OSCE gathers experts to discuss coordinated vulnerability disclosure, one of the cyber/ICT security confidence-building measures

The OSCE Secretariat’s Transnational Threats Department organized a workshop on coordinated vulnerability disclosure (CVD) - a process of managing vulnerabilities in Information and Communication Technology systems that reduces their harm.

On 26 and 27 September, experts from across the OSCE presented good practices and examples of national implementation during a workshop in Istanbul.

“It is ever more crucial to act in a timely manner in case vulnerabilities arise. We attach great importance to the CVD-mechanism, as it allows organizations that have been affected to quickly remedy any vulnerabilities and limit loss or damage as much as possible. That is why CVD is an important step in making cyberspace more stable and secure,” said Ömer Abdullah Karagözoğlu, Chairman of the Information and Communication Technologies Authority (BTK) of the Republic of Türkiye in his opening remarks.

Thirty-four participants from Eastern and South-Eastern Europe, Central Asia, South Caucasus and Mongolia improved their understanding of CVD and engaged in a practical exercise delivered by the National Cyber Security Centre of the Netherlands.

“This course is perfect for furthering the debate on CVD and taking the next steps. The many different States being represented here today will allow for an inclusive debate where we can learn from each other and collectively move forward. After all, cybersecurity is a joint-initiative where the consequences of unknown vulnerabilities transcend national borders,” said Arjen Uijterlinde, Consul General of the Kingdom of the Netherlands in Istanbul.

The training course is part of the “Activities and customized support for the implementation of OSCE cyber/ICT security confidence-building measures” project, which is receiving support from the Netherlands financially and in terms of the subject matter.