C4DT Technology & Policy Roundtable on “Swiss Critical Infrastructure Data in the Cloud”

May 28th, 2024,
09h15-12h00,
EPFL

by invitation only

Introduction

Ensuring the secure transmission and storage of vital data, imperative for societal, economic, and governmental functions, is a growing concern among politicians. The proliferation of cloud computing underscores the urgency of addressing this issue, making it a central focus in discussions on digitalization security.

Acknowledging data’s central role in the digital economy, the Security Policy Committee of the Council of States responded to this by formulating motion 23.3002 “More security in Switzerland’s most important digital data” in September 2023. This strategic move signifies an noteworthy step towards a more regulated data landscape, emphasizing the importance of protecting critical information. While existing regulations cover personal and classified Federal Administration data, a notable gap exists in the oversight of Critical Infrastructure data.

Motion 23.3002 stands out as a crucial initiative to address this regulatory void. It focuses on the comprehensive regulation of Critical Infrastructure data, recognizing the necessity to fortify our digital defenses and ensure the resilience of essential national assets. Facilitating this legislative journey is the role of the National Cyber Security Centre (NCSC), entrusted with implementing the necessary research and political processes. This effort requires cooperation and collaboration at all Swiss levels and sectors.

In order to assist NCSC in its task to identify and reduce the risks linked to Swiss critical infrastructure data in the public cloud, the C4DT proposes to organize a Technology & Policy Roundtable for an open exchange between critical infrastructure providers, regulators and data scientists in neutral and confidential setting at the EPFL.

This event is co-organized by the National Center for Cyber Security (NCSC)  and the Center for Digital Trust (C4DT), EPFL

– Ambassador for the event: Alice Crelier, NCSC
– Event facilitator: David Viollier, C4DT

What are C4DT Technology & Policy Roundtables?

The Technology & Policy Roundtable, part of C4DT Cloud initiatives, provide a neutral platform for multidisciplinary stakeholders to openly exchange ideas. These roundtables address issues that may be sensitive, lacking a trusted space for discussion. A designated ambassador collaborates with C4DT to identify and invite relevant stakeholders, forming a credible working group.

Format

The roundtable is an in-person event of 2-3 hours. Chatham House rules apply to ensure an open and interactive discussion, limited to 20 participants. By invitation only. Please contact David Viollier, C4DT for more information.

The roundtable is an in-person event of 2-3 hours. Chatham House rules apply to ensure an open and interactive discussion, limited to 20 participants.

Objectives

  • to create awareness among critical infrastructure providers on the risks associated with Swiss critical infrastructure data in the public cloud;
  • to identify the critical/operational data used/produced by the Swiss critical infrastructures and to find a way to classify it to better identify & secure it in the future;
  • to determine whether this data is well & enough secured and protected as well as regulated, and if not, identifying ways to do so;

Participation

Please note that this event is by invitation only. Please contact David Viollier, C4DT for more information.