International Organization for Standardization

Acronym: ISO

Established: 1947

Address: Chemin de Blandonnet 8, 1214 Vernier, Geneva, Switzerland

Website: https://www.iso.org/iso/home.html

Stakeholder group: International and regional organisations

ISO is the International Organization for Standardization, the world’s largest developer of international standards. It consists of a global network of 170 national standards bodies – our members. Each member represents ISO in its country. The organisation brings together global experts to share knowledge and develop voluntary, consensus-based, market-relevant International Standards. It is best known for its catalogue of almost 25,000
standards spanning a wide range of sectors, including technology, food, and healthcare.

Digital activities

A large number of the international standards and related documents developed by ISO are related to information and communication technologies (ICTs), such as the Open Systems Interconnection (OSI) that was created in 1983 to establish a universal reference model for communication protocols. The organisation is also active in the field of emerging technologies including blockchain, the Internet of Things (IoT), and AI. The standards are developed by various technical committees dedicated to specific areas including information security, cybersecurity, privacy protection, AI, and intelligent transport systems.

Digital policy issues

Artificial intelligence

The joint technical committee of ISO and the International Electrotechnical Commission (IEC) for AI is known as ISO/IEC JTC1/SC 42 Artificial intelligence and is responsible for the development of standards in this area. To date, it has published 20 standards specifically pertaining to AI with 35 others in development. ISO/IEC 42001 is the flagship AI Management System Standard, which provides requirements for establishing, implementing, maintaining, and continually improving an AI management system within the context of an organisation. ISO/IEC TR 24028 provides an overview of trustworthiness in AI systems, detailing the associated threats and risks and addresses approaches on availability, resiliency, reliability, accuracy, safety, security, and privacy. The standards under development include those that cover concepts and terminology for AI (ISO/IEC 22989); bias in AI systems and AI-aided decision-making (ISO/IEC TR 24027); AI risk management (ISO/IEC 23894); a framework for AI systems using machine learning (ISO/IEC 23053); and the assessment of machine learning classification performance (ISO/IEC TS 4213). Up-to-date information on the technical committee (e.g. scope, programme of work, contact details) can be found on the committee page.

Cloud computing

ISO and IEC also have a joint committee for standards related to cloud computing which currently has 27 published standards and a further 5 in development. Of those published, two standards of note include ISO/IEC 19086-1, which provides an overview, foundational concepts, and definitions for a cloud computing service level agreement framework, and ISO/IEC 22123-3, which specifies the cloud computing reference architecture.Standards under development include those on health informatics (ISO/TR 21332); the audit of cloud services (ISO/IEC 22123-2); and data flow, categories, and use (ISO/IEC 19944 series). Up-to-date information on the technical committee (e.g. scope, programme of work, contact details) can be found on the committee page.

Internet of things

Recognising the ongoing developments in the field of IoT, ISO has a number of dedicated standards both published and in development, including those for intelligent transport systems (ISO 19079), future networks for IoT (ISO/IEC TR 29181 series), unique identification for IoT (ISO/IEC 29161), Internet of Media Things (ISO/IEC 23093-3), the trustworthiness of IoT (ISO/IEC 30149), and industrial IoT systems (ISO/IEC 30162). IoT security is addressed in standards such as ISO/IEC 27001 and ISO/IEC 27002, which provide a common language for governance, risk, and compliance issues related to information security. In addition, there are 26 standards under development, some of which provide a methodology for the trustworthiness of an IoT system or service (ISO/IEC 30147); a trustworthiness framework (ISO/IEC 30149); the requirements of an IoT data exchange platform for various IoT services (ISO/IEC 30161); and a real-time IoT framework (ISO/IEC 30165). Up-to-date information on the ISO and IEC joint technical committee for IoT (e.g. scope, programme of work, contact details) can be found on the committee page

Telecommunication infrastructure

ISO’s standardisation work in the field of telecommunications infrastructure covers areas such as planning and installation of networks (e.g. ISO/IEC 14763-2), corporate telecommunication networks (e.g. ISO/IEC 17343), local and metropolitan area networks (e.g. ISO/IEC/IEEE 8802-A), private integrated telecommunications networks (e.g. ISO/IEC TR 14475), and wireless networks. Next-generation networks – packet-based public networks able to provide telecommunications services and use multiple quality-of-service-enabled transport technologies – are equally covered (e.g. ISO/IEC TR 26905). ISO also has standards for the so-called future networks, which are intended to provide futuristic capabilities and services beyond the limitations of current networks, including the internet. Up-to-date information on the joint ISO and IEC technical committee that develops these standards (e.g. scope, programme of work, contact details ) can be found on the committee page.

Blockchain

ISO has published 11 standards on blockchain and distributed ledger technologies: ISO/TR 23455 gives an overview of smart contracts in blockchain and distributed ledger technologies; ISO/TR 23244 tackles privacy and personally identifiable information protection; and ISO 22739 covers fundamental blockchain terminology respectively. ISO also has a further eight standards on blockchain in development. These include those related to:  security management of digital asset custodians (ISO/TR 23576); taxonomy and ontology (ISO/TS 23258); and guidelines for governance (ISO/TS 23635). Up-to-date information on the technical committee (e.g. scope, programme of work, contact details, etc.) can be found on the committee page.

Emerging technologies

ISO develops standards in the area of emerging technologies. 

Dozens of standards in the area of emerging technologies are those related to robotics. ISO has more than 40 different standards either published or in development that cover issues such as collaborative robots (e.g. ISO/TS 15066); safety requirements for industrial robots (e.g. ISO 10218 series); and personal care robots (e.g. ISO 13482). Autonomous or so-called intelligent transport systems (ITS) standards are developed by ISO’s ITS Technical Committee and include those for forward vehicle collision warning systems (ISO 15623) and secure connections between trusted devices (ISO/TS 21185). Standards are also being developed to address the use of virtual reality in learning, education, and training (e.g. ISO/IEC 23843).

Network security

ISO and IEC standards also address information security and network security . The ISO and IEC 27000 family of standards covers information security management systems and are used by organisations to secure information assets such as financial data, intellectual property, and employee information. For example,ISO/IEC 27031 and ISO/IEC 27035 are specifically designed to help organisations respond, diffuse, and recover effectively from cyberattacks. ISO/IEC 27701 is an extension of ISO/IEC 27001 and ISO/IEC 27002 for privacy information management, and details requirements and guidance for establishing, implementing, maintaining, and continually improving a Privacy Information Management System (PIMS).Network security is also addressed by standards on technologies such as the IoT, smart community infrastructures, medical devices, localisation and tracking systems, and future networks. Up-to-date information on the joint ISO and IEC technical committee (e.g. scope, programme of work, contact details) can be found on the committee page.

Encryption

As more and more information (including sensitive personal data) is stored, transmitted, and processed online, the security, integrity, and confidentiality of such information becomes increasingly important. To this end, ISO has a number of standards for the encryption of data. For example, ISO/IEC 18033-1, currently under development, addresses the nature of encryption and describes certain general aspects of its use and properties. Other standards include ISO/IEC 19772 which covers authenticated encryption, ISO/IEC 18033-3 which specifies encryption systems (ciphers) for the purpose of data confidentiality, and ISO 19092 which allows for encryption of biometric data used for authentication of individuals in financial services for confidentiality or other reasons. ISO also has standards that focus on identity-based ciphers, symmetric and asymmetric encryption, public key infrastructure, and many more related areas. 

Data governance

Big data is another area of ISO standardisation; around 80% of related standards are developed by the ISO/IEC AI committee. The terminology for big-data-related standards is outlined in ISO/IEC 20546, while ISO/IEC 20547-3 covers big data reference architecture. ISO/IEC TR 20547-2 provides examples of big data use cases with application domains and technical considerations and ISO/IEC TR 20547-5 details a roadmap of existing and future standards in this area. Up-to-date information on the technical committee (e.g. scope, programme of work, contact details) can be found on the committee page.

Digital identities

Digital signatures that validate digital identities help to ensure the integrity of data and authenticity of particulars in online transactions. This, therefore, contributes to the security of online applications and services. Standards to support this technology cover elements such as anonymous digital signatures (e.g. ISO/IEC 20008 series); digital signatures for healthcare documents (e.g. ISO 17090-4 and ISO 17090-5); and blind digital signatures, which is where the content of the message to be signed is disguised, used in contexts where, for example, anonymity is required. Examples of such standards are ISO 18370-1 and ISO/IEC 18370-2.

Privacy and data protection

Privacy and data protection in the context of ICTs is another area covered by ISO’s standardisation activities. One example is ISO/IEC 29101 which describes a privacy architecture framework. Others include those for privacy-enhancing protocols and services for identification cards (ISO/IEC 19286); privacy protection requirements pertaining to learning, education, and training systems employing information technologies (ISO/IEC 29187-1); privacy aspects in the context of intelligent transport systems (ISO/TR 12859); and security and privacy requirements for health informatics (ISO/TS 14441).

Digital tools

ISO has developed an online browsing platform that provides up-to-date information on ISO standards, graphical symbols, publications, and terms and definitions.

Future of meetings

Future ISO meetings can be found at ISO – meeting calendar

Social media channels

Facebook @isostandards

Instagram @isostandards

LinkedIn @isostandards

X @isostandards

YouTube @iso

United Nations Human Rights Council

Acronym: UNHRC

Established: 2006

Address: Palais Wilson 52, rue des Pâquis, CH-1201 Geneva, Switzerland

Website: https://www.ohchr.org/EN/HRBodies/HRC/Pages/HRCIndex.aspx

Stakeholder group: International and regional organisations

The Human Rights Council is a United Nations intergovernmental body whose mandate is to strengthen the promotion and protection of human rights around the globe, and to make recommendations on cases of human rights violations. The Council is made up of 47 member states, as elected by the UN General Assembly. 

The Council works closely with the Office of the High Commissioner for Human Rights (OHCHR), headed by the High Commissioner for Human Rights, who is the principal human rights official of the United Nation.

Freedom of expression and privacy in the online space are two of the issues covered by the Council in its activities. These have been discussed at UNHRC sessions, and covered in resolutions adopted by the Council, as well as in reports elaborated by the special rapporteurs appointed by the Council. The Special Rapporteur on the promotion and protection of the right to freedom of opinion and expression has issued reports on issues such as: the use of encryption and anonymity to exercise the rights to freedom of opinion and expression in the digital age; states’ surveillance of communications on the exercise of the human rights to privacy and to freedom of opinion and expression; the right to freedom of opinion and expression exercised through the Internet; etc. The Special Rapporteur on the righ to privacy has within its mandate the responsibility to make recommendations for the promotion and protection of the right to privacy, including in connection with challenges arising from new technologies.

See also: Africa’s participation in digital rights debates at the UN Human Rights Council

Internet Governance Forum

Acronym: IGF

Established: 2006

Address: Palais des Nations, 1211 Geneva 10, Switzerland

Website: https://www.intgovforum.org

Stakeholder group: International and regional organisations

The IGF provides the most comprehensive coverage of digital policy issues on the global level. The IGF Secretariat in Geneva coordinates both the planning of IGF annual meetings (working together with the Multistakeholder Advisory Group (MAG) and the wider IGF community) and a series of intersessional activities (run all year long). These activities could be summarised in three ‘multi’ initiatives:

  • Multistakeholder participation: It involves governments, business, civil society, the technical community, academia, and other actors who affect or are affected by digital policy This diversity is reflected in IGF processes, events, and consultations.
  • Multidisciplinary coverage: It relates to addressing policy issues from technological, legal, security, human rights, economic, development, and sociocultural perspectives. For example, data, as a governance issue, is addressed from standardisation, e-commerce, privacy, and security perspectives.
  • Multilevel approach: It spans IGF deliberations from the local level to the global level, through a network of over 165 national, subregional, and regional IGF (as of November 2023). They provide context for discussions on digital policy like the real-life impact of digitalisation on policy, economic, social, and cultural fabric of local communities. The IGF Secretariat supports such initiatives (which are independent) and coordinates the participation of the overall network.

The IGF ecosystem converges around the annual IGF, which is attended by thousands of participants. The last few IGFs include Paris (2018), Berlin (2019), online edition due to the pandemic (2020), Katowice (2021), Addis Ababa (2022), and Kyoto (2023), which engaged over 11,000 participants, and more than 1,000 speakers in over 300 sessions.

The intersessional work includes best practice forums (on issues such as cybersecurity, local content, data and new technologies, and gender and access); dynamic coalitions (on issues such as community connectivity, network neutrality, accessibility and disability, and child safety online etc.); policy networks (on AI, environment, meaningful access and Internet fragmentation); and other projects such as Policy Options for Connecting and Enabling the Next Billion(s) (which ran between 2015 and 2018) as well as a number of capacity development activities.

IGF mandate

The IGF mandate was outlined in the Tunis Agenda for the Information Society of the World Summit on the Information Society (WSIS, November 2005). It was renewed for another 10 years by the UN General Assembly (UNGA) on 16 December 2015, (70/125).

The main functions of the IGF are specified in Article 72 of the Tunis Agenda. The mandate of the Forum is to:

  • Discuss public policy issues related to key elements of Internet governance in order to foster the sustainability, robustness, security, stability, and development of the internet.
  • Facilitate discourse between bodies dealing with different cross-cutting international public policies regarding the internet and discuss issues that do not fall within the scope of any existing body.
  • Interface with appropriate inter-governmental organisations and other institutions on matters under their purview.
  • Facilitate the exchange of information and best practices, and in this regard, make full use of the expertise of the academic, scientific, and technical communities.
  • Advise all stakeholders in proposing ways and means to accelerate the availability and affordability of the Internet in the developing world.
  • Strengthen and enhance the engagement of stakeholders in existing and/or future internet governance mechanisms, particularly those from developing countries.
  • Identify emerging issues, bring them to the attention of the relevant bodies and the general public, and where appropriate, make recommendations.
  • Contribute to capacity building for internet governance in developing countries, drawing on local sources of knowledge and expertise.
  • Promote and assess, on an ongoing basis, the embodiment of WSIS principles in internet governance processes.
  • Discuss, inter alia, issues relating to critical internet resources.
  • Help to find solutions to the issues arising from the use and misuse of the internet, of particular concern to everyday users.
  • Publish its proceedings.

In fulfilling its mandate, the Forum is institutionally supported by the UN Secretariat for the Internet Governance Forum placed with the Department of Economic and Social Affairs (DESA). Its working modalities also include MAG and most recently the Leadership Panel, both appointed by the UN Secretary-General.

Digital policy issues

Until 2019, IGF annual meetings used to host sessions tackling a wide range of digital policy issues (for instance, IGF 2018 had eight themes: cybersecurity, trust, and privacy; development, innovation, and economic issues; digital inclusion and accessibility; human rights, gender, and youth; emerging technologies; evolution of internet governance; media and content; and technical and operational issues). In 2019, in an effort to bring more focus within the IGF, the MAG decided (considering community input) to structure the IGF programme around a limited number of tracks: security, safety, stability, and resilience; data governance; and digital inclusion. This approach was kept for IGF 2020, which saw four thematic tracks: data, environment, inclusion, and trust. The thematic approach did not mean that the IGF saw some digital policy issues as being less relevant than others, but rather that it encouraged discussions at the intersection of multiple issues. The Geneva Internet Platform (GIP) Digital Watch hybrid reporting (IGF 2023) illustrates this trend, showing that the IGF discussed a wide range of policy issues (across all seven internet governance baskets of issues) within the limited number of thematic tracks.

The leadership panel

In line with the IGF mandate and as recommended in the Secretary-General’s Roadmap for Digital Cooperation, the UN Secretary-General established the IGF Leadership Panel as a strategic, empowered, multistakeholder body, to address urgent, strategic issues, and highlight Forum discussions and possible follow-up actions to promote greater impact and dissemination of IGF discussions.

More specifically, the Panel provides strategic inputs and advice on the IGF; promotes the IGF and its outputs; supports both high-level and at-large stakeholder engagement in the IGF and IGF fundraising efforts; exchanges IGF outputs with other stakeholders and relevant forums; and feeds input from these decision-makers and forums to the IGF’s agenda-setting process, leveraging relevant MAG expertise.

The 15-member Panel with ex-officios meet at least three times a year in person, in addition to regular online meetings.

Future of meetings

Since its first meeting in Athens (2006), the IGF has been a pioneer in online deliberation and hybrid meetings. In addition to individual online participation, the IGF has encouraged the development of a network of remote hubs where participants meet locally while following online deliberations from the global IGF. In this way the IGF has created a unique interplay between local and global deliberations through the use of technology. For hybrid meetings delivered in situ and online, the IGF developed the function of remote moderator, who ensures that there is smooth interplay between online and in situ discussions.

The 19th annual IGF meeting will be hosted by the Government of Saudi Arabia in Riyadh in December 2024. The 2025 host is yet to be announced.

Social media channels

Facebook @IGF – Internet Governance Forum

Flickr @IGF

Instagram @intgovforum

LinkedIn @intgovforum

X @intgovforum

YouTube @Internet Governance Forum (IGF)

International Telecommunication Union

Acronym: ITU, UIT

Established: 1865

Address: Place des Nations, 1202 Geneva, Switzerland

Website: https://www.itu.int

Stakeholder group: International and regional organisations

ITU is the United Nations specialised agency for information and communications technologies (ICTs), driving innovation in ICTs together with 193 member states and a membership of over 900 companies, universities, research institutes, and international organisations. Established nearly 160 years ago in 1865, ITU is the intergovernmental body responsible for coordinating the shared global use of the radio spectrum, promoting international cooperation in assigning satellite orbits, improving communications infrastructure in the developing world, and establishing the worldwide standards that foster seamless interconnection of a vast range of communications systems. From broadband networks to cutting-edge wireless technologies, aeronautical and maritime navigation, intelligent transport systems, radio astronomy, oceanographic and satellite-based Earth monitoring as well as converging fixed-mobile phone, internet, cable television and broadcasting technologies, ITU is committed to connecting the world. For more information, visit www.itu.int.

See also: Africa’s participation in the International Telecommunication Union

 class=

Digital activities

Some of ITU’s key areas of action include radiocommunication services (such as satellite services, and fixed/mobile and broadcasting services), developing telecommunications networks (including future networks), standardisation of various areas and media related to telecommunications, and ensuring access to bridge the digital divide and addressing challenges in ICT accessibility. ITU’s work supports emerging technologies in fields such as 5G, artificial intelligence (AI), Intelligent Transport Systems, disaster management, agriculture, smart sustainable cities, and the internet of things (IoT); access and digital inclusion; the accessibility of ICTs to persons with disabilities; digital health; ICTs and climate change; cybersecurity; gender equality; and child online protection, among others.  These and many more ICT topics are covered both within the framework of radiocommunication, standardisation, and development work, through various projects, initiatives, and studies carried out by the organisation.

Digital policy issues

Telecommunication infrastructure

Information and communication infrastructure development is one of ITU’s priority areas. The organisation seeks to assist member states, sector members, associates, and academia in the implementation and development of broadband networks, wired (e.g. cable) and wireless technologies, international mobile telecommunications (IMT), satellite communications, the IoT, and smart grids, including next-generation networks, as well as in the provision of telecommunications networks in rural areas.

ITU’s International Telecommunication Regulations (ITRs) have as an overall aim the facilitation of global interconnection and interoperability of telecommunication facilities. Through the ITU Radiocommunication Sector (ITU-R), ITU is involved in the global management of the radio frequency spectrum and satellite orbits, used for telecommunications services, in line with the Radio Regulations.

The international standards developed by ITU’s Telecommunication Standardization Sector (ITU-T) enable the interconnection and interoperability of ICT networks, devices, and services worldwide. It has 11 technical standardisation committees called Study Groups (SGs), with mandates covering a wide range of digital technologies:

The work on standards is complemented by short-term exploration/incubation ITU-T Focus Groups (FGs) whose deliverables guide the ITU-T SGs in new areas of standardisation work:

Collaboration among various standards bodies is a high priority of ITU-T. Various platforms were established to support coordination and collaboration on various topics, for example:

The Telecommunication Development Sector (ITU-D) establishes an enabling environment and provides evidence-based policy-making through ICT indicators and regulatory and economic metrics, and implements a host of telecommunications/ICT projects.

In the immediate aftermath of the COVID-19 pandemic, ITU-D launched the Global Network Resiliency Platform (REG4COVID) to address the strain experienced by telecommunication networks, which are vital to the health and safety of people. The platform pools experiences and innovative policy and regulatory measures.

Discussions involving the World Bank, Global System for Mobile Communications (GSMA), and the World Economic Forum identified how to bring together communities to support ITU membership in their response to COVID-19. The Speedboat Initiative issued a COVID-19 Crisis Response:

Digital Development Joint Action Plan and Call for Action to better leverage digital technologies and infrastructure in support of citizens, governments, and businesses during the pandemic.

Connect2Recover provides country-specific support to reinforce digital infrastructures – using telework, e-commerce, remote learning, and telemedicine to prevent the spread of COVID-19 and to support recovery and preparedness for potential future pandemics. ITU worked with the Government of Japan and the Kingdom of Saudi Arabia on this initiative. ITU/WHO Focus Group on AI for Health worked on a standardised assessment framework for the evaluation of AI-based methods for health, diagnosis, triage, or treatment decisions and in early 2020 it created an Ad-hoc Group on Digital Technologies for COVID-19 Health Emergencies (AHG-DT4HE) to review the role of AI (and other digital technologies) in combatting COVID-19 throughout an epidemic’s life cycle; it also delivered guidance on digital technologies for COVID health emergency. The Group also developed AI guidance specifically for health on ethics, regulatory considerations, clinical evaluation, and data quality and continues work with ITU, WHO, and WIPO on the Global Initiative on AI for Health.

The impact statement for the Telecommunications Development Bureau’s (BDT) thematic priority on Network and Digital Infrastructure is ‘Reliable connectivity to everyone’.

ITU-D SG1 also focuses on various aspects related to telecommunications infrastructure, in particular, Question 1/1 on ‘Strategies and policies for the deployment of broadband in developing countries’;   Question   2/1 on ‘Strategies, policies, regulations, and methods of migration and adoption of digital broadcasting and implementation of new services’; Question 4/1 on ‘Economic aspects of national telecommunications/ICTs’; Question 5/1 on ‘Telecommunications/ICTs for rural and remote areas’; Question 6/1 on ‘Consumer information, protection and rights’; and Question 5/2 on ‘Adoption of telecommunications/ICTs and improving digital skills’.

5G

ITU plays a key role in managing the radio spectrum and developing international standards for 5G networks, devices, and services, within the framework of the so-called IMT-2020 activities. ITU-R SGs together with the mobile broadband industry and a wide range of stakeholders established the 5G standards.

The activities include the organisation of intergovernmental and multistakeholder dialogues, and the development and implementation of standards and regulations to ensure that 5G networks are secure, interoperable, and operate without interference.

ITU-T is playing a similar convening role for the technologies and architectures of non-radio elements of 5G systems. For example, ITU standards address 5G transport, with Passive Optical Network (PON), Carrier Ethernet, and Optical Transport Network (OTN), among the technologies standardised by ITU-T expected to support 5G systems. ITU  standards for 5G  networking address topics including network virtualisation, network orchestration and management, and fixed-mobile convergence. ITU standards also address ML for 5G and future networks, the environmental requirements of 5G, security and trust in 5G, and the assessment of 5G quality of service (QoS) and quality of experience (QoE).

Satellite

ITU-R manages the coordination, notification, and recording of frequency assignments for space systems, including their associated earth stations. Its main role is to process and publish data and carry out the examination of frequency assignment notices submitted by administrations towards their eventual recording in the Master International Frequency Register.

ITU-R also develops and manages space-related assignment or allotment plans and provides mechanisms for the development of new satellite services by determining how to optimise the use of available and suitable orbital resources.

Currently, the rapid pace of satellite innovation is driving an increase in the deployment of non-geostationary satellite systems (NGSO). With the availability of launch vehicles capable of supporting multiple satellite launches, mega-constellations consisting of hundreds to thousands of spacecraft are becoming a popular solution for global telecommunications.

To this end, during the 2019 World Radiocommunication Conference (WRC-19), ITU established regulatory procedures for the deployment of NGSO systems, including mega-constellations in low Earth orbit.

Regarding climate change, satellite data today is an indispensable input for weather prediction models and forecast systems used to produce safety warnings and other information in support of public and private decision-making.

ITU develops international standards contributing to the environmental sustainability of the ICT sector, as well as other industry sectors applying ICTs assembling technologies to increase efficiency and innovate their service offer. The latest ITU standards in this domain address sustainable power-feeding solutions for IMT-2020/5G networks, energy-efficient data centres capitalising on big data and AI, and smart energy management for telecom base stations.

Skip to content