensuring the security of cyberspace and the safer use of information and communications technology (ICT).

  • To operationalise these principles, in November 2020 six working groups were created to work on various issues that relate to them. The Institute co-led WG5 with colleagues from Geopolitics in the Datasphere [Géopolitique de la Datasphère] and The Hague Centre for Strategic Studies (HCSS).
  • The work of this group led to the Final Report published during the Paris Peace Forum 2021. It presents a methodology to facilitate understanding of how the implementation of normative, legal, operational, and technical measures, or the lack thereof, contribute to stability in cyberspace and ultimately to cyberpeace.

At the World Economic Forum meeting in Davos, in May 2022, the CyberPeace Institute joined Access Now, the Office of the High Commissioner for Human Rights (OHCHR), Human Rights Watch (HRW), Amnesty International, the International Trade Union Confederation (ITUC), and Consumers International to call on decision-makers to take action and initiate a moratorium limiting the sale, transfer, and use of abusive spyware until people’s rights are safeguarded under international human rights law.

This is in addition to a call made in 2021, in which the Institute joined more than 100 civil society organisations calling for a global moratorium on the sale and transfer of surveillance technology until rigorous human rights safeguards are adopted to regulate such practices and guarantee that governments and non-state actors don’t abuse these capabilities.

Digital technology plays an important role in conflict mediation and global peacebuilding. It can extend inclusion, allowing more women or people from marginalised groups to take part in or follow a mediation process. It can make mediation faster and more efficient and can allow mediators to draw on resources from around the world.

However, digital technology brings risks, too. It can increase polarisation, for example, and allow disinformation to spread to more people, more quickly. It can increase vulnerability to malicious actors, spying, and data breaches. These risks can undermine trust in the process.

Mediators work in low-trust, volatile contexts and don’t always have the knowledge to assess the risks posed by digital technology. A new online platform helps to raise awareness of those risks, as well as offering training on how to deal with them. The Digital Risk Management E-Learning Platform for Mediators was created in 2021 by the CyberPeace Institute, CMI – Martti Ahtisaari Peace Foundation, and the UN Department of Political and Peacebuilding Affairs (UNDPPA) Mediation Support Unit.

As part of the integration and engagement with the stakeholder ecosystem in Geneva, the Institute is a member of the Geneva Chamber of Commerce, Industry and Services (CCIG). Various academic collaborations are ongoing through participation in conferences, workshops, and lectures,
namely with the Ecole Polytechnique Fédérale de Lausanne Centre for digital trust EPFL (C4DT), the University of Geneva (UNIGE), and the Graduate Institute (IHEID). In 2020, the Institute formed a strategic partnership with the SwissTrust Valley for Digital Transformation and Cybersecurity.

The Institute and its staff have received several awards for innovative and continuous efforts promoting cyberpeace including the 2020 Geneva Centre for Security Policy (GCSP), second prize for Innovation in Global Security, and the Prix de l’Economie in 2021 from CCIG.

Social media channels

The Institute maintains a website providing alerts, blogs, articles, and publications on key issues related to its mission for cyberpeace, and shares video materials and discussion recordings on its YouTube channel.

The latest news and developments are shared via:

Facebook @CyberpeaceInstitute

Instagram @cyberpeaceinst

LinkedIn @cyberpeace-institute

Twitter @CyberpeaceInst

Sign up for the monthly newsletter to receive updates about what’s happening at the Institute, as well as news about cyberpeace.

United Nations Institute for Disarmament Research

Acronym: UNIDIR

Established: 1980

Address: Palais des Nations, 1211 Geneva 10, Switzerland

Website: https://www.unidir.org/

Stakeholder group: International and regional organisations

Founded in 1980, UNIDIR is a voluntarily funded, autonomous institute within the United Nations. One of the few policy institutes worldwide focusing on disarmament, UNIDIR generates knowledge and promotes dialogue and action on disarmament and security. Based in Geneva, UNIDIR assists the international community to develop the practical, innovative ideas needed to find solutions to critical security problems.

Digital activities

The research areas of UNIDIR’s SecTec focus on cybersecurity, such as threats and vulnerabilities related to information and communications technologies (ICTs), and the use of new technologies such as artificial intelligence (AI) applications in warfare. SecTec has supported the UN processes on ICTs Group of Governmental Experts (GGE) and the Open-Ended Working Group (OEWG) and continues to support the OEWG on security of and in the use of ICTs (2021–2025). It focuses on research and awareness raising on this topic with a broad range of stakeholders and maps the cybersecurity policy landscape.

Digital policy issues

Cybersecurity

SecTec builds knowledge and raises awareness of the security implications of new and emerging technologies. Cyber stability is one area of focus for UNIDIR, the work of which supports the implementation of specific norms and recommendations previously agreed by member states. It also explores options to strengthen cyber stability and crisis management mechanisms. UNIDIR provides technical and expert advice to the chairpersons of the UN GGE and OEWG on norms, international law, confidence-building measures, capacity  building,  cooperation, and institutional dialogue. The annual Cyber Stability Conference brings various stakeholders together to promote a secure and stable cyberspace and in particular the role of the UN processes such as the OEWG on Security of and in the Use of Information and Communications Technologies (2021–2025).

Launched in 2019, the Cyber Policy Portal is an interactive map of the global cyber policy landscape. It provides profiles of the cyber policies of all 193 UN member states, in addition to various intergovernmental organizations and multi-stakeholder instruments and other initiatives. This confidence-building tool supports informed participation by relevant stakeholders in all policy processes and promotes trust, transparency, and cooperation in cyberspace. The updated version of the portal was launched in May 2022, providing several new features, such as full text search, and is available in all UN official languages.

Accessible from the portal, the National Survey of Implementation of United Nations Recommendations of Responsible Use of ICTs by States in the Context of International Security collates national take-up of the recommendations from the 2015 GGE report, with a view to assisting assessment of their further development and implementation. The survey allows UN member states to conduct regular self-assessments of national implementation of the recommendations.

It can also support UN member states in responding to an invitation from the UN General Assembly (UNGA) to continue to inform the Secretary-General of their views and assessments on the issue of developments in the field of ICTs in the context of international security.

It supports transparency, information sharing, and confidence building by giving UN member states the possibility of making the results of the survey publicly available on their national profiles on UNIDIR’s Cyber Policy Portal.

The Cyber Policy Portal Database provides direct access to documents and references through the profiles of all 193 UN member states on the Cyber Policy Portal. The database allows searching across several categories, including state, type of document, topic, issuing body, and more.

Artificial intelligence

AI and the weaponization of increasingly autonomous technologies is one of UNIDIR’s current research areas. It aims to raise awareness and build capacities of various stakeholders, including member states, technical communities, academia, and the private sector. Research on AI covers a broad range of topics from human decision-making, autonomous vehicles, and swarm technologies.

UNIDIR SecTec is currently developing the Artificial Intelligence Portal. This tool will gather available information at the national, regional, and international levels on policies, processes, and structures that are relevant to the development and use of AI for military or security purposes. The portal will be developed to support transparency, information sharing, and confidence building in the field of AI.

Emerging technologies

UNIDIR’s research equally focuses on security dimensions of innovations in science and technology. In synergy with the Secretary-General’s Agenda for Disarmament and recent UNGA resolutions on the role of science and technology in the context of international security, UNIDIR proactively identifies and examines emerging and over-the-horizon innovations. It analyses potential implications for international security and facilitates dialogue among relevant stakeholders to encourage cross-sector cooperation.

Digital tools

Future of meetings

UNIDIR has organized virtual events, meetings, and workshops through video conferencing platforms such as Zoom and Webex.

In addition, UNIDIR’s 2022 Cyber Stability Conference was hosted on a browser-based streaming platform, StreamYard, and was broadcast across various social media channels.

Social media channels

Facebook @unidirgeneva

Instagram @un_disarmresearch

LinkedIn @UNIDIR

Twitter @UNIDIR

YouTube @UNIDIR-the UN Institute for Disarmament Research

Graduate Institute of International and Development Studies

Acronym: Geneva Graduate Institute

Established: 1927

Address: Case postale 1672, 1211 Geneva, Switzerland

Website: https://www.graduateinstitute.ch

The Geneva Graduate Institute of International and Development Studies (Geneva Graduate Institute) is an institution of research and higher education at the postgraduate level dedicated to the study of world affairs, with a particular emphasis on the cross-cutting fields of international relations and development issues.

Through its core activities, the Institute promotes international cooperation and contributes to the progress of developing societies. More broadly, it endeavours to develop creative thinking on the major challenges of our time, foster global responsibility, and advance respect for diversity.

By intensely engaging with international organisations, non-governmental organisations (NGOs), governments, and multinational companies, the Institute participates in global discussions and prepares future policymakers to lead tomorrow’s world.

In 2022, the Institute launched a new Competence Hub on digital technologies. The Tech Hub brings together a diversity of internal and external expertise to explore technologies from a human-centred and human-biotype-centred perspective. The focus will be the exploration of current and future technological innovations from a social science perspective, with an interest in the socio-political, governance, and geopolitical consequences of the current technological revolution. It will progressively structure different kinds of activities as well as welcome and foster research projects.

This transdisciplinary and horizontal initiative enables the Institute to forge and express its own unique voice on the digital turn and its consequences. It has indeed a particular role to play in the exploration of all those questions that need a transdisciplinary social science and humanities perspective and are by nature profoundly inter-transnational. The reality is that the Institute is already producing research and knowledge on those questions and diffusing them through teaching and events.

Digital activities

As part of its main strategy, the Institute seeks to develop digitally driven innovation in teaching and research, as well as information technology (IT) services. At the same time, as a research institution focusing on global challenges and their impacts, the digital turn has become one of its fundamental and policy-oriented research areas.

In terms of research, a growing number of researchers and PhD candidates analyse the impact of digitalisation on international relations and development issues. A few examples of research topics are cybersecurity, hybrid threats and warfare, surveillance technologies, internet governance, digital diplomacy, digital health, digital rights, digital trust, digital economy, the future of work, blockchain and cryptocurrencies, AI and humanitarian law, and AI and peace negotiations among others. The Institute has also developed expertise in using digital technologies as new research methods, including computational social scientific methods and big data analytics.

In terms of teaching, its Master, PhD, and executive education courses are increasingly focused on the effects of digitalisation on society and the economy, and more generally the global system. Some examples of courses are Digital Approaches to Conflict Prevention, Digital Innovation in Nature Conservation, Internet, Technology and International Law, Introduction to Digital Social Science Research, Technology, Society and Decision- making, The Politics of Digital Design, AI and Politics, Internet Governance and Economics, Technology and Development, and Digital Diplomacy and Power Relations on Cyberspace. Digital skills workshops are also organised for students to provide them with basic digital competence for their future professional or academic life, including big data analysis, introduction to programming with R and Python, and data analysis in various contexts.

The Institute is now involved in the development of a doctoral school on Digital Studies. This is a partnership with University of Lausanne (UNIL), École polytechnique fédérale de Lausanne (EPFL), University of Geneva (UNIGE), University of Neuchâtel (UNINE), and University of Fribourg (UNIFR) and will be hosted by CUSO (Conférence Universitaire de Suisse Occidentale). As part of its membership of SwissUniversities, it also offers a very complete programme for doctoral students – Strengthening Digital Skills in Education. Launched in 2019, the second phase of that programme runs from 2021 to 2024.

Over the years, the Institute has developed a performing IT infrastructure with secured data storage space and digital platforms (e.g. Campus, Moodle, TurntIn, Zoom, MyHR, Salesforces, Converis) to provide seamless services as well as dematerialised/paperless processes (e.g. student applications, course registration) for students, staff, and professors.

The Institute has developed digital tools (e.g. app for students, responsive website) and used digital services (e.g. social media, Facebook, Google ads) for many years in its student recruitment and communication campaigns.

Digital tools are also part of the pedagogical methods to improve learning. Flipped classrooms, MOOCs, SPOCs, and podcasts, to name a few, are used by professors in Master’s and PhD programmes, as well as in executive education. The Institute also supports professors in developing pedagogical skills and in using digital tools. Workshops are offered to all faculty members at the end of the summer to prepare them for hybrid teaching and the use of new technological tools in the classroom.

The Institute also organises workshops, seminars, film screenings, and other events on the digital turn, ranging from the digital divide and the governance and regulatory aspects of data to cybersecurity.

Digital policy issues

Some of the Institute’s prominent research initiatives are listed under respective digital policy issues sections.

Artificial intelligence

Conflict and peacebuilding

The faculty carries out a number of digital policy-related research projects, some of which focus on AI in particular. For example, the project titled Lethal Autonomous Weapon Systems (LAWS) and War Crimes: Who is to Bear Responsibility? aims to clarify whether and to what extent the requirements for ascribing criminal responsibility for the commission of an act – and in particular the key concepts of culpability theories – can be applied to the use of LAWS in combat operations. This analysis will serve to identify lacunae and inconsistencies in the current legal framework in the face of the advent of military robotics.

This project explores how the increasing digitalisation of peace processes affects international peace building efforts that take place in a global environment characterised by friction between liberal and authoritarian approaches. To make sense of these dynamics, the project draws on the concept of apomediation, to suggest that solutions to conflict are no longer simply supplied by human agents, but through a complex entanglement of human-machine networks.

The Intrepid Project aims to develop a general understanding of how policy announcements by state agencies are interpreted by journalists in ways that send signals, indicate intent, and otherwise provoke economic and political reactions. Machine learning (ML) techniques and the semantic and syntactic properties of announcement texts are then used to develop models of the announcement interpretation process.

Global Health

A number of projects carried out by the Institute’s members address the relationship between digital technologies and health. For instance, the Modelling Early Risk Indicators to Anticipate Malnutrition (MERIAM) project uses computer models to test and scale up cost effective means to improve the prediction and monitoring of undernutrition in difficult contexts.

The Institute hosts the new Digital Health and AI Research Collaborative (I-DAIR) directed by former Ambassador of India and Visiting Lecturer at the Institute Amandeep Gill. I-DAIR aims to create a platform to promote responsible and inclusive AI research and digital technology development for health. This platform is supported by the Geneva Science and Diplomacy Anticipator (GESDA).

The project Governing Health Futures 2030: Growing up in a Digital World, hosted at the Global Health Centre (GHC), explores how to ensure that digital development helps improve the health and well-being of all, and especially among children and young people. It focuses on examining integrative policies for digital health, AI, and universal health coverage to support the attainment of the third sustainable development goal (SDG).

Democracy

Questions about the potential impact of the internet are now routinely raised in relation to political events and elections in most places. The project on the Digital Infrastructuring of Democracy asks how the digital infrastructuring of democracy unfolds through regulatory and political processes, with a heuristic focus on both its transnational dimension and its specific reverberations in democracies of the Global South. The project concentrates on one thematic controversy related to each aspect of infrastructure: the accountability of algorithms for code, data protection for content, and encryption for circulation.

Taking stock of the centrality of AI in society and in the citizen-government relation, this project hosted at the Albert Hirschman Centre on Democracy seeks to engage with youth in Switzerland to explore the future role of AI in democracy through storytelling and narrative foresight. It will give a voice to the citizens of tomorrow and collaborate with art schools to design participatory AI art.

Future of work

Focusing on the Global South, the project African Futures: Digital Labor and Blockchain Technology strengthens empirical knowledge on changing trends in employment in the region by way of a two-pronged approach to the increasingly interconnected global division of labour: (1) App-based work mediated by online service platforms and (2) the use of blockchain technology in mining sites for ethical sourcing, traceability, and proof of origin.

The emergence of AI and digitally mediated work represents a fundamental challenge for most developing economies. Coupled with jobless economic growth, rising human productivity, and the exponential increase of the available labourpool, few jobs can be said to be safe from automated labour. This project examines the impact of digital work and automation in the Global South, from blockchain technology to ride-sharing apps, to inform debates on automation, computerisation and non-standard forms of work.

Inclusive finance

Projects carried out by the Institute’s members also address the role of digital technologies in enhancing financial inclusion. The project Effects of Digital Economy on Banking and Finance studies digital innovations and how fintech extends financial services to firms and households and improves credit allocation using loan-account level data comparing fintech and traditional banking.

Digital tools

  • Digital collections that allow free access to historical documents, texts, and photographs on international relations from the sixteenth to the twentieth century.
  • Two free online courses (MOOCs) on globalisation and global governance.
  • Podcasts showcasing professors’ and guests’ expertise (What matters today, In conversation with, Parlons en).
  • Podcasts are also integrated into the curricula of several international histories and interdisciplinary Master’s courses to encourage students to use social network platforms to popularise their findings.

Future of meetings

Events, sessions, and seminars are held online (usually on Zoom), for example, information sessions for admitted and prospective students take place online.

Social media channels

Facebook @graduateinstitute

Instagram @graduateinstitute

LinkedIn @geneva graduate institute

Twitter @GVAGrad

YouTube @Geneva Graduate Institute

International Committee of the Red Cross

Acronym: ICRC

Established: 1863

Address: 19 Avenue de la paix, 1202 Geneva, Switzerland

Website: https://www.icrc.org

Stakeholder group: International and regional organisations

Established in 1863, the ICRC is an independent international humanitarian organisation headquartered in Geneva. It defends and promotes the respect of international humanitarian law (IHL) and is dedicated to protecting the lives and dignity of victims of war and to providing assistance. Along these lines, it cooperates with governments, the private sector, and other entities affected by international and internal armed conflict and violence.

Together with the International Federation of Red Cross and Red Crescent Societies and 192 individual national societies, the ICRC makes up the so-called International Red Cross and Red Crescent Movement.

Digital activities

Digitalisation is increasingly present in the context of armed conflict and violence. On one hand, affected populations are in demand for digital tools, which humanitarian organisations need to provide in a responsible manner.

On the other hand, states use cyber operations as part of warfare with humans affected by the consequences of such operations and other digital risks.

To this end, humanitarian organisations also use digital tools to improve their operations. The ICRC addresses the implications of technology, which are multifold and range from data protection for humanitarian actions to the application of IHL to cyber operations in armed conflict.

It hosts expert and intergovernmental discussions and has developed a number of (digital) tools to help improve awareness and understanding of IHL and relevant standards.

The ICRC co-operates with other organisations on digital policy issues.

Digital policy issues

Artificial intelligence

The ICRC has explored the role of artificial intelligence (AI) tools in armed conflict. In a document titled Artificial Intelligence and Machine Learning in Armed Conflict: A Human-Centred Approach published in 2019, it argues that ‘any new technology of warfare must be used, and must be capable of being used, in compliance with existing rules of international humanitarian law.’ It also touches on the use of AI and machine learning (ML) technologies capable of controlling physical military hardware. It argues that from a humanitarian perspective, autonomous weapon systems (AWS) are of particular concern given that humans may not be able to exert control over such weapons or the resulting use of force. While the ICRC recognises that not all weapon systems incorporate AI or ML, it emphasises that such software components could eventually give way to future AWS. It also emphasises the potential misuse of AI and ML in the development of cyber weapons and capabilities. The ICRC calls for a human control-based approach to the application of AI and ML in AWS.

The question of AI has been further explored in other reports such as its Autonomy, Artificial Intelligence, Robotics: Technical Aspects of Human Control.

Cyber operations during armed conflict

The use of cyber operations during armed conflicts is a reality today and their use is likely to increase in future. Through bilateral confidential dialogue, expert discussions, participation in intergovernmental processes, and constant monitoring and analysis, the ICRC is raising awareness of the potential human cost of cyber operations and the application of IHL to cyber operations during armed conflict. Its efforts on this matter date back over two decades. Ever since, the ICRC has held the view that IHL limits cyber operations during armed conflict just as it limits the use of any other weapon, means and methods of warfare in an armed conflict, whether new or old.

Over the years, the ICRC has been actively involved in global policy discussions on cyber-related issues, including those held within the UN (various Groups of Governmental Experts (GGEs) and the Open-Ended Working Groups (OEWGs)). In addition, it convenes regional consultations among government experts on how IHL applies to cyber operations, and global expert meetings, such as the potential human cost of cyber operations and on avoiding civilian harm from military cyber operations during armed conflicts. Its legal views on how IHL applies to cyber operations during armed conflict are found in a 2019 position paper that was sent to all UN member states in the context of the different UN- mandated processes on information and communications technology (ICT) security. Finally, the ICRC explores innovative solutions, such as a digital emblem, to protect medical and humanitarian missions in cyberspace. The ICRC’s Law and Policy blog provides a large number of short pieces on cyber operations, featuring tech expert, legal, and policy perspectives.

Privacy and data protection (1)

The ICRC plays an active role in regard to privacy and data protection in the context of humanitarian action. It has a data protection framework compliant with international data protection standards that aims to protect individuals from a humanitarian standpoint. The framework consists of ICRC rules on personal data protection, which were revised in 2020 in response to the rapid development of digital technologies, while supervisory and control mechanisms are overseen by an independent data protection commission and a data protection officer. In 2019, the ICRC spearheaded the adoption of a resolution on Restoring Family Links While Respecting Privacy, Including as it Relates to Personal Data Protection at the International Conference of the Red Cross and Red Crescent. In 2022, it pushed for the adoption of a resolution on Safeguarding Humanitarian Data at the Council of Delegates of the Red Cross and Red Crescent Movement.

Despite the wide range of data sources employed and dealt with by the ICRC, specific attention is dedicated to biometric data, which is often used in forensics and the restoration of family links. To manage this highly sensitive

information and to ensure the responsible deployment of new technologies (including new biometric identification techniques), the ICRC has adopted a Biometrics Policy, which sets out the roles and responsibilities of the ICRC and defines the legitimate bases and specified purposes for the processing of biometric data.

Data protection is also addressed by the ICRC Handbook on Data Protection in Humanitarian Action. The Handbook provides suggestions as to how existing data protection principles apply to humanitarian organisations and builds on existing regulations, working procedures, and practices. The second edition of the document specifically provides guidance on the technical aspects of data protection by design and by default and covers technological security measures. In addition, through dedicated chapters, it addresses the potential and risks of digital technology such as blockchain, AI, digital identity, and connectivity for data protection in humanitarian action. The ICRC hosted a digital launch event for the second edition of the handbook as well as one event focusing on data protection and COVID-19. It then followed up with the DigitHarium, a one-year outreach initiative to socialise some of the themes linked to data protection in the humanitarian sector as well as to provide a space where humanitarian, diplomatic, academic, and technology practitioners can meet to collaborate to find local and global solutions to today’s digital dilemmas.

The ICRC further explored the issue of data and privacy in a joint report that it published with Privacy International titled  The  Humanitarian  Metadata  Problem:  Doing no Harm in the Digital Era. The report looks into how different types of metadata are derived from internal and external humanitarian exchanges (i.e. exchanges between humanitarian organisations and individuals affected by armed conflict and violence or communication within humanitarian organisations) through telecommunications and messaging; cash transfer programmes; and how social media can be accessed and misused for profiling of individuals, surveillance, repression, or commercial exploitation. In line with the humanitarian ‘do no harm’ principle, the report underscores that the humanitarian community has to consider that there is a risk that it can hinder the safety and the rights of those needing protection when using digital technologies. The ICRC also hosted an event on this topic in London in December 2018, the Digital Risk Symposium. The event explored what organisations can do to ensure they do not create additional vulnerabilities for people already at risk, as well as the potential for collaboration in the sector.

More recently, the ICRC has been involved in the Road to Bern via Geneva dialogues. As part of its contribution, the ICRC collaborated with the World Intellectual Property Organization in the second dialogue dedicated to data collection entitled Protecting Data Against Vulnerabilities: Questions of Trust Security and Privacy of Data. Specific attention was paid to three challenges: data anonymisation, loss of data through cloud processing, and limited use of biometric data.

Digital tools

The ICRC has argued in favour of the digitalisation of the Geneva Conventions and on the occasion of the 70th anniversary of these very treaties and additional protocols, released an IHL digital app. The app provides access to over 75 treaties including the Geneva Conventions and allows users to read through the content and therefore familiarise themselves with the text. The ICRC has a number of databases on IHL including its customary IHL database and the ICRC national implementation database.

Online learning is also used by the ICRC to promote the implementation of IHL. In 2019, it launched an e-learning course entitled Introduction to International Humanitarian Law aimed at non-legal practitioners, policymakers, and other professionals who are interested in the basics of IHL. Other online courses are available through the ICRC training centre as well as e-briefings which are available in its e-briefing library.

The ICRC maintains a digital library and an app with all ICRC publications in English and French.

Research and development

In 2022, the ICRC opened a Delegation for Cyberspace in Luxembourg, which serves as a safe and secure space to do due diligence research and develop and test solutions and ideas to prepare the ground for the support, protection, and deployment of digital services to affected people on a global scale. It will also further explore what it means to be a digital stakeholder in a manner compatible with its mandate; operational modalities; and principles of neutrality, independence, and impartiality.

Social media channels

Facebook @ICRC

Instagram @ICRC

LinkedIn @ICRC

TikTok @ICRC

Twitter @ICRC

YouTube @ICRC

1- The ICRC deals with privacy and data protection within its mandate and context of IHL. In this Atlas, following the Digital Watch Observatory taxonomy, privacy and data protection are part of the human rights basket.

DiploFoundation

Acronym: Diplo

Established: 2002

Address: 7bis, Avenue de la Paix CH-1202 Geneva, Switzerland

Website: https://www.diplomacy.edu

Stakeholder group: Academia & think tanks

DiploFoundation is a leading global capacity development organisation in the field of Internet governance.

Diplo was established by the governments of Switzerland and Malta with the goal of providing low cost, effective courses and training programmes in contemporary diplomacy and digital affairs, in particular for developing countries. Its main thematic focuses are on Internet governance (IG), e-diplomacy, e-participation, and cybersecurity.

Diplo’s flagship publication ‘An Introduction to Internet governance’ is among the most widely used texts on IG, translated into all the UN languages and several more. Its online and in situ IG courses and training programmes have gathered more than 1500 alumni from 163 countries. Diplo also hosts the Geneva Internet Platform (GIP).

Diplo also provides customised courses and training both online and in situ.

Geneva Internet Platform

Acronym: GIP

Established: 2014

Address: 7bis, Avenue de la Paix, CH-1202 Geneva

Website: https://www.giplatform.org/

Stakeholder group: NGOs and associations

The Geneva Internet Plaform (GIP) is a Swiss initiative operated by DiploFoundation that strives to engage digital actors, foster digital governance, and monitor digital policies.

It aims to provide a neutral and inclusive space for digital policy debates, strengthen the participation of small and developing countries in Geneva-based digital policy processes, support activities of Geneva-based Internet governance (IG) and ICT institutions and initiatives, facilitate research for an evidence-based, multidisciplinary digital policy, bridge various policy silos, and provide tools and methods for in situ and online engagement that could be used by other policy spaces in International Geneva and worldwide. The GIP’s activities are implemented based on three pillars: a physical platform in Geneva, an online platform and observatory, and a dialogue lab.