Compare
Compare
An EU candidate country since 2012, Serbia is an important partner in the Western Balkans. The 2020 iteration of the Digital Evolution Scorecard characterised Serbia as a ‘break out’ economy, meaning that despite a relative lack of digital infrastructure the country is rapidly digitalising; internet penetration is one of the highest across the region, standing at 79%. Over the past decade, Serbia’s digital policy has been focused on attracting foreign investment, deepening the digital transformation across the public and private sectors, and promoting economic growth in line with EU targets. These objectives have been operationalised through a series of strategies, notably the Strategy for the Development of Information Security for the period 2017-2020 and the Strategy for combat against cyber crime 2019-2023. The ITU notes, however, that “while innovative, internet-based e-commerce is expected to bring significant growth and development, obsolete legislation and a lack of harmonisation with EU standards and best practice persist, hampering progress”. As the country becomes increasingly more digitalised, the challenge for Serbian cyber diplomacy will be to develop and enhance avenues of European, regional, and international cooperation.
Nigeria is Africa’s most populous country with a population of 211 million people. Nigeria also has the continent’s largest economy, with a total GDP of $440 billion. Nigeria only emerged as Africa’s largest economy in 2014, overtaking South Africa after a GDP rebasing exercise which accounted for the contribution of emerging sectors of the economy, such as the Information and Communication Technology (ICT) sector. Nigeria’s economy had hitherto been petroleum dominated. In Q4 2021, the ICT sector of the economy contributed 15% to GDP, compared to 5% for the oil and gas sector. The percentage of people who use the Internet in Nigeria is 28%, largely through mobile networks. 91% of the population is covered by a mobile network (i.e. 74% by at least a 3G network and 41% by at least a 4G network). Huawei and ZTE have been responsible for constructing major parts of Nigeria’s broadband network (4G, LTE and 5G). Mobile phone subscription coverage is 99% of the population. Active mobile broadband subscription is 42% of the population, while fixed broadband connection is negligible, under 1%. Nigeria has 6 international submarine cables bringing at least 40TB capacity to its shores. There are 7 Internet Exchange Points (IXPs) in Nigeria with 71 peering networks. NigComSat-1, a communications satellite, made possible by cooperation between Nigeria and China, was launched in May 2007. Nigeria has plans to purchase 2 more communications satellites by 2025. Nigeria banned cryptocurrencies in 2021, but floated perhaps Africa’s largest digital currency the e-naira the same year. Despite the cryptocurrency ban, it is still in use in the country although hosted in foreign accounts.
The European Union is a significant partner in Nigeria’s cyberspace. For example, through its EU-Nigeria Digital Economy Package (Global Gateway Initiative), the EU plans a 820 million Euros investment to support Nigeria’s digitalisation strategy through digital infrastructure investments, digitalisation of public services, digital entrepreneurship, digital skills, and digital governance. However, the EU faces strong competition from China, whose investment in Nigeria’s telecommunications sectors is estimated to be $US 16 billion. China also helped manufacture and launch Nigeria’s Communications Satellite and has an equity stake in the parent satellite communications company. Huawei has been an important partner of the Nigerian government in building smart cities and e-government applications in an effort to improve government public services. Nigeria’s cyberspace is governed by several agencies including the Nigerian Communications Commission (NCC) and the National Information Technology Development Agency (NITDA).
The European Union is a significant partner in Nigeria’s cyberspace. For example, through its EU-Nigeria Digital Economy Package (Global Gateway Initiative), the EU plans a 820 million Euros investment to support Nigeria’s digitalisation strategy through digital infrastructure investments, digitalisation of public services, digital entrepreneurship, digital skills, and digital governance. However, the EU faces strong competition from China, whose investment in Nigeria’s telecommunications sectors is estimated to be $US 16 billion. China also helped manufacture and launch Nigeria’s Communications Satellite and has an equity stake in the parent satellite communications company. Huawei has been an important partner of the Nigerian government in building smart cities and e-government applications in an effort to improve government public services. Nigeria’s cyberspace is governed by several agencies including the Nigerian Communications Commission (NCC) and the National Information Technology Development Agency (NITDA).
The country has not assumed a firm stance on the application of international law in cyberspace. Serbia’s position paper concerning the Open-Ended Working Group (OEWG) highlighted that multilateral dialogue on “information security” must occur “with strict respect for the Charter of the United Nations”. Echoing the stance of states such as China, Russia, and Cuba, Serbia also raised the alarm about the “danger of developing offensive ICT and militarising the digital space”.
Nigeria’s stance on international law in cyberspace is primarily shaped by its traditional concern over the growing proliferation of global cybercrime. Nigerian diplomats have emphasised the need for a proper legal framework that reflects the ideals and current trends within the African region. Nigeria has neither signed nor ratified the African Union (UN) Convention on Cybersecurity and Personal Data Protection. Less has been said, however, about the application of international law in cyberspace more generally. However, On 6 July 2022, Nigeria acceded to the Council of Europe Convention on cybercrime. The Convention entered into force in Nigeria on 1 November 2022.
Serbia was represented in the 2016-2017 UN Group of Governmental Experts (UNGGE). Despite its EU candidate status, Serbia does not typically vote in alignment with the EU on key cybersecurity resolutions presented before the UN First Committee. Notable examples include UNGA resolution 73/27, which first established the Open-Ended Working Group (OEWG), as well as later resolutions 74/29 and 75/240.
Nigeria has been an active participant in the OEWG, contributing to the 2021 consensus report. Nigeria’s position acknowledges the applicability of existing international laws in cyberspace and supports the call for the operationalisation of the 11 Norms of responsible behaviour in cyberspace to address its current challenges. Nigeria also upheld the conclusions of the final report of the GGE: that the precedence set by the 2021 OEWG should be a baseline for international cooperation because of the inclusive nature of stakeholder participation.
Serbia’s legislative framework on cybersecurity is structured upon the 2016 Law on Information Security and its bylaws. The Law ushered in several institutional developments, including the creation of a national CERT in the regulatory agency for electronic communications and postal services (RATEL). The national CERT “monitors the status of incidents on national level, provides early warnings, alerts and announcements, and reacts on incidents by providing the information on affected entities and persons”. [x] It also holds seminars and technical trainings for operators of special importance (critical infrastructure) [x].
Meanwhile, the 2021 Cyber Tesla drill (organised in collaboration with the US state of Ohio) constitutes only one example of Serbia’s increased emphasis on critical infrastructure through the prism of cyber defence; the stated objectives included the “construction of military defence system capacities and the National CERT’s capacities for the protection from high-tech attacks, as well as an enhanced cooperation with relevant government and private sector organisations and academic institutions for the purpose of protection of the IT systems”.
In its UNGGE position paper in 2016, Serbia emphasised the importance of interstate cooperation in “maintaining effective and responsive mechanisms for information exchange, alerts and announcements on cybersecurity incidents”. The paper goes on to posit that “the special focus should be on the protection of critical infrastructure”, especially in the case of transnational attacks. In 2021, Norway donated a platform worth €1.2 million which will “[serve] to hold cyber exercises at the national level enables the real situation of different attack scenarios, and will contribute to capacity building and training of officials in various state institutions”, according to State Secretary of the Ministry of Trade, Tourism and Telecommunications Milos Cvetanovic [x]. In the International Telecommunication Union (ITU) Cybersecurity Index 2020 which measures commitment to cybersecurity amongst its members , Nigeria ranked 47th in the world, and 4th within the African region. In 2021, Nigeria published the updated National Cybersecurity Policy and Strategy, which lays out detailed cybersecurity obligations for different private sector and public sector actors in critical national information infrastructure (CNII) protection and resilience within a context of multiple stakeholders. The National Cybersecurity Policy and Strategy, together with the Cybercrime Act, are the major policy instruments governing cybersecurity in the country.
The Global Cyber Security Capacity Centre (GCSCC) at Oxford University, in 2018, reviewed the maturity of cybersecurity capacity in Nigeria at the behest of the Office of the National Security Adviser (ONSA), using the Cybersecurity Maturity Model (CMM). Nigeria’s CMM report indicated a maturity stage of either start-up or formative stage (maturity stages 1 and 2 out of 5 stages) for the majority of factors, suggesting opportunities for investment. The United Kingdom has pledged some of this necessary investment, with Nigeria set to benefit from a £22 million investment package which aims to support resilience in Africa and the Indo-Pacific region.
Meanwhile, the 2021 Cyber Tesla drill (organised in collaboration with the US state of Ohio) constitutes only one example of Serbia’s increased emphasis on critical infrastructure through the prism of cyber defence; the stated objectives included the “construction of military defence system capacities and the National CERT’s capacities for the protection from high-tech attacks, as well as an enhanced cooperation with relevant government and private sector organisations and academic institutions for the purpose of protection of the IT systems”.
In its UNGGE position paper in 2016, Serbia emphasised the importance of interstate cooperation in “maintaining effective and responsive mechanisms for information exchange, alerts and announcements on cybersecurity incidents”. The paper goes on to posit that “the special focus should be on the protection of critical infrastructure”, especially in the case of transnational attacks. In 2021, Norway donated a platform worth €1.2 million which will “[serve] to hold cyber exercises at the national level enables the real situation of different attack scenarios, and will contribute to capacity building and training of officials in various state institutions”, according to State Secretary of the Ministry of Trade, Tourism and Telecommunications Milos Cvetanovic [x]. In the International Telecommunication Union (ITU) Cybersecurity Index 2020 which measures commitment to cybersecurity amongst its members , Nigeria ranked 47th in the world, and 4th within the African region. In 2021, Nigeria published the updated National Cybersecurity Policy and Strategy, which lays out detailed cybersecurity obligations for different private sector and public sector actors in critical national information infrastructure (CNII) protection and resilience within a context of multiple stakeholders. The National Cybersecurity Policy and Strategy, together with the Cybercrime Act, are the major policy instruments governing cybersecurity in the country.
The Global Cyber Security Capacity Centre (GCSCC) at Oxford University, in 2018, reviewed the maturity of cybersecurity capacity in Nigeria at the behest of the Office of the National Security Adviser (ONSA), using the Cybersecurity Maturity Model (CMM). Nigeria’s CMM report indicated a maturity stage of either start-up or formative stage (maturity stages 1 and 2 out of 5 stages) for the majority of factors, suggesting opportunities for investment. The United Kingdom has pledged some of this necessary investment, with Nigeria set to benefit from a £22 million investment package which aims to support resilience in Africa and the Indo-Pacific region.
The Information Society and Information Security Development Strategy for the period 2021-2026 provides a comprehensive approach to the field of information security, which includes both (a) information security of ICT systems of special importance and security of the Republic of Serbia, and (b) security of citizens and businesses, which is particularly reflected through the fight against cybercrime. Its predecessor, the 2017 Strategy for the Development of Information Security, in turn, indicates the fight against cybercrime as one of the government’s five key priorities.
In light of EU accession negotiations, Serbia has signed and ratified the Council of Europe Convention on Cybercrime (Budapest Convention), including its Additional Protocol on Xenophobia and Racism Committed Through Computer Systems. Nevertheless, the country also voted in favour of UNGA resolution 74/247 calling for an international legal instrument to govern this domain. Domestically, the national legislative framework has been developed in accordance with the Budapest Convention and EU legislation. A High-Tech Crime Unit has recently been established within the special prosecutor’s office, along with three specialised units: crime analysis; terrorism and extremism; and drug prevention, addiction and repression.
Serbia is a member of Interpol, with which the country has discussed ways to enhance cooperation with regard to combatting cybercrime. Serbia is also gradually developing its own bilateral cooperation network, signing a Cooperation Memoranda with India in 2016 [x] and Romania in 2017 [x] as well as receiving assistance from Russian experts [x].
Special thanks to Ms Maja Lakusic for her valuable comments. The Nigerian 2020-2030 National Digital Strategy, which is in line with the African Union Digital Transformation Strategy 2020-2030, emphasises the significance of adopting ‘collaborating approaches’ to fighting cybercrime; it specifically notes that ‘cybersecurity is not a local issue and it requires collaboration with relevant institutions around the globe’. In 2019, the country voted in favour of UNGA resolution 74/247, which established an Ad Hoc Committee to draw up an international convention on cybercrime. The Nigerian position paper prior to the launch of the first substantive session noted the ‘urgent need to define and sanction criminal conduct in cyberspace, improve synergy in trans-national policing capabilities, improve procedural tools and reform/enhance international cooperation, whilst respecting human rights’. In its capacity as a member of ECOWAS, Nigeria has participated in several socialisation-based capacity-building initiatives, including the OCWAR-C project, the GLACY+ workshops and the African Forum on Cybercrime (organised by the African Union).
In light of EU accession negotiations, Serbia has signed and ratified the Council of Europe Convention on Cybercrime (Budapest Convention), including its Additional Protocol on Xenophobia and Racism Committed Through Computer Systems. Nevertheless, the country also voted in favour of UNGA resolution 74/247 calling for an international legal instrument to govern this domain. Domestically, the national legislative framework has been developed in accordance with the Budapest Convention and EU legislation. A High-Tech Crime Unit has recently been established within the special prosecutor’s office, along with three specialised units: crime analysis; terrorism and extremism; and drug prevention, addiction and repression.
Serbia is a member of Interpol, with which the country has discussed ways to enhance cooperation with regard to combatting cybercrime. Serbia is also gradually developing its own bilateral cooperation network, signing a Cooperation Memoranda with India in 2016 [x] and Romania in 2017 [x] as well as receiving assistance from Russian experts [x].
Special thanks to Ms Maja Lakusic for her valuable comments. The Nigerian 2020-2030 National Digital Strategy, which is in line with the African Union Digital Transformation Strategy 2020-2030, emphasises the significance of adopting ‘collaborating approaches’ to fighting cybercrime; it specifically notes that ‘cybersecurity is not a local issue and it requires collaboration with relevant institutions around the globe’. In 2019, the country voted in favour of UNGA resolution 74/247, which established an Ad Hoc Committee to draw up an international convention on cybercrime. The Nigerian position paper prior to the launch of the first substantive session noted the ‘urgent need to define and sanction criminal conduct in cyberspace, improve synergy in trans-national policing capabilities, improve procedural tools and reform/enhance international cooperation, whilst respecting human rights’. In its capacity as a member of ECOWAS, Nigeria has participated in several socialisation-based capacity-building initiatives, including the OCWAR-C project, the GLACY+ workshops and the African Forum on Cybercrime (organised by the African Union).
