Establishing Global Norms to Protect Critical Information Infrastructure

Akey learning during Indonesia’s G20 presidency was that technology will define the post-pandemic world and is essential for equitable growth, an agenda that will be carried forward by India. However, technology can also be weaponised by state and non-state actors by creating new warfare techniques in cyberspace. This can pose threats to democracy through misinformation and disinformation, especially during periods of conflict. As such, it is imperative to build a global consensus of trust in technology. The international norms for physical warfare have been clearly laid out through the Geneva and Hague conventions and their protocols. What is missing is a global order on cyber security, the protection of cyber assets, and the prevention of misinformation and disinformation. What is needed is a federated approach like the Christchurch Call to Action to tackle the evils of hybrid war to prevent human catastrophes and showcase the importance of public- private partnership. However, attacks on critical information infrastructure are not limited to wartime, and can have ripple effects that lead to citizens being denied basic amenities. For example, an extended power outage due to an attack on the power grid can result in impacted access to medical facilities. Therefore, it is important for each country to modernise its legal and policy frameworks for critical information infrastructure, and for the global community to establish international norms for protect such infrastructure. The G20 can lead such an effort.