A Study on Cyber Security Policy in Cambodia

Background

Cambodia has stepped into the digital economy era since online payment systems are now employed. This evolution depends on the Internet and online communication. It brings with its threats to the cyberspace that could pose financial loss and breaches of confidential information for current and future generations. To sustain cyber trust and avoid the consequence, Cambodia adopted Cambodian Information Communication Technology (ICT) Plan 2020 in 2014 developed by Korean International Cooperation Agency (KOICA). This plan focuses on people, connectivity, capability and e-services (KOICA, 2014). The implementation of this plan relies on Ministry of Posts and Telecommunications (MPTC) as having authority on the ICT field.

The Effectvieness of Implementation

There have been several contributions that may enable the plan to meet its goals. One drive is government initiative. In the same year of the plan establishment, the first of Cybercrime Law was drafted. The law objective is to protect Cambodian internet users from all kinds of offense committed by computer system (Cybercrime Law Formulation Working Group of Council of Ministers, 2014). It played a role in stopping cyberattacks performed by Cambodian hackers in later years. National Election Committee and Press and National Police websites were hacked by 2 Cambodian in 2013 (Freedom Home, 2013). Following this, and after the draft law was issued, there were not any serious of cyberattacks reported in the Free Home’s annual report. Another factor is public awareness. Cyber security is not a solely government responsibility, but involves individuals who are involved in the online connectivity. MPTC has established Cambodia Computer Emergency Response Team (CamCERT) as research and development team for national cyber security level. The team has been publishing weekly security alerts for residents and businesses via workshops and social media. As a result between 2015 and 2017 Cambodia commitment and readiness for cyber security as the Global Cybersecurity Index scores were improved from 0.117 (ranked 25^th globally) to 0.283 (ranked 91 globally) (International Telecommunication Union (ITU), 2015; 2017). Therefore, political will and actions could be an initiative toward sustainable cyber trust.

The Critique on Implementation

Nevertheless, there are more significant negative effects attributed to the implementation. A sensitive factor that interrupts the achievement of policy is interfering with the public’s freedom of speech. While the cybercrime law was still in draft, Telecommunication Law was issued in 2015. Critics worried that it would benefit political bias through invading privacy and restricting freedom of expression (Freedom House, 2016). This could boost general public resistance against the implementation. In addition, insufficient human resource also obstruct the plan. KOICA (2014) stated clearly in the plan that human resource and IT infrastructure is the top priority in promoting the plan to success. The lack of human resource is less likely to be fulfilled because based on a study, universities that are publicly well-known for information technology degrees such are Royal University of Phnom Penh and Institute of Technology of Cambodia are not be able to include cyber security skill in course curriculum.

According to the criteria stated earlier, the constraints seem to assert greater extent than the success because of the public resistance caused by political bias. Moreover, due to the lack of knowledge and skills serving political agenda, it is unlikely that Cambodia will meet the goal to sustain a secured cyber environment in short term. However, it might possibly be successful in the future with improvement in political and education system.

References

Cybercrime Law Formulation Working Group of Council of Ministers. (2014, 04 08). Sithi.org. Retrieved from Sithi.org: http://sithi.org/temp.php?url=law_detail.php&lg&id=258

Freedom Home. (2013). Freedom on the net 2013 - Cambodia country profile. Washington D.C: Freedom Home. Retrieved from Freedom House.

Freedom House. (2016). Freedom on the net 2016 - Cambodia country profile. Washington D.C: Freedom House. Retrieved from Freedom House.

International Telecommunication Union (ITU). (2015). Global Cybersecurity Index & Cyberwellness Profiles 2015. Geneva: International Telecommunication Union (ITU). Retrieved from https://www.itu.int/dms_pub/itu-d/opb/str/D-STR-SECU-2015-PDF-E.pdf

International Telecommunication Union (ITU). (2017). Global Cybersecurity Index & Cyberwellness Profiles 2017. Geneva: International Telecommunication Union (ITU). Retrieved from https://www.itu.int/dms_pub/itu-d/opb/str/D-STR-GCI.01-2017-R1-PDF-E.pdf

Korean International Cooperation Agency. (2014). Cambodian ICT masterplan 2020. Phnom Penh: Korean International Cooperation Agency. Retrieved from Telecommunication Regulator of Cambodia Website.